Language to clarify 4.2 privacy section from John Morris on 2009-11-03 (public-geolocation@w3.org from November 2009)

From: John Morris <jmorris@cdt.org>
Date: Tue, 3 Nov 2009 07:26:29 -0800
To: public-geolocation@w3.org
Message-Id: <008E3B89-2B94-4290-BD66-5952A293BBDA@cdt.org>

All,

Following up on our conversation yesterday at the F2F, I want to set  
out the language we discussed that would fully address our remaining  
concerns that we raised in part 1.2 of our last call comments.  We are  
suggesting adding the following one-sentence paragraph (as a new third  
paragraph) into section 4.2 of the draft spec:

"Express permission for retention or retransmission of location  
information must be obtained explicitly from the user, and cannot be  
implied or inferred based on a general disclosure on the recipient web  
site (such as a terms of service or privacy policy document), even if  
accompanied by a user's acceptance of such a disclosure."

There was in the room yesterday at the F2F a general sense that this  
would be acceptable, but we want to raise the new language to the list  
for broader discussion.  We think that this proposed language makes  
clearer what the spec was already essentially saying, and is  
consistent with what the UI makers are doing in terms of specific  
consent in regards to section 4.1.

I've pasted below the full text of Section 4.2 from the spec, with the  
proposed insert.

John

TEXT WITH INSERT:
4.2 Privacy considerations for recipients of location information
Recipients must only request location information when necessary.  
Recipients must only use the location information for the task for  
which it was provided to them. Recipients must dispose of location  
information once that task is completed, unless expressly permitted to  
retain it by the user. Recipients must also take measures to protect  
this information against unauthorized access. If location information  
is stored, users should be allowed to update and delete this  
information.

The recipient of location information must not retransmit the location  
information without the user’s express permission. Care should be  
taken when retransmitting and use of encryption is encouraged.

> Express permission for retention or retransmission of location  
> information must be obtained explicitly from the user, and cannot be  
> implied or inferred based on a general disclosure on the recipient  
> web site (such as a terms of service or privacy policy document),  
> even if accompanied by a user's acceptance of such a disclosure.


Recipients must clearly and conspicuously disclose the fact that they  
are collecting location data, the purpose for the collection, how long  
the data is retained, how the data is secured, how the data is shared  
if it is shared, how users may access, update and delete the data, and  
any other choices that users have with respect to the data. This  
disclosure must include an explanation of any exceptions to the  
guidelines listed above.

Received on Tuesday, 3 November 2009 15:27:08 UTC