RE: Privacy protection principles

I will be there.

BTW I looked at WebRTC & mediaCapture and they are just as easy to use as before. Chrome does not reset the media capture deviceId on browser reload, as it says it should in the rec. but hopefully it will soon. 

I built in (probable) browser fingerprinting detection into our Chrome desktop extension Bouncer https://baycloud.com/bouncerDownload . It detects canvas getContext/fillText fingerprinting, WebRTC local IP address and Media Capture deviceID acquisition, and you can set it to notify you when it finds it. There is quite a lot of drive-by use going on, mostly in ads but also by sites that check for fraud, like online banking. 

If you sent it to notify you its gets a bit annoying because there is so much of it out there.

Mike

-----Original Message-----
From: singer@apple.com [mailto:singer@apple.com] 
Sent: 16 September 2016 16:44
To: Joseph Lorenzo Hall <joe@cdt.org>
Cc: Katie Haritos-Shea GMAIL <ryladog@gmail.com>; Chaals from Yandex <chaals@yandex-team.ru>; Kepeng Li <kepeng.lkp@alibaba-inc.com>; public-privacy (W3C mailing list) <public-privacy@w3.org>
Subject: Re: Privacy protection principles


> On Sep 16, 2016, at 8:03 , Joseph Lorenzo Hall <joe@cdt.org> wrote:
> 
> (waits for David Singer to chime in on the vagaries of PII, personal
> information, personal data, etc.)

LOL.

Somewhere I picked up the acronym PDI — Personally Derived Information — and I kinda like it. Given enough information deriving from a personal interaction, you end up knowing something about a person, and they can become identifiable.

> 
> It might be time to have some loya jirga (big discussion) to
> standardize or describe these terms for use in w3c? At CDT we tend to
> default to -- what I associate with European data protection
> regulation -- "personal data".
> 
> Will be great to see many of you next week!
> 

Very much looking forward to it.  Travel safely!

David Singer
Manager, Software Standards, Apple Inc.

Received on Friday, 16 September 2016 16:42:55 UTC