07:01:41 RRSAgent has joined #dnt 07:01:41 logging to http://www.w3.org/2012/10/03-dnt-irc 07:01:45 trackbot, start meeting 07:01:47 RRSAgent, make logs world 07:01:49 Zakim, this will be 07:01:49 I don't understand 'this will be', trackbot 07:01:50 Meeting: Tracking Protection Working Group Teleconference 07:01:50 Date: 03 October 2012 07:02:00 Meeting: Tracking Protection Working Group Face-to-Face 07:02:03 dsinger has joined #dnt 07:02:05 Chair: aleecia 07:03:29 tlr has joined #dnt 07:05:57 vinay has set up a screen-sharing so remote attendees can follow slides/etc: http://my.adobeconnect.com/vigoel 07:06:08 let us know how/whether that's working 07:06:27 and let me know if there are phone problems, I think the teleconference may drop in 5 hours or so and I'll have to re-configure then 07:08:12 efelten has joined #dnt 07:08:16 afowler has joined #dnt 07:08:22 vinay has joined #dnt 07:08:30 tedleung has joined #dnt 07:08:32 bilcorry has joined #dnt 07:09:27 tl has joined #dnt 07:09:59 justin has joined #dnt 07:10:13 scribenick: npdoty 07:10:24 joris: chairman of the IAB here in Holland 07:10:36 ... we're already very happy, you have to succeed of course in the following three days 07:10:45 jchester2 has joined #dnt 07:10:47 ... thanks to the Telegraaf Media Group to make sure all the facilities are in place 07:10:58 audio sounds like there's some interference with local electronics. 07:11:13 ... 60 attendees here, with many years of experience each 07:11:55 For those not here in person, you can follow along via the web at http://my.adobeconnect.com/vigoel 07:12:03 ... if the mayor were here, he would tell you about openness and core values of Amsterdam 07:12:28 ... those same core values appropriate to the important stuff you are debating 07:12:47 ... last June we had a new telecommunications law, a chapter on cookies, opt in and opt out 07:12:55 ... politicians are very willing to listen to Do Not Track solutions to that 07:13:15 ... hope you have the energy to facilitate those solutions during this meeting 07:14:06 ... introducing others from IAB NL 07:14:06 hwest_ has joined #dnt 07:14:16 schunter: introductions of matthias and aleecia 07:14:30 ifette has joined #dnt 07:14:34 ... since we have some newcomers, aleecia will give a quick tutorial on current state and agreements we've already reached 07:14:38 ... and look at open issues 07:15:04 ... in prior meetings it took quite a while to understand each other, and reached agreement in the easy pieces 07:15:07 Marc has joined #dnt 07:15:20 ... identified substantial agreements, for this meeting it may not be as easy 07:15:43 ... we have defined how to solve unsolvable disputes, a procedure to follow from multiple alternative proposals 07:15:55 ... a big purpose of the meeting will be carving out sound alternatives to the problem we are facing 07:15:56 rvaneijk has joined #dnt 07:16:30 schunter: explaining scribing 07:16:50 johnsimpson has joined #dnt 07:16:51 RichardfromcomSco has joined #dnt 07:16:52 ... go through the agenda and assign scribes 07:17:06 dsriedel has joined #dnt 07:17:28 working drafts and open issues, ifette to scribe 07:17:33 ChrisPedigoOPA has joined #dnt 07:17:43 compliance and definitions, robsherman to scribe 07:17:54 more resolving definitions, JC to scribe 07:17:58 amyc has joined #dnt 07:17:59 lunch, no scribe necessary 07:18:31 + +1.310.292.aacc 07:18:40 permitted uses for third parties, susan to scribe 07:18:54 more permitted uses for debugging, Joanne to scribe 07:19:03 Chris_IAB has joined #dnt 07:19:09 user agent compliance, tedleung to scribe 07:19:14 zakim, aacc is me 07:19:14 +johnsimpson; got it 07:19:21 final session of the day, amyc to scribe 07:19:23 joining in person :) 07:19:42 zakim, who is on the phone? 07:19:42 On the phone I see Telegraaf, fielding, BrendanIAB?, johnsimpson 07:20:00 rachel_n_thomas has joined #dnt 07:20:11 adrianba has joined #dnt 07:20:34 Apologies that I am not there in person. Will follow closely. 07:20:54 dwainberg has joined #dnt 07:21:11 JC has joined #DNT 07:21:17 jeffwilson has joined #dnt 07:21:17 bhuseman has joined #dnt 07:21:40 Simon has joined #dnt 07:22:08 "bring your own life preserver" :) 07:22:22 eberkower has joined #dnt 07:22:27 rigo has joined #dnt 07:22:51 mikeo has joined #dnt 07:22:52 are slides available on line? 07:23:12 johnsimpson, you should be able to follow via Adobe Connect link from vinay 07:23:16 aleecia: introductions 07:23:27 ... history of the Web, TBL, commerce on the Web 07:23:36 johnsimpson - http://my.adobeconnect.com/vigoel 07:23:53 ... introductions of the co-chairs, and now introductions around the room 07:24:26 Rene has joined #dnt 07:24:59 schunter has joined #dnt 07:27:19 scribe is not trying to keep up with these 07:27:49 but the full group participants list is here: http://www.w3.org/2000/09/dbwg/details?group=49311&public=1 07:28:23 "well-known standards wonk" 07:29:47 I am Roy T. Fielding, representing Adobe (a W3C member and sponsor) and co-editor of TPE; I am also a board member of the Apache Software Foundation (another W3C member) but am not representing Apache here. 07:29:52 +q 07:30:11 ack BrendanIAB 07:30:17 Marije has joined #dnt 07:30:19 q? 07:30:25 zakim, who is on the phone? 07:30:25 On the phone I see Telegraaf, fielding, BrendanIAB?, johnsimpson 07:30:28 I am John Simpson from Consumer Watchdog, an invited expert 07:30:28 ' 07:30:38 vinay_ has joined #dnt 07:30:53 What's 3:30am in NY look like Brendan? :) 07:31:10 Guys on the phone: Please put yourself into the queue and ping me to unmute you. 07:31:12 aleecia: from the charter 07:31:19 ... need something that works for users 07:31:27 ... need something voluntarily implementable by businesses 07:31:34 Zakim, who is on the phone 07:31:34 I don't understand 'who is on the phone', schunter 07:31:38 ... creating a shared understanding of what DNT means 07:31:42 Zakim, who is on the phone? 07:31:42 On the phone I see Telegraaf, fielding, BrendanIAB?, johnsimpson 07:31:45 kj has joined #dnt 07:32:06 ... two documents, Compliance and Tracking Preference Expression 07:32:15 ... Note, not Rec, on Tracking Selections List 07:32:18 mikez has joined #dnt 07:32:27 lmastria-DAA has joined #dnt 07:32:31 ... talking about a Global Considerations doc, also a Note 07:32:45 ... congratulations to the group on getting another published set of Working Drafts out 07:32:56 ... thanks to editors and nick for helping get that out 07:33:19 ... working through dates and successive drafts 07:33:24 npdoty, i thought i was taking over after the intro 07:33:33 ... Last Call to get wider review 07:33:34 npdoty, Presentations: Working Drafts and open issues, presented by editors. 07:33:38 tl_mobile has joined #dnt 07:33:54 ... Candidate Rec, call for implementations, though we hope to see some implementation before then 07:34:06 ... Proposed Rec, after which it's up to W3C Membership 07:34:14 ... "Getting to Closed" review 07:34:42 ... organically reach consensus on the direction and text, close the issue 07:34:55 ... chairs can re-open an issue if there is new information and new text 07:34:59 efelten has joined #dnt 07:35:17 ... if we don't happily reach consensus on a single text 07:35:28 efelten_ has joined #dnt 07:35:41 ... might have multiple texts, or might have a Formal Objection from someone in the group who can't live with a particular decision 07:35:52 ... consensus is the least objectionable proposal 07:36:12 ... survey participants in writing, identify consensus in the least objectionable path 07:36:27 ... substance and strength of objections, not a count and not who screams loudest 07:37:03 marc: substance and the strength of the objections as determined by... aleecia: the chairs, yes 07:37:33 aleecia: file a formal objection at any decision point, with technical arguments and a proposed change 07:38:31 ... group can try to resolve that objection, if not, a review process up W3C management, including TBL 07:38:40 (catching up a few last introductions) 07:39:15 aleecia: in the US, Do Not Call list mandated by law 07:39:46 BerinSzoka has joined #DNT 07:39:50 we just lost the telecom? 