Skip to end of metadata
Go to start of metadata

Date

2018-10-18

Status of Minutes

DRAFT

Approved at: <<Insert link to minutes showing approval>>

Attendees

Voting


Non-Voting

  • Sal D'Agostino
  • Sneha Ved

Regrets

  •  
    • Richard Gomer

Quorum Status


Meeting was <<<>>> quorate


Voting participants


Participant Roster (2016) - Quorum is 5 of 9 as of 2018-07-12

Iain Henderson, Mary Hodder, Harri Honko, Mark Lizar, Jim Pasquale, John Wunderlich, Andrew Hughes, Oscar Santolalla, Richard Gomer

Discussion Items

Time

Item

Who

Notes

4 mins
  • Roll call
  • Agenda bashing

5 min
  • Organization updates
All

Please review these blogs offline for current status on Kantara and all the DG/WG:

There is a new wiki page that will hold all the known implementations of Consent Receipts - Please update the page or inform Andrew of your implementation.

Planning a Member Plenary meeting October 26-ish San Francisco (Friday after IIW)

5 minDemo updates / product roadmapAll
  • No new demo partners will be ready for Amsterdam - too short notice
  • Retargeting to EIC in May
  • Intent is to write up a scenario around which our implementers will participate
15 minDiscuss approach to creating usability guidelinesAll

Consent Receipt Usability and Accessibility Project

Mary and Tom have started a list of 'problem areas' that the WG could focus on: User Experience






Material from DRAFT 2018-10-11 Meeting notes (CR) call:

  • Goals
    • what are we trying to design? What problem are we trying to solve and for whom?
      • For people/users: they do not understand the language used in e.g. the Privacy Notice, Privacy statement, Purpose and Consent, etc - and therefore are unable to make informed choices about processing of their personal data.
      • For designers/developers: Developers do not understand or know of the requirements imposed on their products from applicable regulations. And they don't know how to design in ways to meet those requirements in ways that satisfy item 1).
      • For people/users: People are blocked from getting their stuff done by the privacy notices, consents and other disruptions. They want to be interrupted when it matters to them, otherwise not.
        • (Note that this WG does not have the expertise to solve this on the broad scale)
  • What should the WG produce next?
    • A report about "what is problematic"
      • Consent types
      • Purpose definitions for informed consent
20 minInteroperable Consent Receipt roadmap ideasAll

Continuation of the discussion about 'what should interoperate?'


0 minInteroperable Consent Receipt roadmap ideasAll

From 2018-10-04 call:

  • If the legitimate basis is not 'explicit consent' - but rather legitimate interest, is the concept of 'data receipt' still viable?
  • Mark - yes, the current CR was designed to be not confined to 'explicit consent' - so yes, the receipt concept will work for other bases for processing
    • in particular - for updates to privacy notices
  • Mark Q: would it be interesting to have additional values for the 'consent type' field? A: YES! 
    • Jim: maybe this should go to the Consent Management WG?
  • A lawyer at the Seattle event pointed out that it would be useful to capture the actual privacy notice that was agreed by the user.
    • OpenConsent has an alpha product that might suit the purpose
    • There is a systemic problem that needs to be addressed - and capturing the privacy notice won't actually help
    • If there is a strong need for a high value receipt, then it would be very useful to capture the actual notice text
    • So maybe the receipt could have optionality to allow for capture of the notice text.
  • WG needs to take some time to discuss the UX - schedule it
    • Tom has posted some examples that could be discussed
    • Mark - OpenBanking has posted UX guidance
  • Schedule specific multiple calls for this to discuss what the user should see, and how this translates into the 'receipt' concept
    • Should this WG do a spec or guidance on UX or UI?
    • Should this WG talk about what the 'receipt' means and / or represents?
    • (YES to both question)
  • Andrew: suggests first design call on Thursday October 18, 2019 and then every 4 weeks to be kind to the down-under-ers.



Iain: the highest value work item is the lexicon work


5 minAdding feature requests to next version of spec familyAll

AOB



Next meeting

*** NO CALL OCTOBER 25, 2018 DUE TO IIW WEEK ***