Week 41 / October 2025

Users Want Control, Not Automation

AI systems personalize faster than people can calibrate trust, and intermediate autonomy wins

Synthesized using AI

Analyzed 148 papers. AI models can occasionally hallucinate, please verify critical details.

The strongest signal this week is a direct challenge to the 'automate everything' orthodoxy in AI systems. A rigorous 450-person study of LLM agents found that intermediate autonomy—where systems propose actions but users approve them—outperforms both full automation and manual control across privacy comfort, trust, and data sharing willingness. This held even when personalization quality was high, suggesting the issue isn't AI accuracy but user calibration. Supporting evidence appears in recommendation systems (users want to edit AI-generated interest profiles but struggle with cognitive load), older adult voice interfaces (conversational breakdowns require explicit repair strategies users currently lack), and adaptive VR training (systems that respond to real-time cognitive load outperform static tutorials). The pattern is consistent: users don't want to surrender control—they want systems that help them stay in control.

But personalization creates a second problem: users can't verify what systems are doing with their data. A large-scale audit of 272 healthcare apps found 26% request location data without disclosure and 18% have critical vulnerabilities, while user reviews reveal widespread distrust. A separate study on recommendation systems found that optimizing for short-term engagement (clicks, likes) misses what actually drives retention: whether users would return for similar content. The measurement gap matters because it means platforms are optimizing for the wrong thing, and the privacy gap matters because it's killing adoption before systems can prove value. Even when AI works technically, it fails socially if users can't calibrate trust.

The design challenge is clear: build systems that make their reasoning and data use legible, not just accurate. That means graduated autonomy controls, explicit repair strategies for breakdowns, and metrics that measure long-term value rather than short-term engagement. The research this week isn't about whether AI can personalize—it's about whether users can understand and control that personalization fast enough to trust it.

Featured(1/5)

2510.06015

"Your Doctor is Spying on You": An Analysis of Data Practices in Mobile Healthcare Applications

Luke Stevenson, Sanchari Das

Journal 2025·2025-10-07

Audit your healthcare app's permission stack against this three-tool methodology. If you're requesting location, camera, or contacts, your privacy policy must explicitly justify each permission with a clinical use case. Assume regulators will adopt this forensic standard.

mHealth apps collect sensitive patient data but operate in a regulatory gray zone. 26.1% request fine-grained location without disclosure, creating systemic privacy exposure.

Method: Multi-tool forensic audit of 272 Android mHealth apps using MobSF, RiskInDroid, and OWASP Mobile Audit revealed that 26.1% request fine-grained location permissions without disclosure in privacy policies. The study combined permission forensics, static vulnerability analysis, and user review mining to expose systemic weaknesses in apps that promise patient-provider interaction but deliver surveillance infrastructure.

Caveats: Android-only analysis; iOS permission model differs. Static analysis can't catch runtime data exfiltration or third-party SDK behavior.

Reflections: How do iOS mHealth apps compare in permission overreach and disclosure gaps? · What percentage of location data is actually used for clinical purposes versus marketing? · Can automated policy-permission alignment checks be integrated into app store review processes?

privacy-securityhealthcaremobile-interfacesethics

2510.04465

Autonomy Matters: A Study on Personalization-Privacy Dilemma in LLM Agents

Zhiping Zhang, Yi Evie Zhang, Freda Shi, Tianshi Li

Preprint·2025-10-06

Design agent autonomy controls as a separate UX layer from personalization settings. Let users set decision thresholds: 'notify me before booking' versus 'auto-book within $50 budget.' Default to low autonomy for sensitive domains like finance and health.

LLM agents need personal data to act on your behalf, but users don't know when autonomy becomes surveillance. The personalization-privacy tradeoff intensifies as agents gain decision-making power.

Method: A 3×3 between-subjects experiment with 450 participants tested how agent autonomy level (low/medium/high) and personalization interact. High-autonomy agents that proactively make decisions without explicit user approval triggered significantly higher privacy concerns, even when personalization quality improved. The study isolated autonomy as an independent variable, proving it's not just what data agents collect but how independently they act on it.

Caveats: Study used hypothetical scenarios, not deployed agents. Real-world trust may differ when users experience tangible benefits over time.