07:39:58 ... less a privacy concern than an intrusion concern, spam faxes, users want control over their devices 07:40:07 JBWeiss has joined #DNT 07:40:07 -fielding 07:40:08 Agree no need to dscuss harms 07:40:21 working for me 07:40:26 I have not heard any interruption in audio 07:40:35 ... not sure privacy harm discussion will be resolved by discussion among us 07:40:39 +fielding 07:41:01 aleecia: Do Not Call does not prevent calls, has exceptions for political organizations etc. 07:41:21 ... Do Not Call has had some confusion in those cases 07:41:28 ... what are we building with DNT? 07:41:37 appreciate analogy to do not track on telephone 07:41:56 susanisrael has joined #dnt 07:42:02 ... continue to show contextual ads to users, rather than lose them to ad blockers 07:42:13 ... haven't blocked all tracking, no proposals would prevent shopping carts from working 07:42:35 ... haven't had proposals for blocking all cookies or similar 07:42:44 ... we should not get in the way of users who actively want all the personalization 07:42:50 q+ 07:43:05 ... some users have privacy concerns that DNT will not address 07:43:13 ... DNT will not be adopted by all sites 07:43:36 ... does not directly protect against governments or data breaches 07:43:53 q+ 07:44:05 ... who is it for? typical users who want the Web to just work, but have privacy concern 07:44:11 ... reminder that we are not ourselves typical users 07:44:28 ... Global -- World Wide Web doesn't have the same country borders 07:44:40 ... uniform signals, different results 07:45:09 -fielding 07:45:15 ... tri-part DNT signal: DNT:1, DNT:0, -- will always be users who haven't chosen 07:45:18 +q 07:45:29 WileyS has joined #DNT 07:45:34 q+ re dnt1 07:45:37 q? 07:45:44 ack Marc 07:45:47 q+ re no-dnt==dnt1 ine u 07:46:15 lmastria-DAA has joined #dnt 07:46:22 q? 07:46:24 marc: vehemently disagree with Do Not Call, a key part of privacy response, a certain kind of privacy harm 07:46:35 q? 07:46:35 q+ 07:46:41 fielding_ has joined #dnt 07:47:05 aleecia: thank you, that it's about privacy is interesting 07:47:12 ack bhuseman 07:47:22 +q 07:47:56 bhuseman: at FTC even before Do Not Call, events, workshops, telemarketing sales rule, before enacting the Do Not Call registry 07:48:01 +q 07:48:13 ... and subsequent litigation regarding Do Not Call 07:48:23 q? 07:48:35 ack rachel_n_thomas 07:48:39 ... examination of the harms and all possible solutions 07:48:48 we are not here to debate do not call; let's talk about DNT 07:49:11 +fielding 07:49:17 well, John, then maybe Aleecia shouldn't have brought up Do Not Call! 07:49:41 rachel_n_thomas: don't understand harms being less regarding Do Not Call, consumer benefits are infinitely greater for behaviorally targeted ads 07:49:47 q? 07:50:08 +q 07:50:15 ... are there studies you are relying on regarding user desires? 07:50:16 berin, we've got real issues to discuss. why waste time on this?? 07:50:58 John, I don't think you appreciate how incendiary Aleecia's assertions were. 07:50:59 schunter: have in the back of our minds what discussions are the most important; try to focus on the normative language in the specs 07:51:02 John, this is a real issue - not looking at real-world harms derails the value of this conversation 07:51:09 q? 07:51:10 q? 07:51:10 -q 07:51:11 ack ifette 07:51:12 ifette, you wanted to discuss dnt1 and to discuss no-dnt==dnt1 ine u 07:51:44 q? 07:51:57 ifette: you were drawing an analogy between no signal and DNT:1 in the EU, but it's not identical 07:51:59 ack lmastria-DAA 07:52:20 aleecia: sorry, if I indicated it was identical, I didn't mean to do so 07:52:35 Essentially, John, Aleecia just reminded most of the room that she's hardly an objective moderator of this process 07:52:42 lmastria-DAA: difference from Do Not Call, which was based on an elected body review, which is not what we are 07:53:07 aleecia: yes, there are people from self-reg and other groups 07:53:33 DNC - one country, one law - exhaustive process to address a perceived harm to personal privacy. Very difficult to apply this to the DNT conversation (outside of perceived harms which hopefully comes back into scope of the discussion on DNT) 07:53:35 lmastria-DAA: specifically, Do Not Call was from an elected body, which we are not 07:53:43 q? 07:54:40 jchester2: agree with Marc, we were there for Do Not Call, as part of self-regulatory discussion around privacy at the time 07:54:58 for once, I think I agree with Jeff! 07:55:14 ... want an opportunity to air/discuss accusations, regarding letters that have been published 07:55:15 Let's talk through the hard questions raised about process 07:55:39 aleecia: is that going to be productive? 07:55:41 I can't help but thinking that http://www.imdb.com/title/tt0089530/ (Mad Max Beyond Thunderdome) ought to be required viewing before any of these meetings... 07:56:13 jchester2: I would like these advertising organizations to go on the record regarding those concerns 07:56:21 +q 07:56:37 aleecia: want to avoid a fundamental discussion if it's not going to be productive 07:56:39 q- jchester2 07:56:42 ack jchester 07:56:44 ack mikez 07:56:44 q- jchester 07:57:04 mikez: I think we got off on the wrong foot in the last meeting, and don't want to do that again 07:57:16 Can we talk about DNT please? 07:57:22 ... junk fax law was something that cost users money, paper, ink and time; that's why that was passed 07:57:47 we've had a year to lay a foundation. we are here to develop a standard that allows users to express their preference. let's please get to that!!! 07:57:56 ... also should note exceptions regarding the junk fax law as well 07:58:24 I asked that the DAA, ANA, DMA and others to go on the record about the letters they sent recently raising objections to do not track and their work to undermine the establishment of a meaningful standard. I also said several NAI members had been engaged in essence a smear campaign against W3C, etc. They dont seem to want to respond. 07:58:49 Jeff, I think those groups are eager to air their concerns! what makes you think they don't want to respond? 07:58:52 rwessel has joined #dnt 07:58:58 ... regarding tri-part system, per the group decision that browsers aren't required to provide that option to all users 07:59:38 q+ Procedural question, did we do agenda bashing yet? 07:59:43 Berin: Let them speak out know and identify their concerns for the record here today. 07:59:49 q+ to ask procedurally if we did agenda bashing yet 07:59:59 -q 08:00:00 q? 08:00:01 There is NO reason to discuss harms. This is about developing a way for users to send a message about their preference about whether they are tracked. 08:00:33 Discussion of harms should go in the scope and intro section eventually. 08:00:51 WileyS: thought it was helpful in the breakout sessions at DC to have discussion of the harms, I think it would be useful to continue that work though I see that you didn't find it useful 08:00:55 Stella has joined #dnt 08:00:55 John, thank you for your opinion - I respectfully disagree. We did some good work in DC (with you and others) that I believe would fit nicely here. 08:01:02 q+ 08:01:05 lmastria-DAA has joined #dnt 08:01:11 ack ifette 08:01:11 ifette, you wanted to ask procedurally if we did agenda bashing yet 08:01:12 No need to waste valuable time speaking about harms 08:01:27 peter has joined #dnt 08:01:52 jchester2: can we take comments from IRC as well? aleecia: can add yourself to the q 08:02:18 notes on IRC are also recorded, unless they are marked as off-the-record -- prepended with "/me" 08:02:28 aleecia: different types of parties 08:02:39 ... first parties, very few restrictions 08:02:41 rrsagent, bookmark? 08:02:41 See http://www.w3.org/2012/10/03-dnt-irc#T08-02-41 08:02:56 ... service providers, contractual relationship to 1st/3rd parties 08:03:02 John, hard to build a solution if you don't know what problem you're attempting to solve. :-) 08:03:04 q+ to discuss terminology 08:03:13 peter has left #dnt 08:03:30 ... silo'd data 08:03:35 ack dsinger 08:03:35 dsinger, you wanted to discuss terminology 08:03:42 q- 08:03:53 Lewis Carroll would have agreed with Shane on 08:03:55 peter-4As has joined #dnt 08:03:58 ack rachel_n_thomas 08:04:03 the need to define harm: "Would you tell me, please, which way I ought to go from here?" "That depends a good deal on where you want to get to," said the Cat. "I don’t much care where--" said Alice. "Then it doesn’t matter which way you go," said the Cat. "--so long as I get SOMEWHERE," Alice added as an explanation. "Oh, you’re sure to do that," said the Cat, "if you only walk long enough." 08:04:26 +q 08:05:01 agenda: http://www.w3.org/2011/tracking-protection/agenda-2012-10-03-F2F-Amsterdam.html 08:05:13 aleecia reviews the agenda slide 08:05:50 ISSUE: What do we mean by tracking? 08:05:50 Created ISSUE-169 - What do we mean by tracking? ; please complete additional details at http://www.w3.org/2011/tracking-protection/track/issues/169/edit . 08:06:22 issue-5? 08:06:22 ISSUE-5 -- What is the definition of tracking? -- raised 08:06:22 http://www.w3.org/2011/tracking-protection/track/issues/5 08:06:32 Close ISSUE-169 08:06:32 ISSUE-169 What do we mean by tracking? closed 08:06:47 ISSUE-169: duped on ISSUE-5 08:06:47 ISSUE-169 What do we mean by tracking? notes added 08:06:50 q 08:06:54 The word "tracking" is not used in the compliance document, so defining it has no substantive benefit. We address that issue in the definition of collection. 08:06:57 q+ 08:07:03 npdoty, your memory is way better than mine :) 08:07:08 rachel_n_thomas: had discussion on the mailing list about the definition of tracking... can we open that issue and discuss during this meeting? 08:07:11 -q 08:07:24 Can Ms Thomas of the DMA place on the IRC record the DMA's definition of what they consider tracking. 08:07:51 rigo has joined #dnt 08:08:02 ack imastria-DAA 08:08:06 rachel_n_thomas: thought we would need to cover definition of tracking before reaching last call, if we're going to do that in this meeting 08:08:08 ack lmastria-DAA 08:08:18 aleecia: we aren't going to be publishing a Last Call document during this meeting, no 08:08:22 * You can remove yourself from the queue by typing "q-" on IRC. 08:08:40 lmastria-DAA: echo concern about identifying what we are doing 08:08:44 I would like the ANA to also place on the record what they consider tracking--which I assume reflects their members regarding tracking and privacy. 08:09:17 +q 08:09:18 aleecia: we've also had the discussion about the name of Do Not Track, need to find out what we're building 08:09:40 I also would like to have Amazon clairfy whether it supports th position of the DMA regarding the DNT issues. 