16:50:22 RRSAgent has joined #dnt 16:50:22 logging to http://www.w3.org/2011/12/14-dnt-irc 16:50:29 Zakim has joined #dnt 16:50:36 Zakim, this is dnt 16:50:36 aleecia, I see T&S_Track(dnt)12:00PM in the schedule but not yet started. Perhaps you mean "this will be dnt". 16:50:42 Zakim, this will be dnt 16:50:42 ok, aleecia; I see T&S_Track(dnt)12:00PM scheduled to start in 10 minutes 16:50:50 chair: aleecia 16:51:02 regrets+ ndoty 16:51:41 agenda+ Selection of scribe 16:52:02 tedleung has joined #Dnt 16:52:10 T&S_Track(dnt)12:00PM has now started 16:52:17 +aleecia 16:52:34 agenda+ Any comments on minutes from the last call 16:52:52 Review of action items: http://www.w3.org/2011/tracking-protection/track/ 16:53:09 agenda+ Reminder: those drafting text, please send to those editing the text by the end of the day today 16:53:30 agenda+ ISSUE-101 What is a user? add to defns 16:53:44 agenda+ ISSUE-104 Could use a better defn of user agent, rather than browser 16:53:56 agenda+ ISSUE-19 Data collection / Data use (3rd party) 16:54:07 agenda+ Announce next meeting & adjourn 16:54:57 jmayer has joined #dnt 16:54:59 +tl 16:55:02 -aleecia 16:55:03 regrets+ Jeffrey Chester 16:55:03 +aleecia 16:55:23 zakim, who is on the call please 16:55:23 I don't understand 'who is on the call', aleecia 16:55:45 agenda? 16:57:25 zakim, who is on the phone? 16:57:25 On the phone I see aleecia, tl 16:57:40 thank you, was that that so hard zakim? 16:57:51 +jmayer 16:58:11 efelten has joined #dnt 16:58:22 justin has joined #dnt 16:58:27 +tedleung 16:58:41 + +91.37.4.aaaa 16:59:01 zakim, mute me 16:59:06 +efelten 16:59:11 KevinT has joined #dnt 16:59:22 sorry, dsriedel, I do not know which phone connection belongs to you 16:59:32 + +65141aabb 16:59:34 will do 16:59:42 fielding has joined #dnt 16:59:46 .. thats me sorry 16:59:54 sidstamm has joined #dnt 17:00:01 ninjamarnau has joined #dnt 17:00:01 Frankie has joined #dnt 17:00:03 Zakim, +65141aabb is rvaneijk 17:00:11 +NinjaMarnau 17:00:19 who is on the call 17:00:19 Zakim, 65141aabb is rvaneijk 17:00:25 zakim, who is on the phone 17:00:27 +SueG 17:00:33 Zakim, Mozilla has sidstamm 17:00:35 zakim aabb is rvaneijk 17:00:41 +Joanne 17:00:45 tnk Tom 17:00:48 - +91.37.4.aaaa 17:00:52 +rvaneijk; got it 17:00:53 +[Mozilla] 17:01:11 hwest has joined #dnt 17:01:16 sorry, rvaneijk, I do not recognize a party named '65141aabb' 17:01:23 I don't understand 'who is on the phone', aleecia 17:01:27 zakim, aabb is rvaneijk 17:01:29 +sidstamm; got it 17:01:35 +dsriedel 17:01:43 +fielding 17:01:46 WileyS has joined #dnt 17:01:53 +Justin 17:01:58 +hwest 17:02:01 sorry, aleecia, I do not recognize a party named 'aabb' 17:02:03 -dsriedel 17:02:14 adrianba has joined #dnt 17:02:25 + +1.425.214.aacc - is perhaps bryan 17:02:29 +[IPcaller] 17:02:35 + +1.347.689.aadd 17:02:51 Zakim, IPcaller is frankie 17:02:55 + +1.310.292.aaee 17:02:58 vincent has joined #dnt 17:03:04 alex has joined #dnt 17:03:06 +WileyS 17:03:09 zakim aaee is jsimpson 17:03:16 +dsriedel 17:03:20 +frankie; got it 17:03:23 zakim, mute me 17:03:32 I can scribe 17:03:33 I can 17:03:43 agenda 17:03:46 agenda? 17:03:47 +[IPcaller] 17:03:50 dsriedel should now be muted 17:03:56 + +1.646.654.aaff 17:04:05 scribe is efelten 17:04:14 zakim, who is on the phone? 17:04:16 aleecia: Comments on last week's minutes? 17:04:22 Zakim, who is talking? 17:04:23 zakim, who is talking? 17:04:32 zakim, Justin has enewland 17:04:33 enewland has joined #dnt 17:04:35 Lia has joined #dnt 17:04:39 dsinger has joined #dnt 17:04:44 No comments, take minutes as approved 17:04:45 On the phone I see aleecia, tl, jmayer, tedleung, efelten, rvaneijk, NinjaMarnau, SueG, Joanne, [Mozilla], fielding, Justin, hwest, bryan, frankie, +1.347.689.aadd, 17:04:51 ... +1.310.292.aaee, WileyS, dsriedel (muted), [IPcaller], +1.646.654.aaff 17:04:53 [Mozilla] has sidstamm 17:04:53 zakim, [apple] has dsinger 17:04:57 +enewland; got it 17:04:59 jmayer, listening for 10 seconds I heard sound from the following: [IPcaller] (5%), aleecia (72%) 17:05:09 zakim, [Disney] has tedleung 17:05:16 tl, listening for 10 seconds I heard sound from the following: 21 (57%), aleecia (68%) 17:05:19 +[Apple] 17:05:20 zakim, aaee is jsimpson 17:05:22 +dsinger; got it 17:05:24 eberkower has joined #dnt 17:05:25 aleecia: If you're drafting text, by end of today please send to those editing the text 17:05:31 http://www.w3.org/2011/tracking-protection/track/actions 17:05:36 sorry, tedleung, I do not recognize a party named '[Disney]' 17:05:37 ... quick look through action items 17:05:45 +AlexDeliyannis 17:05:48 +jsimpson; got it 17:05:53 bryan_ has joined #dnt 17:06:03 present+ Bryan_Sullivan 17:06:04 ... start with action 26; Karl not on call; 26 is overdue 17:06:19 zakim, [IPcaller] is vincent 17:06:21 +vincent; got it 17:06:21 ... action 27, is that open? 17:06:50 tl: 27 is pending review; Tom trying to synthesize with Jonathan's work; will circle back 17:07:07 ... can do by Friday 17:07:33 aleecia: action 31, shane et al 17:07:57 WileyS: