Late addition to TAG Telcon agenda: Fw: Action Re. Policy Note to DAP WG and others from noah_mendelsohn@us.ibm.com on 2009-10-08 (www-tag@w3.org from October 2009)

From: <noah_mendelsohn@us.ibm.com>
Date: Thu, 8 Oct 2009 11:56:05 -0400
To: www-tag@w3.org
Message-ID: <OFE1182D88.3F4F6A05-ON85257649.00577259-85257649.00571BC1@lotus.com>

I'm afraid I'm way behind on email and just rediscovered this, which I 
should have put on the agenda.  We'll briefly consider it, or else decide 
to table until Ashok returns.  Thank you.

Noah

--------------------------------------
Noah Mendelsohn 
IBM Corporation
One Rogers Street
Cambridge, MA 02142
1-617-693-4036
--------------------------------------




----- Forwarded by Noah Mendelsohn/Cambridge/IBM on 10/08/2009 11:50 AM 
-----


ashok malhotra <ashok.malhotra@oracle.com>
Sent by: www-tag-request@w3.org
09/29/2009 05:03 PM
Please respond to ashok.malhotra
 
        To:     "www-tag@w3.org" <www-tag@w3.org>
        cc:     (bcc: Noah Mendelsohn/Cambridge/IBM)
        Subject:        Action Re. Policy Note to DAP WG and others


At the end of Friday's meeting I was given an action to draft a note 
that the TAG may want to send to the DAP WG,
the Geolocation WG and possible others.  I don't know if this was 
recorded as a formal action as we were in the process of adjourning.  I 
have nevertheless prepared a draft for the TAG's consideration.  See 
below.

I will miss 3 telcons due to vacation, etc.  If the TAG can agree on the 
wording, as below or suitably amended,
feel free to send the note.  Please copy Rigo Wenning and Thomas Roessler.


  Draft TAG Note Re. User Policy

The W3C Policy Languages Interest Group maintains a Wiki which contains 
real world cases where personal information has been compromised due to 
inadequate policy or poor/nonexistent enforcement: 
http://www.w3.org/Policy/pling/wiki/InterestingCases. One of these cases 
describes how Virgin Mobile used photos that it found on Flickr in a 
national advertising program.  The photos appeared on large billboards, 
much to the surprise of the owner and the subject. 

In the public mind, issues related to the management and protection of 
user information in Web Applications, Device access over the Web and 
Services provided over the Web loom large and must be addressed.  The 
TAG, therefore, urges WGs working in these areas to include in their 
architecture the ability to include policy information to control access 
to user data, retention of user data and related concerns.   It should 
be possible to include policy information in API calls in a flexible 
manner, perhaps using an extension mechanism.

There has been some dialog in this area.  The IETF GeoPriv WG has 
requested the W3C Geolocation WG to add additional support for user 
privacy.  See: 
http://lists.w3.org/Archives/Public/public-geolocation/2009Aug/0006.html

There is a discussion thread on this subject on the Geolocation Mailing 
list: 
http://lists.w3.org/Archives/Public/public-geolocation/2009Jun/thread.html#msg98 



-- 
All the best, Ashok

Received on Thursday, 8 October 2009 15:54:17 UTC