08:09:43 lmastria-DAA: because "Do Not Track" is such a good sound bite, hard to pull back from that 08:09:48 q+ to push back on tracking definition because this is boiling the ocean 08:09:50 Frank has joined #dnt 08:10:04 -fielding 08:10:24 +1 to Tom 08:10:38 tl: encourage people to review mailing list and issue tracker, where discussions may have already been covered 08:10:53 ScribeNick: ifette 08:10:57 rigo: -1 to defining tracking, discussing it right now 08:11:03 Aleecia: Please don't beat up the editors 08:11:06 … TPE is up first 08:11:11 … designer will present 08:11:16 s/designer/dsinger 08:11:19 darned auto-correct 08:11:37 Topic: Drafts and Issues, reviewed by the editors 08:11:40 dsinger: TPE is one of two docs dealing with the immediate signals going back and forth, headers from UA to server and the response 08:11:46 http://www.w3.org/TR/tracking-dnt/ 08:11:50 … as well as "well-known resource" and JS API 08:11:54 … what the parameters are and their effects 08:12:08 There's the doc to follow along with David. 08:12:12 … about the immediate conversation, basic protocol, doesn't deal with "what is the long term effect of any of these signals" - thats the compliance doc 08:12:13 +fielding 08:12:21 … TPE is syntax of header (request/response) 08:12:29 … and immediate meaning of those 08:12:40 are there slides with this"? 08:12:42 … plus well-known resource expressing characteristics of the site (party definitions) 08:12:50 … could have contextual responses with the header 08:12:51 no slides 08:12:53 … consent, etc 08:13:04 … APIs for "exceptions" 08:13:05 thanks, vin ay 08:13:08 … terminology lesson 08:13:18 yes there are slides for Aleecia's presentation. Can they be sent to the members not in room? 08:13:21 aleecia has joined #dnt 08:13:26 … compliance doc says "You shouldn't track except that you can claim the following permissions for the following reasons" 08:13:31 … permissions come from compliance doc 08:13:32 john, click on the link above to open the doc in a browser window and follow along 08:13:41 … site can ask a user for an exception for broader permissions 08:14:03 … request for a user-granted exception, that's when you see a signal saying "I believe you've given me an exception and therefore I can do xyz" 08:14:18 … outbound is 0/1/absent 08:14:35 saw Aleecia's, Jeff 08:14:36 … return has qualifiers relating to permissions from the compliance doc. Debate as to requirements to use these 08:14:42 … as well as additional qualifiers 08:15:07 -fielding 08:15:33 … exceptions have two kinds, a "first-party" saying "to continue to work with you, I need an exception for a given list of third parties" e.g. a site monetizing itself with ad revenue 08:15:40 … can ask for an exception for third parties on your site 08:16:24 … list of third party sites from the first party, user is asked (in an undefined manner) "are you ok with this" which then causes a 0 to be sent to these parties giving them permission to track the user in this context. a site-specific exception 08:16:40 … also site-wide exception, request from first party to say no matter what third party appears on my site, give them a DNT0 08:16:56 (didn't we get rid of site specific exception? or basically merge it into site-wide?) - ian 08:17:01 dsinger: also have web-wide exception 08:17:44 … user thinks it's advantageous/agreeable to be tracked by a site no matter where it turns up, e.g. "TrackMyReading.com" where you want a site to remember what sites you've visited, be able to "like" certain sites and get recommendations. Clearly want to give this site permission to track you across all sorts of different sites 08:18:00 q? 08:18:01 … rough overview of TPE, throw to Matthias for open issues etc 08:18:06 fielding has joined #dnt 08:18:07 ack ri 08:18:07 rigo, you wanted to push back on tracking definition because this is boiling the ocean 08:18:09 ack tl 08:18:20 q? 08:18:24 cannot hear 08:18:32 http://www.w3.org/TR/tracking-compliance/ 08:18:38 ok now 08:18:55 justin: compliance doc, link pasted in IRC. Walk through document, identify major areas of contention, structure. hwest will pop in 08:19:05 … if you object to something I say, raise hand / holler 08:19:16 … document structure - 1 & 2 on intro scope / goals 08:19:24 … parked as people disagree, will fine tune once substance is in place 08:19:36 … as dsinger said, this is about what the obligations are 08:19:43 … section 3/4 how first parties comply 08:19:52 … 5 how UAs comply, controversial 08:19:57 … 6 is how third parties comply, bulk of the document 08:20:05 … a few controversial definitions 08:20:21 … "user agent" has recent discussion around perhaps different classes of UAs - add-on vs browser 08:20:25 … may have different obligations 08:20:28 … not really fleshed out 08:20:32 … 3.3 is definition of party 08:20:44 … lots of controversy at one point 08:20:51 … discussions around common branding vs ownership 08:21:10 … settled on corporate structure being sufficient as long as it's easily discoverable 08:21:16 … two options in text, relatively close 08:21:16 …notes that many other pieces of software other than web browsers access HTTP-loaded resources (e.g. RSS newsreaders, email agents)... 08:21:20 User Agent is strongly defined in the HTTP 1.1 spec - I'll need to catch up on the discussion. It's more that "intermediary" needs to be defined into subcategories. 08:21:20 … 3.4 on service providers / outsourcers 08:21:34 … a data processor / service provider need not obtain separate permission to work on your behalf 08:21:38 … 3 options in current draft 08:21:50 … one long one from jonathan/eff, two later that are less detailed 08:21:57 We also have non-User Agents setting DNT. That's on the agenda for today. 08:21:59 … roy put in text in ML last night which might help us here 08:22:09 … general agreement service provider should be able to work for you 08:22:21 … 3.5 distinguishes between 1st/3rd parties. Long definition at first, shorter alternative 08:22:30 … longer one may be less controversial 08:22:37 … lots of discussion on this 08:23:00 … second option is more vague 08:23:05 … "first party is the site you go to" 08:23:32 … 3.6 is for "unlinkable" data 08:23:46 … lots of chatter on ML about how to decide if something is unlinkable 08:23:50 … 3.9 definition of tracking 08:23:53 … may need more work 08:24:00 … "tracking" not used as a term in the document 08:24:00 Just for completeness, there's alternative text for multiple first parties that's been discussed on the mailing list that is based on what's in this draft. 08:24:04 … phrased in term of collection 08:24:04 aleecia - Right, wrt intermediaries setting DNT header. It sounded like the definition of user agent (the software that initiates the HTTP request) may be up for discussion. Which would be complex. 08:24:14 … but maybe we need to make sure definitions of collection/retention are sufficient 08:24:22 … 3.10 on explicit and informed consent 08:24:25 +fielding 08:24:34 I don't think we should re-define UAs. But we may want "UAs and others" 08:24:34 … used to turn DNT on int eh first place (explicit/informed consent) as well as for a user-granted exception 08:24:38 Or we may not. 08:24:39 fielding has joined #dnt 08:24:49 … two options in the draft for this text as well 08:24:51 Worth talking through 08:25:05 … Sec 4 is on first party compliance 08:25:15 Frank_ has joined #dnt 08:25:19 … general agreement there should be few restrictions, except e.g. send all the data to a third party 08:25:31 … some discussions around "Data Append" 08:26:22 … Sec 5, next is a relatively new section taken largely from TPE document, UA must have explicit consent to turn on DNT in the first lace 08:26:33 … shane suggested some modifications 08:26:49 … section 6 on third party compliance 08:26:57 I don't think "express and informed consent" in User Agent Compliance came from the TPE, I think that was just a new phrase just invented there 08:27:02 … will be debated over the day, 08:27:10 … short term collection/use 08:27:17 … discussion around 6-week grace period 08:27:21 … contextual ads 08:27:33 … 6.1.3 on first-party data use 08:28:00 … frequency capping 08:28:14 … financial logging / auditing 08:28:19 … fair amount of extent of that info 08:28:22 … security/fraud 08:28:31 … debugging 08:28:48 zakim, code? 08:28:48 the conference code is 87225 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), rigo 08:28:50 … aggregate reporting, may be taken out and structured in terms of unlink ability, up in the air 08:28:53 … compliance with local laws 08:29:04 … "nothing else" 08:29:13 … data minimization and transparency 08:29:19 … requirement to disclose 08:29:22 … no personalization 08:29:32 … and how much can you collect for these purposes 08:29:36 Joanne has joined #DNT 08:29:36 (requirement to disclose retention period) 08:29:50 … no persistent identifiers is one proposal, strong disagreement on that position 08:29:58 … a section here for a long time on geolocation compliance 08:30:08 … how precisely you can target with geolocaiton. Not consensus but hasn't been discussed in a long time 08:30:13 … provisions for user-granted exceptions 08:30:22 I thought it was basically consensus, we did a few iterations on the geolocation piece 08:30:28 … 6.4 is new about disregarding non-compliant user agents 08:30:53 scribenick: npdoty 08:30:53 ifette has joined #dnt 08:31:05 scribenick: ifette 08:31:11 justin: a very dry walk-through 08:31:14 geo-loc had been at consensus. Ian rejoined the group with new-to-us information, but I don't believe there is new text. This is the sort of thing we might reopen based on Ian's information. 