W3C home > Mailing lists > Public > public-tracking@w3.org > October 2011

Re: Issue-4

From: John Simpson <john@consumerwatchdog.org>
Date: Wed, 26 Oct 2011 13:56:33 -0700
Message-Id: <ACAF097A-5849-44CD-AC53-547A5FB2EC9C@consumerwatchdog.org>
Cc: Tracking Protection Working Group WG <public-tracking@w3.org>
To: "Aleecia M. McDonald" <aleecia@aleecia.com>
Aleecia,

I think your proposed language does a fine job of capturing the idea that DNT is intended to reflect the user's privacy intentions.

Thank you.

John

On Oct 26, 2011, at 11:44 AM, Aleecia M. McDonald wrote:

> Proposed text to react to:
> 
> A compliant user agent must offer users a minimum of two choices: on, and off. When DNT is on, the user agent sends an HTTP header of “DNT: 1”. When DNT is off, the user agent sends an HTTP header of “DNT: 0”. If the user has not expressed a privacy preference, neither the user agent nor any service may send a DNT header on the user’s behalf. For example, neither a browser nor an ISP may inject “DNT: 1” on behalf of all of their users who have not selected a choice corresponding to “DNT: 0”. However, a user may make a choice for privacy that then implicitly includes a DNT setting. For example, a user choosing something like “Privacy settings: high” in a user agent might include a bundle of responses, including turning on DNT. That is acceptable. Similarly, users installing a browser plugin that advertises itself as protecting privacy could also have DNT turned on. Users need not understand the technical mechanisms for DNT and we do not address user interface presentation. The basic principle here is that DNT reliably expresses users’ choices. 
> 
> DNT should only and exactly send a signal of a user's preference. In the absence of user choice, there must be no DNT signal sent. In some cases users will not have DNT preferences, including while using older user agents that do not support DNT. Consequently, services (websites and others) would be wise to assume some users will not send a DNT expression. In the absence of regulatory, legal, or other requirements, services are free to interpret lack of DNT header as they find most appropriate for their users, particularly in light of users’ privacy expectations and cultural circumstances.
> 
> 	Aleecia

----------
John M. Simpson
Consumer Advocate
Consumer Watchdog
1750 Ocean Park Blvd. ,Suite 200
Santa Monica, CA,90405
Tel: 310-392-7041
Cell: 310-292-1902
www.ConsumerWatchdog.org
john@consumerwatchdog.org
Received on Wednesday, 26 October 2011 20:57:02 UTC

This archive was generated by hypermail 2.3.1 : Friday, 3 November 2017 21:44:41 UTC