have draft text, well thought through, will post today with some issues still open 17:08:17 scribenick: efelten 17:08:20 aleecia: action 34, first party vs third party, Jonathan and Tom working together, related to previous 17:08:23 Present+ adrianba 17:08:29 ... action 37, Karl not on phone 17:08:33 ... done with open actions 17:08:45 http://www.w3.org/2011/tracking-protection/drafts/tracking-compliance.html#user 17:08:46 ... look at text drafted by editors 17:08:56 sorry: action 27 is complete, action 34 is the current open action with jmayer 17:09:00 ... start with definition of user 17:09:04 I believe that I'm on the hook to help draft something about identity providers, but I don't see an action item - where do I find that? 17:09:22 ... [reads definition] 17:09:26 Zakim Joanne is KevinT 17:09:36 +q 17:09:44 ... text is coming from other related W3C specs, or other docs seen previously on mailing list 17:10:04 ack WileyS 17:10:09 tl, action 27 is not complete, nice try 17:10:25 we used http://www.w3.org/2003/glossary/alpha/U/20 as a starting point 17:10:31 for the definitions of user and user agent 17:10:36 thank you, erica 17:10:49 suggest marking this as pending review 17:10:50 WileyS: on defn of user, will be difficult for some of us to evaluation without knowing more about how used later in documents; might need to return to defns later as uses develop 17:10:51 user agent is already defined in the TPE document 17:11:01 s/evaluation/evaluate/ 17:11:03 jmayer, action 27 was sent to the list, reviewed, and turned into the new and shiny action 34 for both of us 17:11:03 dwainberg has joined #dnt 17:11:13 We should probably reconcile those . . . 17:11:43 gr8 17:11:45 aleecia: to re-open, need to have new information (could include interactions with new text elsewhere), also need proposed alternative 17:12:00 ... Shane's suggestion seems consistent with this 17:12:15 link to the text? 17:12:16 ... Any issues with defn of user? 17:12:22 http://www.w3.org/2011/tracking-protection/drafts/tracking-compliance.html#user 17:12:26 Here is how it's defined in the other spec: This specification uses the term user agent to refer to any of the various client programs capable of initiating HTTP requests, including browsers, spiders (web-based robots), command-line tools, native applications, and mobile apps [HTTP11]. 17:12:27 thank you 17:12:36 q+ 17:12:37 +dwainberg 17:12:46 ... This seems staightforward and is based on past W3C docs 17:12:50 ack bryan_ 17:13:11 bryan: Group of individuals acting as an entity. Would that include an enterprise / company? 17:13:17 rescind suggestion of pending review, closed sounds right 17:13:21 aleecia: Text could be read either way 17:13:22 alanchapell has joined #dnt 17:13:33 q+ 17:13:38 +q 17:13:42 q+ 17:13:44 yes, corporations are people! 17:13:45 bryan: Defn anticipates broad understanding of what a group is? 17:13:46 I think the definition applies, yes. Do we want it to? 17:13:47 What is the value of the "user" definition versus a "user agent"? 17:13:53 aleecia: apparently yes 17:13:53 +q 17:14:04 q- 17:14:12 ack fielding 17:14:15 ... should flag this for clarification 17:14:19 - +1.347.689.aadd 17:14:43 fielding: unnecesarily complicating things; why not simple definition, user = person making request 17:14:45 Agree with Roy - User Agent is more important than "User" 17:14:45 + +1.347.689.aagg 17:14:52 ack jmayer 17:14:54 aleecia: think we do need a defn of user 17:14:59 amyc has joined #dnt 17:15:10 jmayer: agree with Roy, can simplify this 17:15:14 WileyS, user agents should do things for users, like deciding to send dnt only after the user has made it clear that's what they want 17:15:19 q+ 17:15:21 ... propose that user should be only an individual person, not a group 17:15:22 what requirements are applied to "user"? 17:15:30 q? 17:15:31 ack ninjamarnau 17:15:41 on IRC, but unable to dial in to conf call 17:15:56 suggestion: "User: An individual person." 17:15:58 Would a user agent be able to do anything on its own? Outside of direction from the user? 17:15:58 ninjamarnau: question about "on whose behalf ..." language. Covers e.g. mother accessing on behalf of children? 17:16:13 aleecia: if mother and child acting together, would be covered 17:16:24 q? 17:16:30 ... Do Ninja and Jonathan have different views? 