08:31:16 q? 08:31:19 … seeing no questions, turn back to allecia 08:31:36 Aleecia: coffee outside the door. Don't have scheduled time for a break. Take a minute, caffeniate, and get back here 08:35:43 Did we lose microphone? Now hearing nothing... 08:35:59 heard lots of chatter during break 08:36:38 I think that folks turned off their mics 08:37:24 Thanks, Brendan. Hearing chatter now. 08:38:32 JC is just trying to clear the room! 08:38:47 robsherman has joined #dnt 08:39:13 scribenick: robsherman 08:39:30 rob, you good 08:39:31 ? 08:39:36 Yep. 08:39:56 Topic: Definitions 08:39:59 screen not being shared yet. 08:40:16 For those at home, we're discussion 3.8 of the compliance draft http://www.w3.org/TR/tracking-compliance/ 08:40:18 aleecia: Looking at definitions in Compliance doc. Want to identify issues and assign actions to write alternative text. 08:40:33 waiting to see screen 08:40:35 vinay_, do you have a read on whether screen sharing should be working now? 08:40:41 s/discussion/discussing 08:40:43 For those who want to follow-along to what Aleecia is pointing at -- http://my.adobeconnect.com/vigoel 08:40:45 otherwise, you can follow the text just by looking at that section 08:40:56 … Sec 3.8 — collection/retention 08:41:00 amyc has joined #dnt 08:41:37 npdoty - asked her to; she needs to enable it on her computer 08:41:51 afowler has joined #dnt 08:42:02 … [reading text] 08:42:11 still not being shared. what is section in draft, please? 08:42:16 3.8 08:42:21 3.8 08:42:37 q? 08:42:39 q+ 08:42:42 aleecia: Comments on issues in this text? 08:43:15 amyc: Need to work on definition of "share" because of prospect of downstream liability. 08:43:25 q+ 08:43:30 ack amyc 08:43:55 q+ 08:44:03 … Example of a small website that uses Google Ads. Under this definition, could be "sharing" info with Google. We're really concerned about circumvention. 08:44:15 +q 08:44:16 q+ 08:44:21 ack rigo 08:44:22 q+ 08:44:38 Amy, but isn't that a first party and allowed? 08:45:00 rigo: Wants to work with Amy because "uses" prohibits forwarding. Different taxonomy from EU law. 08:45:08 john, not sure I understand your question? 08:45:13 There's an argument that amyc's issue should be addressed in first-party compliance instead of the definition of "share," yes? 08:45:34 q+ 08:45:39 action: Colando to draft updated 'share' definition to avoid concerns (with rigo and chris-p) 08:45:39 Created ACTION-264 - Draft updated 'share' definition to avoid concerns (with rigo and chris-p) [on Amy Colando - due 2012-10-10]. 08:45:45 ack rigo 08:45:46 +1 to help Amy 08:45:49 ack ChrisPedigoOPA 08:45:56 ack WileyS 08:46:28 shane: We shouldn't be saying that information must be deleted if it's inadvertently collected; we should be saying that it must be used appropriately according to its appropriate context. Will update. 08:46:56 dwainberg: Overlap between "collects" and "retains." 08:47:06 … Also, "data coming within a party's control" seems broad/vague. 08:47:12 action: Wiley to update text in 3.8.1 regarding bringing into compliance, not just deletion 08:47:12 Created ACTION-265 - Update text in 3.8.1 regarding bringing into compliance, not just deletion [on Shane Wiley - due 2012-10-10]. 08:47:29 …. 3.8.1: unclear what "reasonable efforts to understand its information practices" means. Also seems broad/vague. 08:47:31 My objection has not changed. http://lists.w3.org/Archives/Public/public-tracking/2012May/0282.html 08:47:35 Simon has joined #dnt 08:47:51 aleecia: We deliberately define "collects" and "retains" differently. Why do you think they overlap? 08:48:04 kj_ has joined #dnt 08:48:06 Amy, do you think we could merge "share" and "use"? 08:48:25 rigo, no! 08:48:26 depending on how we come down on third-party compliance, it could be that our definitions will really need retention rather than collection 08:48:27 dwainberg: There may be cases when data comes within the party's control but the party holds the data only transiently. It seems like there is an element of retention in "collection." 08:48:34 q? 08:48:39 ack dwainberg 08:49:03 +1 to Ian; collection implies you took active steps 08:49:35 ifette: Agrees that distinguishing is confusing because when we use "collect" in English we ordinarily think about keeping. There's also no real way to prove that once a party has touched data that it has never been swapped to disk, for example, even instantaneously. This may be addressed by the short-term retention period we've been discussing. 08:49:37 +1 to Ian: COPPA is a great example of a legal regime where "collection" has a meaning beyond its normal use (including allowing kids to share personal information--i.e., communicating with other users) and it causes huge problems 08:49:53 schunter has joined #dnt 08:49:53 q? 08:50:10 \me test 08:50:11 I already did that. 08:50:20 Consider "receives" as opposed to "collects"? 08:50:28 action: fette to suggest retention related to a timed grace period (with dwainberg) 08:50:28 Created ACTION-266 - Suggest retention related to a timed grace period (with dwainberg) [on Ian Fette - due 2012-10-10]. 08:50:29 bryan_ has joined #dnt 08:50:30 Matthias, "/"me 08:50:41 q+ to ask whether we can merge "collect and retain" 08:50:42 thx 08:50:44 fielding, you're referring to your version of the "tracking" definition which incorporates the time period? 08:50:52 q+ 08:50:57 If you're looking at something that doesn't imply retention in any way. 08:50:59 q- 08:51:28 no, I am referring to my definition of data collection 08:51:28 peter-4As: Seems to be a general notion in the documents that this is focused on "data," but we actually should consider what we mean when we use the term "data." Consider pseudonymous data - treated differently? 08:51:42 q+ 08:52:03 ack peter-4As 08:52:13 s/peter-4As/ruud/ 08:52:16 +1 08:52:17 … Concern about covering anonymous/pseudonymous data in the same way as other data. 08:52:28 aleecia: We've already made some decisions on these issues. 08:52:36 … We decided we're not going to address children one way or the other. 08:52:43 I think the unlinkable definition (and such data out of scope) might be relevant to this point 08:52:46 … We decided not to categorize data (PII vs. non-PII, for example). 08:52:51 +1 to npdoty 08:53:00 q+ npdoty 08:53:16 queue=npdoty,justin,dwainberg,lmastria-DAA 08:53:36 ruud: If we don't recognize that EU Parlaiment is taking a different approach, doesn't that hurt us? 08:53:57 +1 to npdoty 08:54:00 aleecia: We recognize that our spec isn't going to map to any particular country's laws. We're working on a separate Global Considerations doc to give advice to people on how to manage this. 08:54:12 q? 08:54:56 npdoty: It may be that the definition of "unlinkable" data — which would be out-of-scope largely — would address ruud's concern. 08:55:10 Unlinkable addresses some but not all of peter-4As's concerns. 08:56:15 q- 08:56:40 ruud: We need to be sure that our standard is descriptive enough to be valuable. If "unlinkable" does that, we should dedicate the time to make it clear. 08:56:45 ack justin 08:57:22 justin: Regarding amyc's small publisher example, this should be dealt with in the first party compliance section. We should leave the definition of "sharing" the same and just deal with what first parties can do. 08:57:42 …. On the "collection" point, if we leave "collection" but have a 6-week grace period as a permitted use, does that address the concern? 08:58:05 I suggest to merge use and sharing. I also suggest to have collect only for the things stored and "retain" for things that are stored beyond 6 weeks 08:58:06 I think that might be a good approach, justin; many of the sharing use cases might be addressed by clarifying first-party compliance 08:58:08 q+ 08:58:09 ifette: I didn't have a problem with the goal of the text, but was just pointing out that the text was confusing. 08:58:22 ack dwainberg 08:58:22 so are we going to put the burden of implementing DNT on the millions of little mom & pop websites around the world? These are almost all exclusively monitized by 3rd party ad networks. 08:58:26 zakim, close queue 08:58:26 ok, npdoty, the speaker queue is closed 08:58:27 currntly the 6-week conflicts with the requirements on third-party as stated 08:58:57 dwainberg: [wants more actions!] 08:59:15 BTW, ruud's comments are similar to mine in http://lists.w3.org/Archives/Public/public-tracking/2012May/0314.html 08:59:18 ack lmastria-DAA 08:59:34 fielding, expand, don't fully understand. Is it that during the 6-week you might be transferring or personalizing without knowing you're a third party governed by DNT? 08:59:36 action-265: dwainberg interested, might have differing views on the first part of the unknowing piece 08:59:36 ACTION-265 Update text in 3.8.1 regarding bringing into compliance, not just deletion notes added 08:59:45 WileyS, I think the definition of "collect" is far to harsh and creates problems IMHO 08:59:48 +q 08:59:58 lmastria-DAA: DAA goes through all of this in discrete detail, which can be a resource for implementation. 09:00:32 I disagree. The DAAs spec is considered totally inadequate by privacy advocates and many academics,\. 09:00:37 JC has scribe 09:00:45 scribenick: JC 09:01:06 dsinger: Roy has expressed confusion in collection term 09:01:11 justin, I mean that the way that the collection is constrained right now does not take into account the 6-week window concept, so it is hard to know if having a broad definition and a 6-week allowance "helps" 09:01:20 +1 to dsinger 09:01:21 jchester2, which part(s) of the DAA Principals do you consider "totally inadequate"? Could you please be more specific? 