W3C home > Mailing lists > Public > public-device-apis@w3.org > March 2010

Re: Proposed text for privacy requirements

From: Alissa Cooper <acooper@cdt.org>
Date: Tue, 9 Mar 2010 19:08:34 +0000
Cc: Paddy Byers <paddy.byers@gmail.com>, "SULLIVAN, BRYAN L (ATTCINW)" <BS3131@att.com>, Thomas Roessler <tlr@w3.org>, Dominique Hazael-Massieux <dom@w3.org>, W3C Device APIs and Policy WG <public-device-apis@w3.org>
Message-Id: <9FAECE9C-2EF9-4602-80F2-7CD960227251@cdt.org>
To: Frederick Hirsch <frederick.hirsch@nokia.com>
I agree, our focus should be on the declarative aspect.
Alissa

On Mar 9, 2010, at 6:53 PM, Frederick Hirsch wrote:

> Lets say, for the sake of argument, that having privacy icons is a  
> great idea (it sounds like it would remove end-user confusion)
>
> How would this relate to the definition of Javascript APIs? I assume  
> it would be an indicator of a specifically chosen privacy policy, at  
> least in some key set of attributes.
>
> Thus I think I agree with Bryan that we are back to defining policy  
> appropriately and how to bind that to an instantiated API.
>
> Is this correct, or am I missing another aspect of the implications?
>
> regards, Frederick
>
> Frederick Hirsch
> Nokia
>
>
>
> On Mar 7, 2010, at 2:56 PM, ext Alissa Cooper wrote:
>
>>
>> On Mar 4, 2010, at 1:10 PM, Paddy Byers wrote:
>>
>>> You're thinking of something like the Creative Commons "license
>>> deed" (for example [0]) ?
>>>
>>> Thanks - Paddy
>>>
>>> [0]: http://creativecommons.org/licenses/by/3.0/
>>
>>
>> The design space is pretty vast, and the question of what gets
>> represented is obviously separate from the question of how it gets
>> represented. The notion of compact privacy policies has been around  
>> at
>> least since P3P if not before. There have also been a number of
>> efforts to develop a set of privacy icons [0][1][2]. These can get
>> quite prescriptive in what they can express, but that could be a
>> benefit. On the far less complex end of the spectrum, apps could just
>> be given a text field in which to declare a small snippet of their
>> policies in human-readable form. If this kind of policy communication
>> is something we decide to pursue, it's probably worth exploring the
>> whole range of options.
>>
>> [0] http://identityproject.lse.ac.uk/mary.pdf
>> [1] https://wiki.mozilla.org/Drumbeat/Challenges/Privacy_Icons
>> [2] http://asset.netzpolitik.org/wp-upload/data-privacy-icons-v01.pdf
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>
>
>
Received on Tuesday, 9 March 2010 19:09:17 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 9 May 2012 00:14:06 GMT