Example Safe Zone Policy in P3P

The "Safe Zone" is described in section 2.4.3 of the P3P1.0 specification. Any policies associated with the safe zone should be ignored by P3P user agents. However, if one were to encode the requirements and guidelines in section 2.4.3 into a policy, it would look something like the following. This example policy was written to provide guidance for implementers.

<POLICY xmlns="http://www.w3.org/2000/12/P3Pv1" 
<ENTITY><!-- Note sites with consumer service information 
are encouraged to provide it in the entity field. -->
<DATA ref="#business.name">Example, Corp.</DATA>
<DATA ref="#business.contact-info.postal.street>3999 Lincoln 
<DATA ref="#business.contact-info.postal.city">Birmingham<DATA>
<DATA ref="#business.contact-info.postal.stateprov>MI</DATA>
<DATA ref="#business.contact-info.postal.postalcode>48009</DATA>
<DATA ref="#business.contact-info.postal.country>USA</DATA>
     <DISPUTES resolution-type="service"
     short-description="Please contact our customer service desk with
     privacy concerns by emailing privacy@example.com"/>
Note sites are encouraged
       to have a retention policy, especially in cases such as safe zone
       collection where indefinite retention is not likely to enhance site
       administration. -->
       <DATA ref="#dynamic.clickstream"/>
       <DATA ref="#dynamic.http.useragent"/>

Created by: Ari Schwartz, March 13, 2001

CopyrightŠ  1997-2000 W3C (MIT, INRIA, Keio ), All Rights Reserved. W3C liability,trademark, document use and software licensing rules apply. Your interactions with this site are in accordance with our public and Member privacy statements.last revised $Date: 2001/03/13 15:06:19 $ by $Author: lorrie $