Re: Proposed Text for Issue 71

On Jan 30, 2012, at 3:14 AM, Shane Wiley wrote:

>  <Non-Normative>  Third parties SHOULD take technical measures to ensure data collected will not be accidently merged with previously collected profile data.  For example, even in operational purpose exceptions, a third party could use an alternate identifier scheme to remove the direct association of data.  Third parties MAY choose to strip identifiers or not collect data at all in these cases.”

Just a minor nit, when we use MUST, SHOULD or MAY (as defined in RFC 2119), those are all considered normative requirements, just with different levels of requirement.

Thanks,
Nick

Received on Monday, 30 January 2012 11:18:07 UTC