- From: Dave Longley <notifications@github.com>
- Date: Thu, 21 Sep 2017 12:36:43 -0700
- To: w3c/payment-request <payment-request@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
- Message-ID: <w3c/payment-request/pull/628/review/64398818@github.com>
dlongley commented on this pull request.
> @@ -3320,6 +3320,11 @@
The <a>user agent</a> MUST NOT share information about the user with
a developer (e.g., the shipping address) without user consent.
</p>
+ <p>
+ The <a>user agent</a> MUST NOT share sales information beyond the payment
@markalanrichards,
I think you made a lot of good points. However, if you split off budgeting into its own API, who will call it? It's orthogonal to what the merchant is trying to do (get payment) -- so the incentives don't seem properly aligned to get someone to call the API there. If you have the payment provider call the API -- then you haven't solved the issue of this feature being unduly coupled to the payment provider.
It could be designed such that a user provides consent on a budget provider website so that whenever a payment is completed that website's Service Worker will receive an event with the budget information. However, I'm not sure that addresses your privacy concerns. It may be particularly difficult for a user to manage turning such a feature off/on -- accidentally forever sending information to some budgeting website they meant to stop using long ago. I suppose those options could be on the UI where payment request happens... but that still implies, at a minimum, some integration points. But maybe that's ok since the APIs are separable.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/payment-request/pull/628#discussion_r140339221
Received on Thursday, 21 September 2017 19:37:25 UTC