- From: Lorrie Cranor <lorrie@research.att.com>
- Date: Thu, 7 Feb 2002 15:30:59 -0500
- To: "Billings, Tracy" <TBillings@exchange.webmd.net>, <www-p3p-policy@w3.org>
Policies about cookies have to cover both the data actually stored in the cookie, and the data linked via a cookie. Often cookies contain nothing but an identifier that is used as a database key. Anything in the associated database would have to be described in the cookie policy as well. Lorrie ----- Original Message ----- From: "Billings, Tracy" <TBillings@exchange.webmd.net> To: <www-p3p-policy@w3.org> Sent: Thursday, February 07, 2002 3:32 PM Subject: scope of compact policy tokens > The P3P spec states: > "In P3Pv1, compact policies contain policy information related to cookies > (cf. [COOKIES] and [STATE]) only." > > I take this to mean that the only information being described by compact > elements and tokens, then, is information collected by or contained in > cookies. > > As such would this then mean that these tokens are not intended to describe > other information collected on the site through active mechanisms such as > registration and opt-in unless such information is collected by or contained > in a cookie? > > tracy billings > product manager > WebMD > .............................. > tbillings@webmd.net > 510.299.5873 cell > 408.876.5721direct > >
Received on Thursday, 7 February 2002 15:40:09 UTC