Re: [w3ctag/design-reviews] First-Party Sets (#342) from Peter Linss on 2024-02-27 (public-webapps-github@w3.org from February 2024)

From: Peter Linss <notifications@github.com>
Date: Tue, 27 Feb 2024 12:37:24 -0800
To: w3ctag/design-reviews <design-reviews@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3ctag/design-reviews/issues/342/1967548315@github.com>

To summarize and close this review, we note that there are some disagreements about goals here that underpin the disconnect.
  
The goals you have set out in the explainer are:
  
> * It must be difficult to reidentify significant numbers of users across sites using just the API.
> * The API should provide a subset of the capabilities of third-party cookies.
> * The topics revealed by the API should be less personally sensitive about a user than what could be derived using today’s tracking methods.
> * Users should be able to understand the API, recognize what is being communicated about them, and have clear controls. This is largely a UX responsibility but it does require that the API be designed in a way such that the UX is feasible.

The set of goals also implictly compares the privacy characteristics of this API to the web **with** 3rd party cookies (and tracking).  In the spirit of "[leaving the web better than you found it](https://w3ctag.github.io/design-principles/#leave-the-web-better)," we would like to see the design goals achieved whilst also preserving the privacy characteristics of the web **without** third party cookies.

We do acknowledge that you have arguably achieved the 4th goal, with an API that does not actively prevent the user from understanding and recognizing what is being communicated about them. However the implicit [privacy labour](https://w3ctag.github.io/privacy-principles/#privacy-labour) that would be required to manage this set of topics on an ongoing basis remains a key question.

Finally, we challenge the assertion that reidentification *in the absence of other information* is the right benchmark to apply.  As we previously noted, the potential for this to affect privacy unevenly across different web users is a risk that is not adequately mitigated.
  

-- 
Reply to this email directly or view it on GitHub:
https://github.com/w3ctag/design-reviews/issues/342#issuecomment-1967548315
You are receiving this because you are subscribed to this thread.

Message ID: <w3ctag/design-reviews/issues/342/1967548315@github.com>

Received on Tuesday, 27 February 2024 20:37:28 UTC