- From: Nicholas Doty <npdoty@w3.org>
- Date: Wed, 26 Jun 2013 18:00:43 -0700
- To: Jonathan Mayer <jmayer@stanford.edu>
- Cc: "public-tracking@w3.org Group WG" <public-tracking@w3.org>
Hi Jonathan, I've create ISSUE-208 on the Compliance June product; a new issue for the topic of this change proposal. I've set up a wiki page for this proposal of additional requirements on handling unknowing practices: http://www.w3.org/wiki/Privacy/TPWG/Change_Proposal_Unknowing If you intend the text you would also consider on reporting to be a change proposal you believe the group should consider in order to make the Compliance document acceptable, feel free to let us know on the mailing list and update the wiki page. Thanks, Nick On Jun 26, 2013, at 8:14 AM, Jonathan Mayer <jmayer@stanford.edu> wrote: > I would propose clarifying and increasing the rigor of this section. >> A party MUST make reasonable efforts to understand its information practices. If a party learns that it collects information in violation of this standard, it MUST end that collection at the earliest practical opportunity. If a party learns that it retains information in violation of this standard, it MUST delete that information at the earliest practical opportunity. If a party learns that it uses information in violation of this standard, it MUST end that use at the earliest practical opportunity. If a party learns that it shares information in violation of this standard, it MUST end that sharing at the earliest practical opportunity. > > > I would also consider a reporting requirement. >> If a party discovers it has been in violation of this standard, knowingly or unknowingly, it must make a public disclosure of the violation. A disclosure may be made in any reasonable manner, such as a prominent notice on a party's main website. >
Received on Thursday, 27 June 2013 01:00:54 UTC