Dark Patterns.

Deceptive user-interface designs that nudge or trick users into actions against their interest — over-broad consent, hidden cancellations, sneak-in opt-ins — increasingly regulated under GDPR Article 5, the EU DSA, and U.S. FTC Click-to-Cancel rules. 它属于网络安全的 隐私与数据保护 分类。

Deceptive user-interface designs that nudge or trick users into actions against their interest — over-broad consent, hidden cancellations, sneak-in opt-ins — increasingly regulated under GDPR Article 5, the EU DSA, and U.S. FTC Click-to-Cancel rules.

Dark patterns is a term coined by UX researcher Harry Brignull in 2010 for user-interface designs that deceptively nudge users into actions counter to their own interest, such as accepting tracking, buying more, or staying subscribed. Common patterns include 'confirmshaming' opt-out wording ('No thanks, I don't want better deals'), pre-checked consent boxes, asymmetric button styling that makes 'Accept all' visually dominant, hidden costs revealed only at checkout, and 'roach motel' subscription flows where signup takes one click and cancellation takes a phone call. Regulators have moved from soft guidance to enforcement: the European Data Protection Board's 2022 dark-patterns guidelines apply GDPR Article 5(1)(a) fairness and transparency obligations; the EU Digital Services Act explicitly prohibits dark patterns for very large online platforms; the U.S. FTC's 'Click-to-Cancel' rule (2024) requires that cancellation be as easy as subscription; the California Privacy Protection Agency adopted dark-patterns regulations in 2023. From a privacy-engineering perspective, dark patterns are now both an ethical and a regulatory risk and increasingly a vector targeted by competitor reports, NGO-led audits, and class-action plaintiffs.

针对 Dark Patterns 的防御通常结合技术控制与运营实践,详见上方完整定义。

常见的别称包括: Deceptive design, Sludge patterns。