09:01:24 ... setting rules on something you already have 09:01:33 ACTION-266: Note that dsinger used the term "exposure" which may be a better way to phrase things than collection 09:01:33 ACTION-266 Suggest retention related to a timed grace period (with dwainberg) notes added 09:01:35 lmastria-DAA, if you can provide that text to the group as a submission, that would be helpful (would also give us permission to include that text) 09:01:37 Aleecia Does 3.8 address that 09:01:44 Dsinger: not necessarily 09:01:46 no, exceptions that are the rule are not a sensible solution 09:01:52 Aleecia: I don't understand why 09:01:59 links to DAA http://www.aboutads.info/obaprinciples .... http://www.aboutads.info/msdprinciples 09:02:01 Dsinger: much longer discussion 09:02:01 jchester2, I think Lou is suggesting taking advantage of definitions from the DAA document, rather than compliance on the whole 09:02:17 Aleecia: Maybe we don't need to define collection? 09:02:39 Dsinger: Collection sounds like an active act. Can be misleading for someone not reading definition. 09:02:39 dwainberg 09:02:55 fielding, I understand you don't like broad definitions with exceptions that carve things out, but logically they achieve the same purpose. But I am OK with restating if it achieves that same thing. 09:02:59 Aleecia: does exposed versus collection a meaningful description 09:03:12 Dsinger will work with Ifette on issue 09:03:18 action-266: dsinger to help, regarding a distinction regarding "exposed" 09:03:18 ACTION-266 Suggest retention related to a timed grace period (with dwainberg) notes added 09:03:24 Dwainberg: valid point 09:03:35 What is says it does to address user concerns; how it describes the problem; lack of coverage for sensitive data except what is required by law, such as COPPA, oe doesn't reflect what its members actually do in practice regarding financial and health data; the icon system was not tested and is not a valid way to serve privacy. The explanation of what is collected and why versus the actual practices of the companies regarding data collecting is purposefully mi 09:03:35 action-266: rigo also interested 09:03:35 ACTION-266 Suggest retention related to a timed grace period (with dwainberg) notes added 09:03:47 Aleecia: sounds like if we have five people working on it then do it during a break 09:04:02 + +1.425.214.aadd 09:04:05 ... we are out of time for this issue. 09:04:36 fwagner has joined #dnt 09:04:36 npdoty, Do we want to address the issues of unid'd callins at some point? 09:04:40 q+ 09:04:52 zakim, reopen the queue 09:04:52 ok, tlr, the speaker queue is open 09:04:56 zakim, aadd is bryan_ 09:04:56 +bryan_; got it 09:04:58 ... definitions for first and third party 09:05:04 Zakim, who is on the phone? 09:05:04 On the phone I see Telegraaf, BrendanIAB?, johnsimpson, fielding, bryan_ 09:05:05 JBWeiss has left #DNT 09:05:10 move to reopen the queue 09:05:16 ... section 3.5. Do we think that these options are at final text? 09:05:17 q? 09:05:27 zakim, who is on the phone? 09:05:27 On the phone I see Telegraaf, BrendanIAB?, johnsimpson, fielding, bryan_ 09:05:30 q- dsinger 09:05:32 Brooks has joined #dnt 09:05:35 q+ rachel_n_thomas 09:05:36 ... Should some of these be reworked or should additional options be added? 09:05:38 how do we respond to queue questions? 09:05:51 q+ 09:06:24 ... first party the user knowingly and intentionally interacted with it. Otherwise 3rd party. 09:06:40 My comments and alternative are at http://lists.w3.org/Archives/Public/public-tracking/2012Oct/0055.html 09:06:49 ... possible to have multiple first parties on one page, but branding must be clear and have separate privacy poicies 09:07:02 ... the first party is not based on domain name 09:07:21 ... domain could reference different party from URL 09:07:25 The second sentence in the third party paragraph is talking about first parties, and belongs in the first party paragraph. 09:07:32 q? 09:07:35 ... diferrent URL could belong to same party 09:07:39 q? 09:07:47 ... if that is not clear raise question 09:08:05 q+ ask the browser folks whether we can draw from the TPE 09:08:16 q+ to ask the browser folks whether we can draw from the TPE 09:08:24 ack ChrisPedigoOPA 09:08:26 lmastria I have a questoin about process 09:08:39 Rachel why are not DMA proposals not listed here? 09:08:42 response to jchester2...the program was tested and is tested and validated every day by users (11 mm to date). the practices do match and when they don't we have enforcement to drive compliance, the latest of which happened monday 09:08:51 s/Rachel why/rachel: why/ 09:08:51 ... I would like to see them added or explained why not 09:09:04 ... why have we moved on from discussion of unlinkable data 09:09:05 s/DMA/DAA/ 09:09:20 Aleeca: we have run out of time and will come back to unlinkable data at end of day 09:09:21 ChrisPedigoOPA, here is the definition of party discussing affiliateness http://www.w3.org/TR/tracking-compliance/#def-party 09:09:36 thanks Justin 09:09:48 +q 09:10:00 q- 09:10:03 ... this is not the DAA or self-reg group 09:10:22 Rachel: I feel there are many DAA members here 09:10:32 rachel_n_thomas, Can you link the defs for us? 09:10:41 Imastria-DAA, please send those proposals to the mailing list 09:10:42 ... I have concrete proposals and can add them to IRC 09:10:46 does someone have a summary of how the DAA definitions would vary from the current options? 09:11:01 Aleecia: We can assign an action item to you and you can respond with your text to mailing list 09:11:02 rachel_n_thomas: please share link to DAA definitions 09:11:09 ... let me know if you have question on process 09:11:15 q? 09:11:15 q? 09:11:18 ack rachel_n_thomas 09:11:19 ack rachel_n_thomas 09:11:19 Rachel: I am comfortable taking action item 09:11:51 action: rachel to propose first/third party definitions from existing DAA documents 09:11:51 Created ACTION-267 - Propose first/third party definitions from existing DAA documents [on Rachel Thomas - due 2012-10-10]. 09:11:53 Rigo:We have a very sophisticated system in TPE on first and third party distinction. Should we use that. 09:12:05 DAA definitons of first party and third party are available for review here http://www.aboutads.info/resource/download/seven-principles-07-01-09.pdf 09:12:14 ... Can technology address this? 09:12:40 Aleecia: the two docs are not in sync and maybe we can address this. 09:12:41 q+ 09:12:46 ack rigo 09:12:46 rigo, you wanted to ask the browser folks whether we can draw from the TPE 09:12:47 ack rigo 09:12:47 Dsinger: yes they should be in sync 09:13:09 ... I will take action to bring the docs into sync 09:13:13 Rigo: I will help 09:13:23 I think even with fielding's proposal and the existing TPE text, we still have concepts of user expectations/understanding in interaction 09:13:36 action: dsinger to edit the TPE document to make sure that the final definition of parties is in sync across the two specifications 09:13:36 Sorry, couldn't find dsinger. You can review and register nicknames at . 09:13:41 Aleecia: Does either author wish to revise them based on feedback 09:13:52 ... one from Johanthan tom and peter 09:13:55 q+ 09:13:59 ... another from Shane et. al. 09:14:03 dwainberg 09:14:13 Shane: what is disucssion 09:14:21 Aleecia: first and third party 09:14:44 action: dsinger to edit the TPE document to make sure that the final definition of parties is in sync across the two specifications 09:14:44 Sorry, couldn't find dsinger. You can review and register nicknames at . 09:14:57 q+ 09:14:59 :) 09:15:15 Justin: I wanted to modify definition to address multiple-first party issue. How would TPE address that 09:15:23 action: singer to edit the TPE document to make sure that the final definition of parties is in sync across the two specifications 09:15:23 Created ACTION-268 - Edit the TPE document to make sure that the final definition of parties is in sync across the two specifications [on David Singer - due 2012-10-10]. 09:15:25 Dsinger: it doesn't 09:15:27 Why would it matter? 09:15:28 +q 09:15:43 -Q 09:16:01 ... substantial chunks of the TPE looks at top level domain 09:16:04 ack WileyS 09:16:21 mischat has joined #dnt 09:16:27 WileyS: It should be no different from multi-domain structure. Each party responds as first parties. 09:16:42 ... handle it in that the beacon responds as first party 09:17:03 Aleecia: That's great if they are co-first parties, but how does that work for FB button 09:17:05 Thanks, rachel_n_thomas. I find the definition of third party too narrow given where we are (only OBA companies are first parties), but the first party definition tracks pretty closely to what we have as Option 2 right now. 09:17:15 Ugh, s/first/third 09:17:23 ... same for clicking on an ad and why the discussion matters 09:17:29 JBWeiss has joined #DNT 09:17:36 Dsinger: the TPE discusses promotion 09:17:56 ack robsherman 09:18:10 Robsherman: Need to discuss how to manage multiple first parties 09:18:20 It is not relevant to TPE. It could be "solved" in a tracking policy document, or even an array of policy links, but it is still not relevant to the protocol. 09:18:42 ... both address but not clearly. I sent proposed text to email list 09:18:57 Aleecia: Nick will assign action number to work 09:18:59 Explain more please, Roy 09:19:00 q? 09:19:00 have we reviewed robsherman's text? maybe that would supplant existing options? 