[encrypted-media] Align normative text on user consent for Distinctive Identifiers with privacy section from mwatson2 via GitHub on 2015-06-01 (public-html-media@w3.org from June 2015)

From: mwatson2 via GitHub <sysbot+gh@w3.org>
Date: Mon, 01 Jun 2015 15:45:32 +0000
To: public-html-media@w3.org
Message-ID: <issues.opened-83570390-1433173531-sysbot+gh@w3.org>

mwatson2 has just created a new issue for 
https://github.com/w3c/encrypted-media:

== Align normative text on user consent for Distinctive Identifiers 
with privacy section ==
The non-normative Privacy sections states (Section 11.4.2):

"User agents must ensure that users are fully informed and/or give 
explicit consent before Distinctive Identifier(s) are exposed, such as
 in messages from the Key System implementation."

However, the option to provide information has been dropped in the 
normative procedures (Section 3.1.2.1, Step 15):

"If there is no persisted consent covering accumulated configuration 
for the origin, it is recommended that implementations request user 
consent to use Distinctive Identifier(s)."

The Privacy text has been stable for some time and we have not 
discussed recommending consent in all cases. Whether explicit consent 
is necessary is a matter for user agents.

I propose modifying the text in 3.1.2.1 to the following:

"If explicit user consent for the use of Distinctive Identifiers is 
required and if there is no persisted consent covering accumulated 
configuration for the origin, it is recommended that implementations 
request user consent to use Distinctive Identifier(s)."

See https://github.com/w3c/encrypted-media/issues/63

Received on Monday, 1 June 2015 15:45:34 UTC