- From: Roy T. Fielding <fielding@gbiv.com>
- Date: Sat, 13 Apr 2013 15:41:01 -0700
- To: Matthias Schunter (Intel Corporation) <mts-std@schunter.org>
- Cc: "public-tracking@w3.org (public-tracking@w3.org)" <public-tracking@w3.org>
- Message-Id: <2372915C-975C-4817-9927-379B905D4B6C@gbiv.com>
On Apr 12, 2013, at 6:15 AM, Matthias Schunter (Intel Corporation) wrote: > I have been tempted to put ISSUE-152 on my batch closing email and then realised that we may not have had this discussion. > > ISSUE-152<Mail Attachment.png> > User Agent Compliance: feedback for out-of-band consent > STATUS: > - We have a "C" signal that says that a site claims/uses out of band consent > - We have a "control" link where a user can get more information > - We do not require the user agent to process/display/handle this information > > DISCUSSION > - The purpose of ISSUE-152 was to discuss whether we should require user agents > to notify users if this "C" signal has been sent. > - The ideas was that the user should be educated that a site may not comply with his desire to DNT;1 > > PROPOSED RESOLUTION > - I would leave this to the user agents whether/how to display this signal > > > Opinions? ISSUE-152 should be CLOSED. Consent overrides DNT:1 so that the user doesn't have to constantly turn the global setting off/on based on which sites they choose to visit. Signaling that the user has consented is merely making transparent that a site believes it already has consent from the user. That response doesn't reduce the site's obligations in any way: if the site doesn't actually have consent, it doesn't have permission regardless of what is sent in the response. When alerting is desired (e.g., inspect mode), user agents can implement it and users can choose for themselves whether and when to display tracking status for every element of the page. There is no need to obligate UAs to add verification features. ....Roy
Received on Saturday, 13 April 2013 22:40:57 UTC