17:16:31 Why not dropping 'acting as a single entity' 17:17:10 +q 17:17:14 ... mother is doing access so is user, less clear about child 17:17:23 ninjamarnau: this might be a misunderstanding 17:17:32 WileyS, i think we expect UAs to take care of all the tedious busy-work, leaving users free to enjoy the wind in their hair on the information highway 17:17:34 ack WileyS 17:17:54 WileyS: ref email discussion with Jonathan 17:18:20 ... not clear on where there is value in treating user separately from user agent 17:18:31 +[Microsoft] 17:18:33 ... seems redundant to have separate definitions, complicates text 17:18:39 zakim, [Microsoft] is me 17:18:39 +adrianba; got it 17:19:04 ... not sure why user is needed, why not just user agent 17:19:17 for example, a browser user agent sometimes has profiles for multiple users, one of whom uses it at a time 17:19:26 aleecia: user agent is software, like browser. user is a person 17:19:29 one example please 17:19:34 q+ 17:19:49 ... think we will need to distinguish them, can merge them if that turns out not to happen 17:20:16 q? 17:20:22 ack dsinger 17:20:36 q+ 17:20:42 WileyS, UA manages site-specific preferences on user's behalf 17:21:06 dsinger: see major diff between user and user agent. user is who we are trying to protect, user agent is software which doesn't have a privacy interest in itself 17:21:13 +q 17:21:23 thanks dsinger, this was the differnce I was referringt to 17:21:27 -q 17:21:41 ... mistake to write in passive voice here? 17:22:06 aleecia: others have used separate defns, but we can do otherwise if it makes sense to us 17:22:13 "An individual human" +1 17:22:26 ... Is the suggestion to drop language about groups? 17:22:38 User Proxy should be defined separetely 17:22:51 I prefer the CC/PP definition … "An individual or group of individuals acting as a single entity. The user is further qualified as an entity who uses a device to request content and/or resource from a server." 17:22:52 +1 to dropping "group of individuals" and "on behalf of" 17:22:53 agree with shane 17:23:08 WileyS, +1 17:23:11 ack jmayer 17:23:12 dsinger: No. My concern is that "on behalf" language. Why not define more directly: individual, or group acting as an entity, who accesses a service 17:23:22 Maybe this phrase just tries to acknowledge that a service might not be able to disinguish if the request comes from an individual enity or another network. More of a technical thing. 17:23:27 q? 17:23:29 jmayer: Would drop "who accesses a service" language. 17:23:51 ... probably will be covered by discussion elsewhere in spec 17:23:54 ack bryan_ 17:24:08 bryan: Definitely see distinction between user and user agent 17:24:28 ... important to treat actions of user agent done on user's behalf as if they were done by the user 17:24:33 the user accesses or is accessed on behalf of the user? 17:24:43 ... key is to think in terms of user's intent 17:25:04 got it. agree 17:25:18 aleecia: Might be good to avoid trying to distinguish between what user does and what browser does 17:25:24 wikipedia: A user is an agent, either a human agent (end-user) or software agent, who uses a computer or network service. 17:25:25 +sharvey 17:25:35 q? 17:25:40 ... Can we come up with text that does what we seem to want here? 17:25:43 wikipedia, +1 17:26:04 BrianTs has joined #DNT 17:26:23 fielding: Typically talk in terms of activities initiated by the user; these might involve several steps done by the user agent 17:26:30 An individual or group of individuals acting as a single entity. The user is further qualified as an entity who uses a device to request content and/or resource from a server. 17:26:33 ... pasted in text to IRC about this 17:26:40 ksmith has joined #DNT 17:27:05 Wouldn´t it be easier to drop user completely and just referr to user-agent as this is the entity DNT works on/is implemented? 17:27:10 ... agree with dsinger, get rid of "on behalf of" 17:27:30 An individual or group of individuals acting as a single entity. The user is further qualified as an entity who uses a device to request content and/or resource from a server. 17:27:31 aleecia: Anybody want to argue for "on behalf of"? 17:27:37 + +44.789.449.aahh 17:27:56 that's from the glossary for CC/PP 17:27:57 + +385221aaii 17:28:14 ... glossary definition here seems pretty good 17:28:25 ... group of individuals understood as including a company 17:28:39 ... not sure we need "from a server", might be too specific/restrictive 17:28:45 +q 17:28:48 we can add "including access actions by the user-agent on behalf of the user", if we want to be clear... 17:28:48 ... Any suggestions on this text? 17:28:54 andyzei has joined #dnt 17:28:54 suggestion: replace from a servwer with: who uses a computer or network service. 17:28:55 ack fielding 17:28:58 ack jmayer 17:29:47 sounds like an argument back for "on behalf of" 17:29:53 jmayer: Defn seems to require some state of mind of the user, or some knowledge 17:30:08 fine with me to remove the second sentence 17:30:12 ... but need to protect user even when technology is doing something the user wants, but doing it automatically 17:30:30 J: try some text? 17:30:31 q+ 17:30:41 kj has joined #dnt 17:30:51 ... can break this down into a set of binary choices 17:31:05 ... suggest starting simple, adding extra stuff only as needed 17:31:19 aleecia: jmayer, can you suggest specific text? 17:31:22 ack bryan_ 17:31:53 Roy, +1 17:32:00 bryan: Don't need to talk about user agent privacy concerns separate from the user's privacy concerns 17:32:08 Disagree with Aleccia (sorry :-( ) 17:32:15 + +1.650.924.aajj 17:32:33 CC/PP had that language because it was addressing user-agent capabilities as something distinct from the user, but such a distinction does not exist for privacy concerns 17:32:48 aleecia: Move on, will circle back to this 17:33:09 Suggested: "An individual person." Open issues: 1) users acting on behalf of other users, 2) users acting as a group, 3) qualifiers on types of behavior (network interaction, device usage, mental state) 17:33:09 ... discuss defn of "user agent" 17:33:14 A "user agent" retrieves, accesses, and/or renders, content or services on behalf of the user. Examples of user agents include browsers, plug-ins for a particular media type, and assistive technologies. 