time limited contexts text (for definition of context CfO from Mike O'Neill on 2014-01-22 (public-tracking@w3.org from January 2014)

From: Mike O'Neill <michael.oneill@baycloud.com>
Date: Wed, 22 Jan 2014 18:43:22 -0000
To: "'Justin Brookman'" <jbrookman@cdt.org>, <public-tracking@w3.org>, <mts-std@schunter.org>
Message-ID: <04a701cf17a1$d3e5cce0$7bb166a0$@baycloud.com>

This was next I discussed with Rob but we agreed to leave it out for sake of
clarity about a context being single responsible data controller with
multiple domains declared in same-party. I agree with Matthias that the
time-limited aspect will be important to users so we could have a (brief)
discussion about it next week. 

 

Mike

 

 

For the purpose of this definition, a context is a time limited network
interaction with resources controlled by a small set of user discernable
data controllers, sharing the same privacy policy, and a common branding.

 

To ensure transparency the responsible data controllers, other than the data
controller of the  host server identified in the  user-agent's location-bar,
MUST be listed in the same-party member of the Tracking Resource.

 

Non-normative:

 

Within any particular  network interaction  a user can expect that session
states and other data necessary to support the activity will be preserved or
shared between the identifiable data controllers and their contracted
service providers, but that , without explicit consent being given, no
personally identifiable record will be retained beyond a short period after
the last user initiated network transaction.

Received on Wednesday, 22 January 2014 18:43:55 UTC