09:19:11 Agree with fielding, I think that has to be addressed specifically in compliance doc. 09:19:13 That does not stop it from being relevant to compliance. 09:19:28 Dwainberg: There was more discussion about determining with high probability, but now description on how that is done 09:19:34 ... can someone describe 09:19:34 as a process question, why isn't proposed text included as option? 09:19:41 Aleecia: that is in first option 09:20:15 Dwainberg: in 3.5.2 websites is discussed and the work applies beyond websites and we should address 09:20:26 robsherman's text is here: 09:20:34 Aleecia: could Shane or Heather address 09:20:43 http://lists.w3.org/Archives/Public/public-tracking/2012Sep/0247.html 09:20:50 ... Justin will address 09:20:50 rigo_ has joined #dnt 09:20:55 Justin: Address what? 09:21:27 WileyS: need to elaborate on websites to something more appropriate 09:21:54 action: brookman to update 3.5.2 to expand beyond "Web site" 09:21:54 Created ACTION-269 - Update 3.5.2 to expand beyond "Web site" [on Justin Brookman - due 2012-10-10]. 09:21:55 Dwainberg: Can clarification be made on option 1. It's not clear to me 09:21:58 Justin, more expansive term than "web site" in 3.5.2. Perhaps "user interaction" instead? 09:22:13 Aleecia: I believe that Rob suggested some text and we should look at that 09:22:36 q? 09:22:36 Justin, or perhaps a list: "site, server, or application central to user interaction"? 09:22:37 Robsherman: I will paste link into IRC 09:22:39 ack dwainberg 09:22:40 q? 09:22:40 q+ kevinsmith 09:22:57 http://lists.w3.org/Archives/Public/public-tracking/2012Sep/0247.html (HT tlr) 09:23:00 ack kevinsmith 09:23:32 q+ 09:23:34 Kevinsmith: I'm concerned about having a link to separate privacy policies. There can be situations where it will be difficult due to realestate issues. 09:23:56 ... I don't have an obvious example, but I believe it is an issue 09:24:14 WileyS: We didn't look at idea of promotion for multiple first parties 09:24:40 ... after clicking on a widget the privacy policy can be accessed 09:25:00 note that "branding" is a commercial concept and DNT goes beyond commerce only 09:25:13 Multi first party should be fairly rare. 09:25:21 This is another topic I already provided written comments for … http://lists.w3.org/Archives/Public/public-tracking/2012Apr/0114.html 09:25:37 +q 09:25:49 q+ 09:26:22 -q 09:26:47 aleecia: suggestion, in 3.5.2 and Option 2, make the privacy policy a should, relying on screen real estate 09:26:48 q? 09:26:49 dsinger has joined #dnt 09:27:11 as housekeeping matter, we need to move interaction/promotion section to option 2 as well, right? 09:27:21 +1 to npdoty --- these two definitions are functionally the same. 09:27:39 in other words, both option 1 and option 2 need to accommodate multiple first parties and promotion to first party 09:27:46 Let's work on combining them then - I'm open to that 09:27:55 bryan has joined #dnt 09:28:02 +1 09:28:14 +q 09:28:21 q- 09:28:22 ack npdoty 09:28:31 dsriedel has joined #dnt 09:28:38 -q 09:29:35 npdoty: I think these two definitions may not be all that different, both rely on user expectations for the sake of promotion / interaction 09:29:53 WileyS, if you have an action item here, may want to consider fielding's test too: http://lists.w3.org/Archives/Public/public-tracking/2012Apr/0114.html 09:30:21 s/test/text 09:30:22 q+ 09:30:28 ... think there's a good chance we could combine these, particularly since we need to update "visiting" a "site" already, which might correspond to the concept of intending to in interact with 09:30:43 Chapell has joined #DNT 09:31:23 q? 09:31:30 Justin, got it - shared the text with David as we work on the rewrite 09:32:00 option 3 only talks about first parties, which is a problem 09:32:05 Justin - rewrite of 3.8.1 to be specific 09:32:23 tlr has joined #dnt 09:32:32 +q 09:32:51 WileyS, justin - I thought we were talking about the first/third party definition updates -- for which we don't have an action 09:32:58 q+ 09:33:01 dwainberg 09:33:05 q+ dwainberg 09:33:11 ack hwest_ 09:33:12 q+ 09:33:19 I don't know why I keep doing that :) 09:33:38 q+ 09:33:38 sorry, lost track what section? 09:33:51 tlr has joined #dnt 09:34:00 ack rachel_n_thomas 09:34:13 scribenick: npdoty 09:34:33 npdoty, Yes, I think you should make an option on WileyS on this, but I'm willing to take it on --- I am fine with killing "high probability" in favor of the other text (though I still think you have subjective questions either way). 09:34:37 rachel_n_thomas: happy to add definitions from DAA as an option, especially since most people in the room were involved with that 09:34:41 q? 09:34:42 q? 09:34:46 ack amyc 09:34:47 ack amyc 09:35:02 Rachel: Don't think everyone in room developed that. I sure didn't have a hand in it. 09:35:05 JC has joined #DNT 09:35:06 amyc: I do like option 3, though it would need to be broadened to third party as well 09:35:06 rwessel has joined #dnt 09:35:13 ack tlr 09:35:20 ... service providers to detect fraud and monitor security 09:35:28 +q 09:35:40 ... those service providers need to aggregate that information across multiple clients 09:35:48 ... talks to the permitted uses, not just silo'ing 09:35:51 Amy: I like option 3 since it doesn't specifically require siloing 09:36:04 ack dwainberg 09:36:07 Not sure whether this got in there - but intention to option 3 is to have a pure definition that's simple and in line with consensus of gthe group in Seattle. 09:36:09 aleecia: is the siloing just around security/fraud, or all of them? 09:36:14 q? 09:36:16 efelten has joined #dnt 09:36:17 some people in the room: all of them 09:36:43 I consider such data-gathering for security to be a permitted third party, not a service provider relationship. 09:36:45 dwainberg: language about "no independent rights" could be too limiting, service providers will have certain needs (debugging, maintaining) 09:36:58 options need to include ability to use across clients, rather than strict siloing. Example is fraud detection services that need to aggregate data across multiple clients in order to effectively detect fraud 09:37:15 adrianba has joined #dnt 09:37:16 ... scoped to instead be "no independent rights" for a particular use 09:37:23 +q 09:37:25 npd: fielding, I assumed that as well 09:37:27 fielding, first parties are prohibited from sharing with third parties, can only share with service provider 09:37:30 ksmith has joined #DNT 09:37:46 sites need to share with service provider that may be aggregating information for security detection 09:38:13 rigo: if the service provider on your behalf uses the data to secure their own service, that's fine 09:38:23 ... the key is the *independent* use 09:38:31 amyc, I think we would need additional text to allow it -- tightly scoped to not be a huge privacy hole 09:38:45 rwessel has left #dnt 09:38:57 ack rig 09:39:12 Simon has joined #dnt 09:39:20 action: rachel to propose existing DAA text for service providers 09:39:20 Created ACTION-270 - Propose existing DAA text for service providers [on Rachel Thomas - due 2012-10-10]. 09:39:27 q+ 09:39:31 q+ 09:39:31 fielding, I wonder whether option three, which speaks to permitted uses as well in context of service provider relationship - and fraud detection is permitted use 09:40:03 Simon has joined #dnt 09:40:11 dwainberg 09:40:18 q+ dwainberg 09:40:22 ack WileyS 09:40:34 I proposed rough text on the list for service provider within first party rather than as a separate party 09:40:50 Chris_IAB has joined #dnt 09:41:01 susanisrael has joined #dnt 09:41:24 roy thanks for clarification re: security use 09:41:24 action: west to update service provider language to apply to first and third parties 09:41:24 Created ACTION-271 - Update service provider language to apply to first and third parties [on Heather West - due 2012-10-10]. 09:41:26 Ionel_IAB has joined #dnt 09:41:27 q- 09:41:38 npdoty, fyi, I was kicked out of IRC and had trouble re-joining 09:41:38 I can live with option 3 but for the sake of beauty and simplicity, legally we would not need anything beyond "no independent right to process" 09:41:49 action-271: WileyS said the s// language aloud, but I couldn't capture that 09:41:49 ACTION-271 Update service provider language to apply to first and third parties notes added 09:41:55 scribenick: npdoty 09:42:09 rigo, I'm not sure whether we disagree 09:42:16 Ionel_IABEU has joined #dnt 09:42:30 David, I'm pretty sure we aren't 09:42:40 WileyS: added the permitted uses text to that third option regarding service providers 09:42:43 JC has joined #DNT 09:42:44 q? 09:42:54 failed 09:43:04 I'm comparing to contractual language I've seen in the US, and in that context, I think companies will find the no independent use language confusing. 09:43:23 Rene: in EU we have industry bodies representing owner of data. Is this something we can place under unlinkable? 09:43:25 rene: audience measurement, working on behalf of the owner of the data -- is this a service provider relationship? 09:43:29 scribenick: JC 09:43:40 what we generally see is "no independent rights, except..." 09:43:53 mikeo has joined #dnt 09:44:00 ... Is sharing by SP covered by unlinkable? 09:44:07 q? 09:44:12 Aleecia: depends on the definition 09:44:12 ack Rene 09:44:15 ack fielding 09:44:28 Heather - new Option 3: Service Providers acting on the behalf of another Party and with no independent rights to use that Party’s data outside of the context of that that Party and Permitted Uses are also considered to be acting as the that Party. 