17:33:14 An individual or group of individuals acting as a single entity to initiate requests on the Web? 17:33:24 punderwood has joined #dnt 17:33:24 ... pasted text into IRC 17:33:28 ... comments? 17:33:34 also: robots 17:33:49 - +44.789.449.aahh 17:33:51 ... seeing no suggestions, let's go back to "user" 17:33:52 jimk has joined #dnt 17:34:05 ... Jonathan suggested "An individual person", full stop 17:34:08 ... comments? 17:34:10 I'm fine with "an individual human or person" 17:34:13 q+ 17:34:13 +q 17:34:21 + +44.789.449.aakk 17:34:25 q- 17:34:31 +q 17:34:40 ack tl 17:34:44 bryan: has to be an individual person using this service 17:34:57 dogs have no privacy rights :-) 17:35:01 Why not just "an individual"? 17:35:10 tl: should say "human" rather than "person" since person might have unintended legal consequences 17:35:41 yes - a corporation can be a legal person 17:36:04 "An individual who accesses a service (who has the ability to express a legitimate desire for privacy)"?? 17:36:05 boo hiss 17:36:07 WileyS: sometimes a corporate entity qualifies as a legal person, agree with Tom that we should use "human" 17:36:07 also: we disenfranchise robots 17:36:09 why not "an individual" ? 17:36:09 and aliens 17:36:23 "An individual human or equivalent conscious entity." 17:36:36 an individual who access a service 17:36:47 q? 17:36:50 aleecia: How about "an individual who accesses a service"? 17:37:22 There are several individual's working here whose human status I question:-D 17:37:30 (or on behalf of whom an service is accessed?) 17:37:38 +1 to jmayer definition. Other details can be added to the definition of "user-agent", like accessing (et al.) a service 17:37:57 sidstamm raises the important issue of zombies 17:38:19 +q 17:38:19 jmayer: Important not to put limitations on which people are covered, at least until we know that limitations won't have complicated consequences 17:38:28 -q 17:38:37 aleecia: Don't want to parse apart different groups of people based on ability, age, etc 17:38:46 ... Does this really have to be so complicated? 17:38:51 ack WileyS 17:39:23 I agree to take a place-holder and refer to PSIG; too many legal nuances come up 17:39:32 WileyS: propose that we use "an individual human" for now, consider it as quasi-closed, and come back to it later 17:39:50 q? 17:39:51 aleecia: Don't see full consensus now 17:40:13 ... What is starting point for text? Language in draft; language from Roy. 17:40:31 ... Questions: need "on behalf of"? need to cover groups? 17:40:55 ... Those who care strongly, if any, should go off and talk about this, make a joint proposal 17:41:06 I would be interested 17:41:14 ... Volunteers? 17:41:25 bryan 17:41:31 pick me! 17:41:44 i am always serious 17:41:49 ... ninjamarnau, bryan, tl have volunteered 17:41:54 At some point we should decide whether it is okay to keep track of the ISP/Company that accessed a service even if DNT indicates the "user" is not tracked. 17:42:05 [except about the robots/aliens thing] 17:42:12 okay, deadline? 17:42:14 ... Ninja to take lead, work with bryan and tl, propose language back to the full group 17:42:31 action: ninjamarnau to draft user defn language due next week 17:42:31 Sorry, couldn't find user - ninjamarnau 17:42:35 ... Please do within one week 17:42:53 q+ 17:42:54 aleecia: Return to "user agent" 17:43:04 action: ninja to draft user defn language due next wee 17:43:04 Created ACTION-40 - Draft user defn language due next wee [on Ninja Marnau - due 2011-12-21]. 17:43:16 "including, but not limited to, " 17:43:16 ... Objections? (with alternative) 17:43:23 The issue fielding brings up can be addressed within the exceptions 17:43:24 A "user agent" retrieves, accesses, and/or renders, content or services on behalf of the user. Examples of user agents include browsers, plug-ins for a particular media type, and assistive technologies. 17:43:26 +q 17:43:33 q+ 17:43:42 fielding: Prefer to use definition already in the TPE document, which has been through years of standards review 17:44:01 ack tl 17:44:06 tl: agree with fielding 17:44:09 ack Frankie 17:44:22 TPE says This specification uses the term user agent to refer to any of the various client programs capable of initiating HTTP requests, including browsers, spiders (web-based robots), command-line tools, native applications, and mobile apps [HTTP11]. 