Subject: World Wide Web Consortium Staff Comments on Multistakeholder Process to Develop Consumer Data Privacy Codes of Conduct
From: npdoty@w3.org
Date: 4/02/2012 04:55:00 PM To: NTIA Cc: Thomas Roessler, Wendy Seltzer, Rigo Wenning Bcc: https://bcc.npdoty.name/

Please see attached comments, also publicly available at: https://www.w3.org/2012/04/ntia-multistakeholder-comment.html

Nick Doty
Privacy
World Wide Web Consortium



We've commonly heard (at workshops in July '10, December '10 and April '11, for example) that W3C should have a venue for discussing and addressing ongoing and upcoming privacy issues. To that end, we're proposing a Privacy Interest Group, with a draft charter now available.

http://www.w3.org/2011/07/privacy-ig-charter

Feedback from the public (and this list in particular) would be most helpful.

I'm imagining this group as a place to discuss new issues (via public-privacy), spin off Recommendation-track work as necessary, develop guidelines for handling privacy considerations and provide advice to other groups for handling privacy in Web specifications. How do *you* think a group like this should function?

Discussion is welcome on this list, or feel free to send me feedback offline.

Thanks,
Nick



Following up on the Princeton workshop [1] and widespread interest from both industry and regulators [2] in standardizing Do Not Track technologies, we're proposing a Tracking Protection Working Group, with a draft charter now available.

http://www.w3.org/2011/tracking-protection/charter-draft

Feedback from the public (and this list in particular) would be most helpful.

Next steps will be to send the charter to the W3C Advisory Committee for review. After that step and approval from the Director, we expect the group to form and work to begin by the end of August.

Discussion is welcome on this list; if you wish to send comments offline, please contact me <npdoty@w3.org> and Thomas Roessler <tlr@w3.org>.

Thanks,
Nick

[1] http://www.w3.org/2011/track-privacy/report.html
[2] http://www.w3.org/QA/2011/06/do_not_track_the_regulators_ch.html



Hello all,

I had just a couple of my own comments to follow up on CDT's last call privacy comments and the "intended usage notification" thread that lingered and languished on this list a few months ago.

First of all, I'd like to second CDT's request to hear from other members of this list as to whether implementors of the API or users of the API that don't fulfill all the normative requirements in "Privacy considerations for implementors of the Geolocation API" and "Privacy considerations for recipients of location information" will be officially non-conformant with the API.

For example, Flickr's mobile website provides a "Photos taken nearby" feature which makes use of the draft Geolocation API. But Flickr apparently doesn't clearly and conspicuously disclose how long location data is retained, how location data is secured or whether location data is shared -- the "Your Privacy" link doesn't describe any uses or practices around location data. I might conclude from following another link that the "Yahoo! Privacy Policy" covers my location information, but it's never described explicitly and I couldn't definitively determine if my location information was stored or shared.

What does the WG intend by requiring recipients to "clearly and conspicuously disclose"? Is disclosure within a long Privacy Policy sufficient? Or do we expect location information to be addressed explicitly and before location information is requested? Also, will the W3C have any power to enforce or judge implementations or (ab)uses of the API?

Second (and I bring this up specifically because it might address ambiguities with the normative privacy considerations), I wasn't sure we ever came to a satisfactory conclusion on whether to allow requesters of location information to specify in their request how location information will be used, how long it will be kept or whether location information will be transmitted to 3rd parties. While Doug, Greg, Andrei and Ian proposed that allowing websites to present information about their usage would let them deceive users, Martin, Henning, Max and I thought that some additional context about how location information will be used would be valuable for user privacy.

Could we find some middle ground where requesters can't place arbitrary text which could deceive, but can fill in a timestamp for how long data will be kept and a flag for whether it will be shared? If not in V1, can we open an Issue to reconsider this question in V2? Again, this could help clarify ambiguities around "conspicuous disclosure", address concerns about privacy protection or even provide an easier step towards associating Geopriv-style permissions with location data.

Thanks,
Nick Doty
UC Berkeley School of Information