Re: Batch closing of TPE related issues

Hi Bryan,

On Jun 12, 2013, at 8:51 AM, "SULLIVAN, BRYAN L" <> wrote:

> On Jun 12, 2013, at 4:07 PM, "Nicholas Doty" <> wrote:
>> I didn't understand ISSUE-192 to be about the capability for revocation of user-granted exceptions within the browser, but a question as to whether the API for storing user-granted exceptions in the user agent should include capabilities for cookie semantics, including timed expiration or secure-only. I agree with the resolution that it doesn't seem at this time like those capabilities are needed. To Rob's point, I don't think ISSUE-192 addresses the question of user control of revoking user-granted exceptions; we should go ahead and close it.
>> When the idea of user-granted exceptions as stored in the browser (rather than consent mediated by the browser) was first proposed, I did try to express concern about the confusing situation of simultaneously using stored user-granted exceptions and out-of-band consent. One key advantage of having user-granted exceptions stored by the user agent is that the user can inspect them in a single place and revoke granted permissions at a time of their choosing. If users revoke these exceptions but the consent is also stored through some out-of-band means and so the user continues to be told that they have consented to being tracked in a specific context, it would be surprising to the user and it might become difficult to opt-back-out.
> <Bryan> perhaps, Nick. But that "single place" advantage is only applicable if (1) you don't consider that the user will likely be accessing services via many devices and multiple browsers; (2) the UI/UX across UAs is fairly consistent, with UAs here meaning any Webview-enabled hybrid app also - a very unlikely scenario IMO.

(Apologies if I'm repeating comments from earlier, but maybe they were on a call or in person, rather than in email.) 

It's true that users' ability to review user-agent managed DNT exceptions in a single place may depend on user agent implementations. It's possible that some users and some user agents will enable syncing of DNT preferences and stored DNT exceptions across devices -- as you've pointed out, the user agent itself could be in the cloud. There may also be cases where users don't sync these preferences by choice; we have seen evidence of users separating browsing activity by browser out of privacy concerns, and that users have different privacy concerns in different contexts (like their mobile phone versus their work desktop).

To your point (2), it may be that the UX of DNT preferences and exception handling will vary to some extent across browsers (that's our intention in not overspecifying UI). It seems to me unlikely that that variation will be larger than the variation of preference configuration across all Web sites and third party services.

For both of these reasons, the storage of DNT preferences in the browser has advantages for users. If users had to revoke each exception in more than one place, in their UA(s) and each site itself, it would remove one of the major advantages we identified with having user-agent stored exceptions.


Received on Saturday, 15 June 2013 00:18:29 UTC