17:44:36 Frankie: Should list of examples include smartphone apps? 17:44:49 aleecia: [reads defn from TPE document] 17:45:01 +1 17:45:12 right +1 17:45:16 +1 17:45:17 +1 for TPE definition 17:45:19 +1 17:45:20 +1 17:45:23 looks good 17:45:41 int rollover 17:45:53 ... Differences: TPE defn drops language about rendering, accessing; seems to be fine 17:46:17 ... Consensus on the TPE definition? 17:46:26 yay consensus! 17:46:27 Yay 17:46:31 -sharvey 17:46:40 ... Nobody objecting, we have consensus to use the definition in the TPE 17:46:58 sue 17:47:00 sure 17:47:00 dsinger: Friendly amendment: change "including" to "including, but not limited to," 17:47:10 okay 17:47:16 aleecia: Nobody has objected to amendment, so have consensus to adopt it 17:47:26 ... Closing definition of "user agent" 17:47:29 No issues with User Agent - just User 17:47:50 agenda? 17:47:55 aleecia: Move on to issues 19 and 91 17:48:30 ... issue 19: data collection and data use from third party [reads suggested text] 17:48:40 If the operator of a third-party domain receives a communication to which a [DNT-ON] header is attached: that operator must not collect, retain, or use information related to that communication outside of the explicitly expressed exceptions as defined within this standard; that operator must not use information about previous communications in which the operator was a third party, outside of the explicitly expressed exceptions as defined within this stan 17:48:57 http://www.w3.org/2011/tracking-protection/track/issues/19 17:49:14 +q 17:49:26 ... Comments? 17:49:33 +1 17:49:38 q- 17:49:39 q+ 17:49:39 [must not or should not] retain information about previous communications in which the operator was a third party, outside of the explicitly expressed exceptions as defined within this standard (second half) 17:49:42 +q 17:49:46 ack WileyS 17:50:08 WileyS: In email, asked to remove "retain" 17:50:09 +q 17:50:22 +q 17:50:37 ... want to separate handling of previously collected data from how to treat new data 17:50:45 this text is very clear in its treatment of historical data 17:50:53 ... otherwise generally happy now that exceptions are mentioned explicitly in core definition 17:50:55 ack dwainberg 17:51:11 Agree David - will address in exceptions 17:51:15 Operational Purposes 17:51:16 dwainberg: "use" is extremely broad, hope we will address this in exceptions 17:51:19 believe that "use" includes "retain" 17:51:46 ... think that requirement to delete previously collected data would go too far 17:51:58 Is there an example outside of the exceptions that we're going to enumerate? 17:51:59 Agree with David 17:52:01 ... can be legitimate to retain old data in some cases 17:52:04 aleecia: use case? 17:52:07 this will be addressed by issue 71, I guess 17:52:31 +q 17:52:32 dwainberg: If user engages DNT for limited time, e.g. for one session, but then wants to switch back to DNT-off 17:52:44 DNT should work like privacy mode in browsers - turning it on does not clear all history 17:52:54 ... user might want old data to be held and used after DNT is turned back off at the end 17:53:01 q+ 17:53:07 aleecia: Let's look at existing adopters of DNT. 17:53:34 will have Issue 71 draft to Ninja tomorrow, which addresses issue 17:53:35 Holding out AP as a solo example isn't very helpful - too early and its directional of industry concerns 17:53:38 ... Some worried that user might turn on DNT for five minutes, force provider to throw away five years of data 17:53:44 ... (example is AP) 17:53:51 I think the definition is clear about data *connected with the communication on which DNT-ON is present*, only, isn't it? 17:54:01 ... AP initially kept the old data 17:54:16 agree with dsinger, DNT signal is granular 17:54:25 ... Turned out to be a PR problem, because users were worried when they saw tracking cookies persisting even when DNT was on 17:54:31 -adrianba 17:54:32 Did they delete logs that were tied to financial activities? 17:54:39 adrianba has left #dnt 17:54:41 Should be a "May" - not should or must 17:54:46 ... Could take this as SHOULD, MUST, best practice, or not mention at all 17:55:06 q? 17:55:13 ack tl 17:55:14 +q 17:55:16 ... Shane asks about data tied to financial activities, but don't think that's relevant for this 17:55:38 adding to Shane's point -- auditable logs of served ad impressions may need to be retained 17:55:47 tl: Have concern about "in which the operator was a third party" in second part. Why limit it to case where operator was third party? 17:56:06 agree with tl 17:56:15 aleecia: Let's defer that, take it up at end of discussion of this issue today 17:56:26 ack jmayer 17:56:43 - +44.789.449.aakk 17:56:45 +1, I like jmayer's proposal - very similar to what I would suggest 17:56:56 q? 17:56:56 jmayer: Want to suggest a middle ground: can keep old data, but only in a way that can't be associated with a specific user 17:57:01 ack ksmith 17:57:02 The Facebook example was the reason for the language, tl --- if you're customizing content based on first-party data, that's not really tracking as we've discussed. 