Trust negotiation I: S -> C. Privacy Policies
Service has established access control policy.
Service has established privacy policy.
- How is the service going to process personal information submitted?
- What obligations is the service willing to enter into? (Notification when data are accessed, deletion after n days, self-destruction, ...)
- Can service prove that it will use trusted platforms for processing of personal information?