Re: simple, standardized privacy policy discovery from Edward W. Felten on 2013-10-15 (public-privacy@w3.org from October to December 2013)

From: Edward W. Felten <felten@CS.Princeton.EDU>
Date: Tue, 15 Oct 2013 10:43:11 -0400
To: Mark Lizar <info@smartspecies.com>
Cc: Nicholas Doty <npdoty@w3.org>, "public-privacy (W3C mailing list)" <public-privacy@w3.org>, akmassey@gatech.edu, jasnell@gmail.com
Message-ID: <CANZBoGiNGmmSdGFBsvb0ugcSJg06X8oF+62ubtdXRP4M48iKQA@mail.gmail.com>

On Tue, Oct 15, 2013 at 10:04 AM, Mark Lizar <info@smartspecies.com> wrote:

> This  is a great update on Notice discovery.
>
> I noticed in option 3 RFC - there is a note.
>
> Note that in the absence of clear legal obligations placed on an
>    entity, either through contract or law, the presence of a "privacy-
>    policy" link does not constitute a legally binding obligation on the
>    part of the service.  The linked resource can only be interpreted as
>    a description of the expected practice.
>
>
>
> I would disagree that there is an absence of clear legal obligation.
>

Actually, the quoted text seems like a tautology: in the absence of a legal
obligation, there is no legal obligation.   It seems better to say that it
is not the role of this document to say what legal obligations, if any,
might apply.

Received on Tuesday, 15 October 2013 14:47:12 UTC