Re: [w3c/payment-request] Regulatory Compliance Support (#632)

> Privacy impact assessment will have to be done as some form of exercise everywhere user data is handled in Europe, which will likely include most if not all payment situations. 

Sometimes yes, sometimes not. The criteria aren't yet finalized and it "all depends". 
I didn't see you citing any relevant sources on PIAs or DPIAs requirements in this thread yet. 

> For most of these sensitive payments, I hope  ...

I'm not asking for payments. I asked if you think W3C should make PIAs for all the standardized APIs in general, and perhaps suitable towards any business out there? If yes, why only focusing on payments, if not, why not? There are, after all, many APIs!

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/payment-request/issues/632#issuecomment-335922673

Received on Wednesday, 11 October 2017 19:33:46 UTC