Reflections: Do users recalibrate privacy concerns after experiencing high-autonomy agent benefits for 30+ days? · Which specific decision types (financial, social, health) trigger the strongest autonomy-privacy tension? · Can transparency about agent decision logic reduce privacy concerns without sacrificing autonomy?

ai-interactionprivacy-securitytrust-safety

2510.04748

Social bias is prevalent in user reports of hate and abuse online

Florence E. Enock, Helen Z. Margetts, Jonathan Bright

Preprint·2025-10-06

Stop treating user flags as neutral signals. Weight reports by cross-group consensus—require flags from users with diverse network positions before escalating content. Audit your moderation queue for identity-correlated flagging patterns monthly.

Platforms rely on user flagging to scale content moderation, but users flag content based on who said it, not just what was said. Group identity distorts reporting.

Method: Analysis of user flagging behavior revealed systematic bias: users flag identical content at different rates depending on the perceived group identity of the poster. The study controlled for content severity and found that in-group/out-group dynamics significantly predict flagging likelihood, meaning platforms using user reports as ground truth are training moderation systems on biased data.

Caveats: Study doesn't specify which identity dimensions (race, politics, gender) drive the strongest bias, limiting targeted interventions.

Reflections: Can algorithmic debiasing of user flags improve moderation accuracy without increasing false negatives? · Do platforms with reputation-weighted flagging systems show reduced identity bias? · What percentage of flagged content would be reclassified if identity information were hidden from reporters?

trust-safetysocial-computingethics

1 / 5

Featured

Findings(1/5)

Adaptive systems shift from post-hoc personalization to real-time cognitive sensing·User agency becomes the design variable in AI personalization, not a fixed constraint·Instructors perform emergency pedagogical design as AI tools outpace institutional control·Cultural intelligence becomes architectural, not cosmetic, in AI deployment·Collaborative AR moves from novelty deployments to decade-long operational infrastructure

Training and recommendation systems are embedding physiological sensors to measure cognitive load and attention in real time, not just infer preferences from behavior. CLAd-VR uses EEG to adjust VR training difficulty during machining tasks, while Retentive Relevance moves beyond click signals to survey-based intent measures. The shift acknowledges that behavioral proxies—clicks, completion rates—are too noisy to optimize for retention or learning. Implication: personalization architectures must now account for sensor integration costs and the privacy surface area that real-time biometric data creates.

2510.05249

CLAd-VR: Cognitive Load-based Adaptive Training for Machining Tasks in Virtual Reality

2510.07621

Retentive Relevance: Capturing Long-Term User Value in Recommendation Systems

Surprises(1/3)

User reporting of harmful content amplifies the harm it's meant to reduce·Healthcare apps surveil patients while promising care coordination·Older adults struggle with conversational AI not because of usability, but repair asymmetry

Crowdsourced content moderation assumes users flag harmful content objectively. They don't. Social bias is prevalent in user reports of hate and abuse—group identity and affiliation shape what gets flagged, meaning the reporting mechanism itself becomes a vector for bias amplification. The more we rely on user reports to scale moderation, the more we encode the biases we're trying to moderate. Reframe: flagging systems need bias correction at the input layer, not just the review layer.

2510.04748

Social bias is prevalent in user reports of hate and abuse online

TOOLBOX(4)

VisComplexity2K

Dataset

A large-scale dataset containing 1,800 visualization images with perceived visual complexity scores collected from 349 participants through crowdsourcing. Includes image-based metrics (information-theoretic, clutter, color, object-based) for analyzing complexity in data visualizations. Available with source code for quantification pipeline enabling metric-based explanations of perceptual responses.

2510.08332

Exploropleth

Tool

Open-source web-based geospatial visualization tool for creating choropleth maps. Enables interactive comparison of multiple data binning methods (natural breaks, quantile, etc.) in one view, supports on-the-fly administrative unit reclassification, and allows users to customize and export maps. Designed for cartographers, GIS experts, and students.

2511.20655

scellop

Tool

Interactive cell population viewer for single-cell biological data. Replaces traditional stacked bar charts with optimized visual encodings for studying cell population distributions across samples and conditions. Addresses scalability issues with increasing cell types and samples. Available as Python package (PyPI) and JavaScript package (NPM) under MIT license.

2510.09554

ProtoSpace

Tool

JPL-built platform for collaborative visualization of CAD models in augmented reality (AR) and 3D web. Includes HoloLens and 3D web clients, ProtoSpace server, and CAD model optimizer. Used across spacecraft mission lifecycle for design review, assembly instructions, and spatial context understanding. Deployed for 10 years on NASA missions including Mars Perseverance and Europa Clipper.

