[WG-IDAssurance] [WG-P3] What to call a Relying Party in terms of aTrust Framework
rainer at hoerbe.at
Fri Mar 11 10:51:38 EST 2011
Aha. So the ISO term is "PII principal", which is a person to whom the PII relates, and that is the same as a “data subject”.
Can you give me more details about the Master Controler?
Am 11.03.2011 um 13:59 schrieb Mark Lizar:
> The term Principle came from a restricted ISO Privacy Standard's doc that I recently read. I dont think I can reference directly.(I will check)
> It pertains to the term Principle Actor. As Iain Henderson points out. There is no active term for Data Subject that is commonly used, perhaps Principle gets closest to the description. Still, I like the term Master Controller as invented the term in this context in a paper I wrote in 2005 called building a Master Controller Access Framework).
> Currently in the Privacy Framework WG, led by Anna Solomovic we are reviewing global priacy principles for use in the Privacy Trust Framework analysis of Identity Management and the IAF. It would be great to combine or link efforts in area's where we are doing the same thing for similar purpose.
> - Mark
> On 11 Mar 2011, at 08:33, Rainer Hörbe wrote:
>> I need to rephrase my question: What does Principal mean in the data protection context (receiver, data subject or something else)? Did you refer to a particular terminology?
>> Scott David did a quite broad terminology comparison for his upcoming global grid glossary. Besides various IDM sources he researched 3 privacy frameworks, 2 from ITU-T and "Generally Accepted Privacy Principles: A Global Privacy Network". From this comparison it seems that controller, processor, recipient and data subject seem to be the most common terms.
>> - Rainer
More information about the WG-IDAssurance