CI Washing Bingo

Spot common misuses and oversimplifications of Contextual Integrity.

đź“– What is Contextual Integrity (CI) Washing?

CI washing refers to use of the Contextual Integrity (CI) framework while neglecting its core theoretical commitments. Contextual Integrity rests on four essential tenets:

  • T1. Privacy is the appropriate flow of information.
  • T2. Appropriate flows conform to contextual privacy norms.
  • T3. Information flows are defined through five parameters.
  • T4. Normative legitimacy is evaluated using the CI heuristic.
Reference
Nissenbaum, H. (2019). Contextual Integrity up and down the data food chain.
Wrong CI citation
Omitting CI parameters
Equating law to norms
CI as data minimization
CI as purpose limitation
CI for compliance
Preferences not norms
No CI heuristic
Contextual roles and capacities ignored
Anonymity = transmission principle
Mistreating context
?

Glossary

Click a bingo square to view its explanation, or select

Wrong CI Citation

Citing an outdated source as the primary reference.

Do not cite:
Nissenbaum, Helen. "Privacy as contextual integrity." Washington Law Review 79 (2004): 119.
Instead, please refer to more recent and authoritative accounts of the theory, such as Nissenbaum (2009) and Nissenbaum (2019).
Recommended citations
Nissenbaum, H. (2009). Privacy in Context.
Nissenbaum, H. (2019). Contextual Integrity Up and Down the Data Food Chain.
Nissenbaum, H. (2015). "Respect for context as a benchmark for privacy online: What it is and isn’t." In Social Dimensions of Privacy: Interdisciplinary Perspectives, pp. 278–302.

Omitting CI parameters

Failing to specify one or more of the five transmission parameters — sender, receiver, subject, information type, and transmission principle — thereby preventing a complete evaluation of whether the information flow conforms to contextual norms.

Equating law to norms

Treating existing statutes or regulatory compliance as if they fully determine contextual legitimacy, rather than analyzing whether the law actually reflects or distorts entrenched social informational norms.

CI as data minimization

Reducing Contextual Integrity to the idea of collecting or storing less data, instead of examining whether the structure and conditions of information transmission are appropriate within the relevant social context.

CI as purpose limitation

Collapsing CI into simple purpose-restriction logic (e.g., GDPR-style use limits) while ignoring how roles, actors, and transmission principles jointly structure legitimate information flows.

CI for compliance

Deploying CI as a checkbox audit tool or defensive legal framework rather than as a normative diagnostic method for critically evaluating questionable or status-quo data practices.

Preferences not norms

Substituting individual user settings, consent clicks, or privacy preferences for socially grounded informational norms, which are collective, context-dependent, and not reducible to personal choice.

No CI heuristic

Reaching conclusions about privacy violations without applying the structured CI decision heuristic: mapping the flow, identifying baseline norms, comparing altered flows, and evaluating moral and contextual impact.

Contextual Roles and Capacities Ignored

Not stating the parameter CI values in terms of their respective contextual role ontologies.

Anonymity as a transmission principle (TP)

Anonymity or anonymously is not a valid TP value. These terms may describe an information flow involving data (attributes) without identifiers.
TPs define the conditions under which data about a subject may flow from a sender to a recipient: Commonly occurring TPs include with consent, reciprocally, with notice, in confidence, as required by law, and with a warrant.

Mistreating context

Context is treated as a localized setting focused on specific information flows rather than a broad social construct.


"Many of the canonical activities of a context are oriented around values-sometimes more aptly called goals, purposes, or ends; that is, the objectives around which a context is oriented, something akin to Schatzkis 'teleology.' Values are crucial, defining features of contexts." - Nissenbaum, 2009

Invoking the "Context boundaries" metaphor

Invoking “contextual boundaries” is a misleading spatial metaphor that treats contexts as if they were discrete containers separated by clear borders.

“Contexts are structured social settings characterized by canonical activities, roles, relationships, power structures, norms (or rules), and internal values (goals, ends, purposes).” (Nissenbaum, 2009)

Invoking "Context collapse"

Using “context collapse” as a general buzzword without analyzing which distinct social contexts, actors, or transmission principles are being structurally merged or disrupted.

"Contexts may overlap and possibly conflict with one another.”
...
"Overlaps need not necessarily involve conflicts. Thus, a community health center may collaborate with school authorities to promote health and nutrition within schools. It is not so much that contexts themselves conflict as that, occasionally, when and where they overlap the norms from one context prescribe actions that are proscribed by the norms of an overlapping context." (Nissenbaum, 2009)

"Statistical" context

Confusing computational or machine-learning “context” with socially defined informational contexts governed by privacy norms.

Schatzki, 2005 "Practice mind-ed orders."