09:44:35 David and Shane I have an idea for service provider definition clarification-will try to help if you want 09:44:49 Susan - definitely - please let us know 09:44:56 fielding, I thought we've just asked that we extend service provider beyond just first parties 09:45:06 Roy: I want to know in addition to Aleecia's list is there a broader definition of a first party versus sprinkling throughout the document 09:45:17 http://lists.w3.org/Archives/Public/public-tracking/2012Oct/0055.html 09:45:22 That would be hard for me too! 09:45:25 ... since it would affect the entire definition section it would be tough to write a new compliance document 09:45:26 vinay has joined #dnt 09:45:44 I agree with Justin 09:45:44 fwagner has joined #dnt 09:45:47 Aleecia: We can't go through it now, but it should be in tracker 09:45:54 ACTION: roy Fielding to propose text for party and outsourcing definitions 09:45:54 Created ACTION-272 - Fielding to propose text for party and outsourcing definitions [on Roy Fielding - due 2012-10-10]. 09:45:59 ACTION-272: done in http://lists.w3.org/Archives/Public/public-tracking/2012Oct/0055.html 09:45:59 ACTION-272 Fielding to propose text for party and outsourcing definitions notes added 09:46:01 ... we will have an action that points to the text if that is okay 09:46:04 action-272? 09:46:04 ACTION-272 -- Roy Fielding to fielding to propose text for party and outsourcing definitions -- due 2012-10-10 -- OPEN 09:46:04 http://www.w3.org/2011/tracking-protection/track/actions/272 09:46:07 Roy: that's fine 09:46:11 q? 09:46:28 ACTION: robsherman to draft text on first party 09:46:28 Sorry, couldn't find robsherman. You can review and register nicknames at . 09:46:53 action: sherman to propose text regarding multiple first parties 09:46:53 Created ACTION-273 - Propose text regarding multiple first parties [on Rob Sherman - due 2012-10-10]. 09:46:55 ChrisPedigo: Going back to David and Rigo statement about SP using data to improve service, does independent right include that? 09:47:04 Rigo: I doubt that it would 09:47:07 +q 09:47:17 ack ChrisPedigoOPA 09:47:44 dwainberg 09:47:46 q+ 09:47:47 ... a person that processes on behalf of first party then it depends on reslationship. The first party is still in control 09:47:49 ACTION-273: done in http://lists.w3.org/Archives/Public/public-tracking/2012Sep/0247.html 09:47:49 ACTION-273 Propose text regarding multiple first parties notes added 09:48:06 q? 09:48:06 q? 09:48:08 ack w 09:48:12 q! 09:48:15 q+ 09:48:25 (boy I'm having trouble using this thing today) 09:48:27 q+ 09:48:38 +q 09:48:53 WileyS: I believe there is a difference in understanding. You can take learnings in those you work for. You can't use the data itself, but you can learn from it. Anything that is unlinkable can be used. 09:49:04 q? 09:49:04 Shane: Including if such learning is used for tracking? 09:49:13 rwessel has joined #dnt 09:49:24 Jeff, no - that would be an independent use - not allowed 09:49:28 q? 09:49:40 Rob: The first party determines the purpose and means. It is important to distinguish between learning and use, but work should not go beyond original agrement 09:49:47 -q 09:50:05 Aleecia: two people are reading same statement and coming up with different meanings. This should be fixed. 09:50:08 controller determines purpose and means. Any serviceprovider who does anything with the actual data beyond that scope becomes a controller himself 09:50:16 Shane: So what happens with the "learnings"--it wuld be used for some part of the targeting function at some point, no? 09:50:34 WileyS, is your suggestion that a service provider can make unlinkable data of a customer's data and then use it for other purposes not for the customer? 09:50:34 WileyS: I don't think Rob was commenting on text, but EU position. If not I would like to get his response 09:50:41 q? 09:51:06 Aleecia: WileyS will take action to add non-normative text to clarify text 09:51:12 rigo has joined #dnt 09:51:30 action: wiley to propose non-normative text on service providers to clarify "independent use" (with rvaneijk) 09:51:30 Created ACTION-274 - Propose non-normative text on service providers to clarify "independent use" (with rvaneijk) [on Shane Wiley - due 2012-10-10]. 09:51:33 q? 09:51:33 Rob: we had text already, maybe we could copy and paste it. I will work with wileyS on it. 09:51:47 q- rvaneijk 09:51:47 q- 09:52:38 Lmastria: Bridges between Rachel's action item and Rigo's independence could be addressed. A large portion of our businesses are subject to enhanced notice and control around data usage. 09:52:44 ... that should be considered. 09:52:50 ack lmastria-DAA 09:53:06 Aleecia: One of our proposals has less notice vs. more. 09:53:21 Dwainberg: I look forward to extra text because I'm confused by it 09:53:55 ... we dont want to unintentionally cause a problem between SP doing work for a party and a first party that can do it themselves 09:54:13 ... this would create a competitive disparity that we should try to avoid 09:54:28 Aleecia: Basically we see the SP standing in the shoes of the first party 09:54:51 q? 09:54:56 ack dwainberg 09:54:57 ack dwainberg 09:55:10 Aleecia: SP can be seen as the same, but they cannot for example share data across first parties 09:55:25 Link? 09:55:33 @shane: "For the EU, the outsourcing scenario is clearly regulated. In the 09:55:33 I think there's support for that principle (from dwainberg) in general, although limiting independent use gets at the potential privacy difference between a company performing the practice itself and a service provider doing it 09:55:34 current EU Directive 95/46/EC, but also in the suggested regulation 09:55:36 reforming the data protection regime, an entity using or processing data 09:55:38 is subject to data protection law. A First Party (EU: data controller) 09:55:39 is an entity or multiple entities (EU: joint data controller) who 09:55:41 determines the purposes, conditions and means of the data processing 09:55:43 will be the data controller. A service provider (EU: data processor) is 09:55:44 ... Dwainberg came up with some text for data append. 09:55:45 an entity with a legal contractual relation to the Data Controller. The 09:55:46 Service Provider does determine the purposes, conditions and means of 09:55:48 the data processing, but processes data on behalf of the controller. The 09:55:49 data processor acts on behalf of the data controller and is a separate 09:55:51 legal entity. An entity acting as a first party and contracting services 09:55:52 of another party is responsible for the overall processing. A third 09:55:54 party is an entity with no contractual relation to the Data Controller 09:55:55 and no specific legitimacy or authorization in processing personal data. 09:55:57 If the third party has own rights and privileges concerning the 09:55:58 processing of the data collected by the first party, it isn't a data 09:56:00 ... a lot of these use cases may be addressed else where 09:56:00 processor anymore and thus not covered by exemptions. This third party 09:56:02 is then considered as a second data controller with all duties attached 09:56:04 to that status. As the pretensions of users are based on law, they apply 09:56:05 to first and third party alike unless the third party acts as a mere 09:56:07 data processor." 09:56:21 ... my suggestion is that we leave this at is and come back to it 09:56:28 ... once definition is done 09:57:11 ... there is an action for data append, but no issue so we should create one 09:57:14 makes sense 09:57:14 q= 09:57:32 Q? 09:57:47 ChrisPedigo: I don't believe there should be a data append restriction as it may be out of scope 09:57:56 Aleecia: let's define it and then decide 09:58:08 issue: definition of and what/whether limitations around data append 09:58:08 Created ISSUE-170 - Definition of and what/whether limitations around data append ; please complete additional details at http://www.w3.org/2011/tracking-protection/track/issues/170/edit . 09:58:11 ditto ChrisPedigo re data append 09:58:18 issue-170: see action-229 09:58:28 postpone issue-170 09:58:30 ... Npdoty will create new issue and attach to action 229 09:58:30 ISSUE-170 Definition of and what/whether limitations around data append notes added 09:58:55 ... covered everything except unlinkable and now will go to lunch 09:58:58 issue-170: let's come back to this issue after we've made decisions around service providers 09:58:58 ISSUE-170 Definition of and what/whether limitations around data append notes added 09:59:10 -johnsimpson 09:59:12 rigo_ has joined #dnt 09:59:25 I'm going to disconnect from phone for the next 60 minutes 09:59:40 adjourned for lunch. 09:59:47 rrsagent, pointer? 09:59:47 See http://www.w3.org/2012/10/03-dnt-irc#T09-59-47 10:00:11 -BrendanIAB? 10:00:19 rrsagent, draft minutes 10:00:19 I have made the request to generate http://www.w3.org/2012/10/03-dnt-minutes.html npdoty 10:00:52 -bryan_ 10:00:57 -fielding 10:23:23 dtauerbach has joined #dnt 10:46:55 dwainberg has joined #dnt 10:47:55 Joanne has joined #DNT 10:49:31 ksmith has joined #DNT 10:55:18 justin has joined #dnt 10:56:46 npdoty has joined #dnt 10:57:45 Simon has joined #dnt 10:59:23 ksmith1 has joined #DNT 10:59:24 +??P1 10:59:42 Zakim, ??P1 is probably me 10:59:42 +BrendanIAB?; got it 11:00:51 +bryan_ 11:02:20 +fielding 11:02:29 amyc has joined #dnt 11:03:24 are we back 11:03:44 not quite yet 11:04:00 We are working out boat-dinner logistics. 11:04:10 Zakim, who is on the phone? 