17:57:06 +q 17:57:25 session based for DNT or not: that seems the crux of this 17:57:28 i agree with tl on 2 17:57:41 justin, if we decide to do that, it should be an explicit exception 17:57:44 + +44.789.449.aall 17:57:48 agree with the speaker; 'treat me as someone about whom you remember nothing and record nothing" -- that doesn't say you *delete* old data, you just ignore it for a while 17:57:50 don't pack it into the high-level definition 17:57:52 ksmith: Have always thought of DNT as session-based, should mean "don't recognize this individual now", no implications for other sessions 17:58:10 -[Mozilla] 17:58:13 jmayer, even if data can not be associated to a specific user it could still be associated wieth a specific user-agent (i.e. browser) and that would be ok 17:58:17 ... PR issue in AP case shouldn't influence us, that's up to each company 17:58:21 ack WileyS 17:58:30 vincent, i would say both, good point 17:58:51 WileyS: Want to manage retention/deletion issue outside of this definition 17:59:06 I don't feel terribly strong either way, but it seems like DNT is about collection and use of third-party data ---- I don't see why we would not try to encompass first-party data as well. 17:59:11 ... Have operational need to prove that ad impressions actually happened 17:59:22 ... Will need some other operational-driven exceptions 17:59:24 when facebook reads your facebook.com cookies as a third party 17:59:32 that falls into (1) 17:59:44 ... Except for these cases, would agree with MAY or SHOULD not retain 17:59:56 ... Don't want to go all the way to MUST 18:00:01 q+ to say that we need to be clear it's about *use* of historical data, not deletion 18:00:12 in fact, i could do without (2) 18:00:20 -SueG 18:00:24 aleecia: There is discussion in Europe about consent applying only to new data collected 18:00:37 ... requirements may differ between Europe and US 18:00:49 DNT should work like privacy mode in browsers - turning it on does not clear all history - this could cause real problems for users that lose all personalization mistakenly. if we really need a clear history action, it should be explicit, and operator compliance based upon best effort (some info is not technically feasible to forget). 18:00:50 ack bryan_ 18:00:52 ... setting aside "eraser" proposals 18:01:07 If someone turns on DNT, they're not going to want tailored ads based on historical x-site data. I'm ambivalent on actual deletion, but usage should be within scope. 18:01:18 to the extent a company can use old data in personalizing to a user, that has to be explicit in an exception anyways 18:01:28 bryan: Should work like privacy mode in browsers. Active when it's turned on. More like privacy mode than like delete-all-history. 18:01:28 because we have to say the new data can be used to link up old data 18:01:56 ... Deleting more would hurt user experience for users who want to toggle DNT on and off over time 18:02:10 ack hwest 18:02:10 q+ 18:02:28 -q 18:02:32 +q 18:02:43 q+ 18:02:45 EU context: consent is for new data collection. 18:02:48 hwest: Retrospective deletion would require extra tracking in order to comply 18:02:59 could add language here like "make reasonable efforts" to cover cases where deletion isn't possible 18:03:01 ... agree with last several speakers 18:03:24 ... should be okay to keep data if severed from that user's profile 18:03:47 q? 18:04:01 +1 to what hwest said 18:04:01 ack dsinger 18:04:01 dsinger, you wanted to say that we need to be clear it's about *use* of historical data, not deletion 18:04:30 dsinger: definition is fine, but would be clearer to say you shouldn't *use* historical data when DNT is on 18:04:34 if a user has DNT + InPrivate mode then only his current session will not be tracked, if user has DNT only then it means that he asks to be forgotten, would that be ok? 18:04:40 Agree with David - use application (not a "retention" application) 18:04:40 ... but shouldn't require retrospective deletion 18:04:44 - +44.789.449.aall 18:04:52 ack ksmith 18:05:14 -q 18:05:15 +q 18:05:20 ksmith: Difficult in practice to purge old data based on DNT hit 18:05:39 ... much more practical to avoid using old data while DNT is on 18:06:18 ... also worry about race conditions if, e.g., see the same logged-in user on different browsers that send different DNT signals 18:06:25 ... would cause bad user experience 18:06:32 No server/collector that I know of would implement a "forget me purge" without a complete form-based specific request with anti-forgery protections. 18:07:07 aleecia: Not clear on why this would be a problem 18:07:39 + +44.789.449.aamm 18:07:41 ksmith: Could make it work, but would provide strange user experience 18:08:04 ack ninjamarnau 18:08:15 ... consider same user at work and home, where work has DNT-on policy, but DNT-off at home 18:08:35 +q 18:08:44 Ninja + 1 18:08:56 ninjamarnau: When user sees DNT on, operator should not combine new data with existing data about that user. 18:09:01 ... Do we have agreement on this? 18:09:21 +1 Ninja 18:09:25 s/user sees/user sends/ 18:09:30 q+ to point out that DNT does not mean "do not personalize" 18:09:37 (+1 Ninja) Again, "use" application, not a "retention" application 18:09:40 aleecia: Comments re Ninja's proposal? 