RE: privacy definitions -- was: WebID questions from Fred Andrews on 2012-10-19 (public-privacy@w3.org from October to December 2012)

From: Fred Andrews <fredandw@live.com>
Date: Fri, 19 Oct 2012 05:37:39 +0000
To: Mike O'Neill <michael.oneill@baycloud.com>, "public-privacy@w3.org" <public-privacy@w3.org>
Message-ID: <BLU002-W1650F79CB7E7AA304BCE8BEAA750@phx.gbl>

Hi Mike,

I hope you can get some more response status values into the DNT spec.
so that this becomes possible.  Then at least it would be possible to request
DNT:1 from a 1st party and to block the content if it does not comply.

Please be sure to take into account resources that are permitted to be a
3rd party when loaded yet change to act as a 1st party upon interaction -
require such resources to declare this in the status value and not to just
declare they are not tracking etc.

cheers
Fred


> From: michael.oneill@baycloud.com
> To: public-privacy@w3.org
> Date: Thu, 18 Oct 2012 15:53:50 +0100
> Subject: privacy definitions -- was: WebID questions
> 
> Rigo,
> 
> Hopefully once DNT is accepted as a universal consent signal browser and
> plug-in developers will compete to introduce (optional?) features that
> ensures it takes effect i.e. cookie removal, ETAG value deletion, HTML5
> localStorage removal, fingerprinting minimisation etc. 
> 
> 
>  A combination of regulation and competitive technology is what is needed.
> 
> Mike
> 
> -----Original Message-----
> From: Rigo Wenning [mailto:rigo@w3.org]
> Sent: 18 October 2012 15:08
> To: public-privacy@w3.org
> Cc: David Singer; Ian.Oliver@nokia.com; henry.story@bblfish.net;
> melvincarvalho@gmail.com; benl@google.com; public-webid@w3.org
> Subject: Re: privacy definitions -- was: WebID questions
> 
> On Wednesday 17 October 2012 14:49:03 David Singer wrote:
> > Don't tell me that you are using cookies - they can be quite 
> > innocuous. Tell me you're tracking me.  And so on.
> 
> This was the basic idea behind P3P. But the browsers favored cookie-
> blocking tools. DNT can't do the trick. The UI issue is really tricky. In
> the Primelife project we found out that a button that goes to a privacy
> dashboard was well received (we had usability studies on that by CURE)
> 
> So it may be that we have to touch on the basic idea again and adapt it to
> the landscape of today. There is a gazillion ways of expressing a state on
> the Web today. It is not only about fingerprinting, but also about the whole
> range of means for client side storage. 
> 
> Best, 
> 
> Rigo
> 
> 
>

Received on Friday, 19 October 2012 05:38:06 UTC