[w3c/browser-payment-api] Expand Privacy Considerations Section (#228) from adamroach on 2016-08-10 (public-webpayments-specs@w3.org from August 2016)

From: adamroach <notifications@github.com>
Date: Wed, 10 Aug 2016 12:59:04 -0700
To: w3c/browser-payment-api <browser-payment-api@noreply.github.com>
Message-ID: <w3c/browser-payment-api/issues/228@github.com>

This is a recommendation from the Security and Privacy Checklist review. See https://docs.google.com/document/d/1w7ginyzNg-xZUmITK4vzcGUKB4gbMOAvlkWWaRtX14k/edit?usp=sharing for additional detail

The “Privacy Considerations” section of the Payment Request API spec includes a one-sentence treatment of this issue. This should be expanded to address the types of consent (contemporaneous consent versus stored consent), and make it clear that nearly all data exposed through the API is personally identifying.


---
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/browser-payment-api/issues/228

Received on Wednesday, 10 August 2016 19:59:33 UTC