2510.06608

Revisiting Trust in the Era of Generative AI: Factorial Structure and Latent Profiles

Argues trust isn't just about functionality anymore—social dimensions (warmth, transparency) now matter as much as reliability when users decide whether to lean on GenAI.

2510.05307

When Should Users Check? A Decision-Theoretic Model of Confirmation Frequency in Multi-Step AI Agent Tasks

Builds a formal model to answer the Goldilocks question: confirm every step (exhausting) or only at the end (brittle)? The math says it depends on error cost.

2510.10049

ALLOY: Generating Reusable Agent Workflows from User Demonstration

Lets users teach agents by demonstration instead of prompts—show it once, it generalizes the workflow. Programming by example, but for autonomous task execution.

2510.09009

Promptimizer: User-Led Prompt Optimization for Personal Content Classification

Puts users in the loop during prompt optimization for social media filters. Automatic tuning alone misses how people want their classifiers to evolve over time.

2510.04494

NaturalEdit: Code Modification through Direct Interaction with Adaptive Natural Language Representation

Turns code summaries into interactive editing surfaces—click a phrase in plain English, modify the underlying code. Bridges comprehension and action in one interface.

2510.04986

Observing Without Doing: Pseudo-Apprenticeship Patterns in Student LLM Use

Finds CS1 students watch LLMs solve problems instead of wrestling with code themselves—a passive learning trap disguised as productivity. The apprenticeship model breaks down.

2510.07435

From Gains to Strains: Modeling Developer Burnout with GenAI Adoption

Models the dark side of AI-assisted coding: productivity gains come with new pressures that correlate with burnout. The tool that speeds you up might also wear you out.

2510.06306

"Grillz on a hijabi": Intersectional Identities in Fostering Critical AI Literacy

Teaches Black Muslim teen girls to critique AI by generating images of themselves. When the system fails their intersectional identity, it becomes a teachable moment about bias.

REFLECTION(4)

Calibration demands constant recalibration

The research reveals a paradox: systems designed for intermediate autonomy—where users retain control—still fail when they can't signal their own limits. Users don't want full automation or full manual control; they want systems that know when to step back. But every calibration point creates a new surface for miscalibration.

Personalization reduces friction but increases opacity—the more a system adapts to you, the harder it becomes to predict when it will fail. Does the convenience of a calibrated system justify the cognitive tax of monitoring it?

1 / 4

Week 40October 2025

Week 42October 2025

ABOUT THIS ISSUE

How this newsletter was synthesized?

Methodology

This newsletter is generated by an AI pipeline (leveraging Anthropic Sonnet 4.5 & Haiku 4.5) that processes the metadata and abstracts of every new arXiv HCI paper from the past week—148 this issue. Each paper is scored on three dimensions: Practice (applicability for practitioners), Research (scientific contribution), and Strategy (industry implications), with scores from 1-5. Papers passing threshold are grouped into topic clusters, and each cluster is summarized to capture what that body of research is exploring.

Selection Criteria

The pipeline builds a curated selection that balances high scores with topic diversity—and deliberately includes at least one 'contrarian' paper that challenges prevailing assumptions. This selection is then analyzed to identify key findings (patterns across multiple papers) and surprises (results that contradict conventional wisdom). A narrative synthesis ties the week's research together under a unifying frame.

Key Themes Discovered

Field Report: ai-interaction

Trust, Agency, and Breakdown

This cluster examines how users calibrate trust and agency when interacting with AI systems across diverse contexts. Core tensions emerge: personalization increases privacy concerns; intermediate autonomy mitigates user anxiety better than full automation; conversational breakdowns demand cognitive effort, especially for older adults. Research spans trust measurement (affective vs. competence dimensions), confirmation strategies in multi-step tasks, and how users repair interaction failures. Methodologically dense with controlled experiments, longitudinal studies, and in-home deployments. Audience: HCI researchers, AI system designers, and practitioners building human-centered AI interfaces.

1/10

Top Papers in this Theme

2510.10199

Revisiting Trust in the Era of Generative AI: Factorial Structure and Latent Profiles

2510.08831

Everyone prefers human writers, including AI

2510.05307

When Should Users Check? A Decision-Theoretic Model of Confirmation Frequency in Multi-Step AI Agent Tasks

2510.06872

Prototyping Multimodal GenAI Real-Time Agents with Counterfactual Replays and Hybrid Wizard-of-Oz

2510.09009