18:09:42 +1 18:09:46 +1 18:09:52 ack bryan_ 18:09:52 bryan_, you wanted to point out that DNT does not mean "do not personalize" 18:09:54 -q 18:09:54 +q 18:10:03 bryan: Need to be careful not to rule out all personalization when DNT is on 18:11:10 q+ 18:11:18 +q on this 18:11:44 ... suppose user has told site to provide high-contrast viewing 18:11:52 lets not claim to know exactly what the user expects 18:12:06 ... I see tracking as "don't remember what I'm doing" but not "don't personalize" 18:12:33 aleecia: Let's set this aside until Ninja suggests specific text 18:12:34 q= 18:12:38 q- 18:12:39 jmayer 18:13:43 jmayer: Reasoning about this starts with the general definition which says don't use unless exception 18:13:51 ... so question is whether there should be an exception for this 18:14:11 ack WileyS 18:14:13 aleecia: Pop the stack, return to third point in proposed language 18:14:49 I think if we say MUST not use, then associating with old data is also "use" 18:14:57 WileyS: If drop concept of retention, just talk about "collect or use", would block use of old information too 18:15:17 agree with shane that, unless an exception explicitly allows it, the current text already prevents use of historical data 18:15:22 don't agree on retain 18:15:26 ... dropping "retain" could get us to consensus, or close to it, can come back to retention questions later 18:15:39 ... propose to drop retain and leave that as new open issue 18:16:02 ack tl 18:16:06 -q 18:16:43 tl: Setting aside whether "retain" requires deletion of old data, current definition says server shouldn't remember current access, nor use old info about same user 18:16:56 Talk about "breaking the web"! 18:16:57 ... principle is you should act like you don't recognize the user 18:17:24 q- 18:17:27 we need a much narrower definition of DNT intent 18:17:27 aleecia: Have some good standards language here, but not much about the intent of the language 18:17:41 I assume if the user chooses to also send a cookie that expresses a preference, the service is welcome to act on it *in that transaction*, but (as usual) not remember anything 18:17:43 ... Tom, can you suggest specific language about the intent? 18:17:57 q+ to point out that "we need a much narrower definition of DNT intent" 18:18:08 q? 18:18:14 ack bryan_ 18:18:14 bryan_, you wanted to point out that "we need a much narrower definition of DNT intent" 18:18:16 Exceptions for volume controls and comparable settings can be carved out as an exception, but I'm not entirely sure of how many people set these settings on a third-party basis! 18:18:22 q+ 18:18:45 bryan: Need a much narrower definition of the intent. If turn off recognition of the user, would break the web 18:18:49 Capture these in exceptions 18:18:57 completely agree, shane 18:19:01 ... Should allow personalization 18:19:05 when a user turns on DNT, they expect that the service will treat them like someone about whom they know nothing, and not remember anything about the current interaction going forward 18:19:25 aleecia: Think we can all agree that DNT means user is expressing a preference for privacy 18:19:37 ... Want to hear more about how to reconcile that with personalization 18:19:52 ... in a third-party setting 18:20:08 bryan: Am talking about personalization primarily by first parties 18:20:30 I think most of the comments so far have confused parties 18:20:33 q+ 18:20:33 [in the third party context, of course] 18:20:49 aleecia: Expectation is that first parties will have relatively few obligations under DNT 18:20:53 q- 18:21:17 +q 18:21:19 ack dsinger 18:21:32 dsinger: DNT is a wall between the current transaction and the server's database 18:21:51 ... logically orthogonal to any other cookies that might be present 18:22:11 +q 18:22:19 ... if user has cookie requiring, e.g., captioning in ads, that can be sent and server can caption ads accordingly, when DNT is on 18:22:31 ... Does that make sense? 18:22:51 aleecia: Not sure I followed it entirely 18:23:11 Do people agree with jmayer that we should kill (2) because it's already subsumed by (1)? Or is there sufficient ambiguity about the use of old data that (2) is still useful (with or without the revision that tl has suggested) 18:23:20 dsinger: Data that user chooses to put into transaction is actionable within that transaction 18:23:42 ... but server shouldn't remember the transaction, shouldn't use past transaction data 18:23:55 justin, i think there should be an explicit line about whether historical data may be retained 18:24:03 since i think the first line says nothing about it 18:24:06 The concern I was expressing still stands depending upon what the intent of the 3rd party site access is. If the site provides data presented in the 1st party site through a mashup, it is acting for the same purpose as a 1st party site. 18:24:19 i hope that solves shane's concern 18:24:32 However if the site is purely about advertising, the intent of the access is different. 