RE: Proposals for Compliance issue clean up

On 2012-11-10 17:40, Mike O'Neill wrote:
> My opinion is that there should be no difference in the compliance
> spec between 1st and 3rd parties, the DNT:1 signal should mean UUIDs
> must not be allocated or used without consent, and we should put more
> effort in designing an effective and transparent exception protocol.
> As has been pointed out many times this distinction cannot apply in
> Europe anyway. The reason most of us are here is to respond to
> people’s unease about privacy and loss of trust in the web, and we
> should primarily address that.

May I also add that the technical reality is also that the UA 
intereacts through HTTP with both 1st and 3rd parties as if they are all 
1st parties. So both at the technical level as within the European legal 
context, this distinction is not particularly helpful.

Not all is lost though, I think the discussions about Same-Party as a 
result of the 1st and 3rd party distinction have been helpful and the 
mechanism proposed is a good start to ensure accountability.

Regards,

  Walter

Received on Saturday, 10 November 2012 15:51:46 UTC