18:24:40 IOW, cookies can store user preferences on the browser that are actionable by the server even if DNT is turned on (I assume dsinger is excluding cookies that are just user IDs) 18:24:51 ack dwainberg 18:24:56 It solves my concern if you drop "retain" from the proposed definition. :-) 18:25:12 dwainberg: Confused by introduction of "personalization" which isn't the same as tracking 18:25:37 shane, even if the next sentence explicitly says whether you can or can't retain historical data? 18:25:42 ... "information" and "use", especially together, are very broad, so will need strong enough exceptions 18:25:44 jmayer, but if we end up not requiring deletion, I think people could read (1) to allow for old use. Retention doesn't matter for immediate personalization based on old data. 18:25:51 ... need to think through implications for personalization 18:25:58 aleecia: agree that should be addressed 18:26:02 justin, how do you read (1) that way? 18:26:14 to use old data, you need new data 18:26:22 ... suggest that we remove "retain" and treat retention as an open issue 18:26:32 sure 18:26:42 ... that gets us fairly close to consensus on what remains 18:26:50 -q 18:27:01 ... return to issue 2, as promised earlier; Tom? 18:27:14 -Joanne 18:27:34 tl: Not comfortable "in which operator was a third party". Should also limit operator when operator is third party now. 18:27:38 (2) is both ambiguous and undermines the meaning of (1) 18:27:42 recommend striking it 18:27:44 aleecia: proposal to strike "in which the operator was a third party" 18:27:45 +q 18:27:46 +q 18:27:49 ... any objections? 18:27:51 ack tl 18:28:17 if we want to allow linking a first-party database in a third-party context, that's an exception 18:28:20 justin: Don't feel strongly, but not sure this would be tracking. 18:28:29 no, data provided to the 1st party should still be usable when acting as a 3rd party 18:28:31 q+ 18:28:48 justin, then let's talk about making an exception for that 18:28:56 ... want to allow more use of data provided voluntarily by user 18:29:31 WileyS: Definition applies to entity acting as third party. Don't want to allow loophole. Seems like a drafting issue. 18:29:33 +q 18:29:43 q- 18:29:54 -dwainberg 18:30:09 -WileyS 18:30:09 bryan: Need to think more about implications of how we treat data provided in first-party setting, when same entity is a third party later 18:30:21 rrsagent, make logs public 18:30:30 i propose the following alternative language: 18:30:44 ... users will often want that data used for personalization, even if server cannot log that interaction 18:30:56 aleecia: Time's up. Next week, same time. 18:30:58 If ta third-party domain receives a communication to which a [DNT-ON] header is attached: 18:30:58 that operator must not collect, retain, or use information related to that communication outside of the explicitly expressed exceptions as defined within this standard; 18:30:58 that operator must not use information about previous communications ioutside of the explicitly expressed exceptions as defined within this standard; 18:31:07 - +1.650.924.aajj 18:31:09 efelten: Scribing is easy--be sure to volunteer next week! 18:31:17 RRSAgent, set logs world-visible 18:31:19 - +385221aaii 18:31:20 -jsimpson 18:31:21 -fielding 18:31:21 -jmayer 18:31:22 -rvaneijk 18:31:22 - +44.789.449.aamm 18:31:22 -[Apple] 18:31:24 -bryan 18:31:26 -aleecia 18:31:28 - +1.347.689.aagg 18:31:30 -AlexDeliyannis 18:31:32 -dsriedel 18:31:33 RRSAgent, make minutes 18:31:33 I have made the request to generate http://www.w3.org/2011/12/14-dnt-minutes.html aleecia 18:31:34 -NinjaMarnau 18:31:36 -tl 18:31:38 -tedleung 18:31:39 -vincent 18:31:42 -Justin 18:31:44 - +1.646.654.aaff 18:31:46 -frankie 18:31:47 -efelten 18:32:16 ksmith has left #DNT 18:34:25 punderwood has joined #dnt 18:36:38 disconnecting the lone participant, hwest, in T&S_Track(dnt)12:00PM 18:36:40 T&S_Track(dnt)12:00PM has ended 18:36:44 Attendees were aleecia, tl, jmayer, tedleung, +91.37.4.aaaa, efelten, NinjaMarnau, SueG, Joanne, rvaneijk, sidstamm, dsriedel, fielding, hwest, +1.425.214.aacc, +1.347.689.aadd, 18:36:49 ... +1.310.292.aaee, WileyS, frankie, +1.646.654.aaff, enewland, dsinger, AlexDeliyannis, jsimpson, vincent, dwainberg, +1.347.689.aagg, adrianba, sharvey, +44.789.449.aahh, 18:36:50 tedleung has left #Dnt 18:36:52 ... +385221aaii, +1.650.924.aajj, +44.789.449.aakk, +44.789.449.aall, +44.789.449.aamm 18:41:14 enewland has joined #dnt 19:19:05 tl has joined #dnt 21:12:02 aleecia has joined #dnt 21:43:54 karl has joined #dnt 21:56:24 mischat has joined #dnt 21:56:58 schunter has joined #dnt 22:00:21 schunter has joined #dnt 22:20:12 tl has joined #dnt 22:25:55 schunter has joined #dnt 22:39:33 schunter has joined #dnt 22:47:35 schunter has joined #dnt 22:56:32 trackbot has joined #dnt 23:01:33 trackbot has joined #dnt