11:04:10 On the phone I see Telegraaf, BrendanIAB?, bryan_, fielding 11:04:19 We're assuming you're a no, johnsimpson. 11:04:26 afowler has joined #dnt 11:04:29 +johnsimpson 11:05:02 A no on what? 11:05:26 I'll be there in spirit... 11:06:07 Rene has joined #dnt 11:06:35 dsriedel has joined #dnt 11:06:43 BerinSzoka has joined #DNT 11:06:57 screen should be shared now, let us know if you're having problems 11:07:14 Those can follow Aleecia screen at http://my.adobeconnect.com/vigoel 11:07:38 scribenick: susanisrael 11:07:46 yes have screen 11:08:06 ChrisPedigoOPA has joined #dnt 11:08:06 aleecia: will be talking about financial logging, don't have enough text to discuss clearly 11:08:21 have text originally in draft and action 235 from nick, discussed a bit on phone 11:08:32 there is a lot of nonnormative text that's useful 11:08:43 from me: http://lists.w3.org/Archives/Public/public-tracking/2012Sep/0141.html 11:08:45 ran into trouble with "to the extent required by law." 11:08:46 JBWeiss has joined #DNT 11:09:00 [read text] 11:09:05 rigo_ has joined #dnt 11:09:15 q+ 11:09:21 rvaneijk has joined #dnt 11:09:42 there is a lot of additional text re: permitted uses, this is just one of them 11:09:50 Ionel_IABEU has joined #dnt 11:10:06 in editor's draft have different text right now. [read 6.1.1.5 11:10:19 those are the 2 texts we are looking at 11:10:22 regarding action-255, we also had a proposal from Alan: http://lists.w3.org/Archives/Public/public-tracking/2012Sep/0243.html 11:10:28 have not started to flesh out differences 11:10:30 +q 11:10:30 q? 11:10:32 q+ 11:10:34 -q 11:10:35 will take comments/questions about this text 11:11:01 ian: i will note that nick's text introduces term of tracking and that is not defined or used elsewhere 11:11:02 Replace tracking with "collection, retention, and use"? 11:11:14 aleecia: there may be an action on that elsewhere already 11:11:20 nick: happy to do that 11:11:30 q+ 11:11:36 Chapell has joined #DNT 11:11:38 ack ifette 11:11:39 aleecia: if that isn't in action form already it should be created 11:11:41 ack npdoty 11:11:42 Marije has joined #dnt 11:12:04 nick: in queue to talk about "not my text"--alan took action to provide info re: financial reporting 11:12:16 .....that's how we got into discussion re: contract 11:12:18 +q 11:12:43 nick: i was using law because of suggestion from shane that there might be applicable law 11:12:49 regarding action-255, we also had a proposal from Alan: http://lists.w3.org/Archives/Public/public-tracking/2012Sep/0243.html 11:12:49 aleecia: which action? 11:12:53 nick: 244 11:12:56 action-255? 11:12:56 ACTION-255 -- Alan Chapell to work on financial reporting text (with nick, ian) as alternative to legal requirements -- due 2012-09-19 -- PENDINGREVIEW 11:12:56 http://www.w3.org/2011/tracking-protection/track/actions/255 11:12:58 sorry, nick: 255 11:13:06 s/244/255/ 11:13:11 got it 11:13:33 I think most of the discussion on that thread is not directly related, but the start of it has the proposal about contracts 11:13:42 aleecia reads from email chain 11:13:48 hwest has joined #dnt 11:13:52 q? 11:14:00 Brooks has joined #dnt 11:14:13 chris: my concern is "required by law." 11:14:14 q? 11:14:20 ack Chris_IAB 11:14:45 chris: i did some research on auditing since 60s by MRC which requires retaining data for a year 11:14:48 +q 11:14:55 q+ 11:14:55 +q 11:15:00 ack WileyS 11:15:03 chris: i don't think this organization should have ability to override another organization's standards 11:15:04 +q 11:15:29 shane: the issues with contracts are not with contracts directly but just with proving you performed under contract 11:15:37 q- 11:15:46 Indeed, I believe even financial auditing is technically not law, often, but required e.g. to get listed on a stock exchange, or to conform to an industry norm 11:16:13 need to prove having performed is an issue across jurisdiction. don't know how to get around this problem. 11:16:23 q? 11:16:25 q+ to check to what extent the general provisions make life easier here 11:16:38 shane: contracts not the problem: but proof of contract 11:16:54 According to the Media Rating Council (MRC), the normal retention period for "source data" required for industry accreditation of third-party audience estimates is 1-year, as documented in their published standards: "Minimum Standards for Media Rating Research" (available for download at http://mediaratingcouncil.org/MRC%20Standards.htm). 11:17:03 WileyS, I hear your point about proof of fulfillment of a contract, rather than fulfillment directly required by the contract itself 11:17:08 aleecia: getting a sense of other needs may help 11:17:32 Nick, how could we integrate that perspective into the proposed text from Alan? 11:17:34 jeff: i do think it's important that we have identified what is required by law 11:17:45 I think someone should take an action to write Shane's middle ground text. 11:18:03 jeff: we did research on sarbox and couldn't find any specific language re: interactive advertising 11:18:20 lmastria-DAA has joined #dnt 11:18:29 can't depend on contractual procedures industry has developed before privacy crisis. don't have enough documentation 11:18:38 q? 11:18:42 q+ 11:18:44 ack jchester 11:18:44 -q 11:18:45 jeff: there is resistance to providing proof to govt agencies 11:18:47 ack tl 11:18:48 ack jchester2 11:18:50 ack chapell 11:18:51 tlr has joined #dnt 11:18:52 ack Chapell 11:19:13 alan: point i was trying to make is that there are standards created by other bodies that companies i work with will have to make 11:19:22 WileyS, do I understand you right that you want limited purpose to have it retained for audit purpose only and for financial proof. That could be added to the spec 11:19:26 q+ 11:19:32 rachel_n_thomas has joined #dnt 11:19:42 alan: there are hobson's choices for these companies. they will try to do right thing but it speaks to goal here if it's industry implementability 11:19:46 +q 11:20:07 alan: i am not here to say which other standards are legitimate but it is uncomfortable 11:20:28 q+ 11:20:33 alan: jeff: i love you but there has been a lot of information that has gone around pls acknowledge 11:20:36 rwessel has joined #dnt 11:20:53 For those interested - this is only SOX (many financial laws outside of this one): http://www.gpo.gov/fdsys/pkg/PLAW-107publ204/html/PLAW-107publ204.htm 11:20:58 q+ 11:21:04 jeff: one of the organizations that just joined has said it could provide more if ms default taken off the table 11:21:40 david singer: how much will general permissions help? if you demo that you only collected data for permitted use for the specified time that may help 11:21:46 +q 11:21:53 ack dsinger 11:21:53 dsinger, you wanted to check to what extent the general provisions make life easier here 11:21:54 q+ 11:22:08 JBWeiss has joined #DNT 11:22:29 david singer: we will not police collection or retention but it helps to be able to point to an industry requirement. does that help off pressure? 11:22:42 aleecia: quick straw poll 11:23:08 does anyone want to continue to argue for to the extent required by law? 11:23:17 jeff: only vote for this 11:23:25 i think law is important 11:23:35 rigo: the relation is different. req'd by law will trump anyway 11:23:51 law trumps all else in the standard 11:24:08 rigo: qu is whether anyone opposed to adding other requirements, i would be opposed to removing reqmt' to comply with law 11:24:32 aleecia: jeff was concerned that sox compliance could become indefinite 11:25:17 …and much auditing is a requirement of e.g. belonging to a trade group, being listed on a stock exchange, isn't it? 11:25:18 action-235? 11:25:18 ACTION-235 -- Nick Doty to draft middle way draft on permitted uses -- due 2012-09-04 -- PENDINGREVIEW 11:25:18 http://www.w3.org/2011/tracking-protection/track/actions/235 11:25:19 jeff: i agree with you that you could interpret -- i do have this concern that sarbox is so vague that you could make lots of arguments 11:25:32 jeff: at the same time i think my point is show me the tofu 11:25:37 chris: i provided tofu 11:25:48 q? 11:25:58 jeff: i have not seen evidence of legal requirements and extent of data retained 11:26:21 action: doty to update middle way proposals to avoid relying on "tracking" 11:26:21 Created ACTION-275 - Update middle way proposals to avoid relying on "tracking" [on Nick Doty - due 2012-10-10]. 11:26:25 ed: difficult question what's the limiting principle. if entities got together and decided keep everything that could be a problem 11:26:36 http://lists.w3.org/Archives/Public/public-tracking/2012Sep/0141.html 11:26:38 q+ 11:26:42 -q 11:27:01 aleecia: not seeing huge support for to the extent required by law 11:27:05 the key is what is he limiting factor 11:27:10 ack Chris_IAB 11:27:18 aleecia: I think we are moving to something else besides "required by law" 11:27:30 chris: i think i agree with david singer's principle so we could find a place to start there 11:27:45 chris: i think we already have text without required by law 11:28:01 Stella has joined #dnt 11:28:14 ed: so limiting principle is requirements for collection and use? 11:28:16 +q 11:28:19 -q 11:28:24 chris: could interpret it that way 11:28:27 q? 11:28:27 ack dwainberg 11:28:28 q- 11:28:32 ack efelten 11:28:38 q- ifette 11:28:40 ack justin 11:29:03 justin: a lot of my question is similar to what ed is pointing out but i guess 6. 1. 2.2 is data minimization principle 11:29:05 chris is referring to the existing Working Draft / editors' draft text on financial reporting 11:29:05 +q to say that we don't want to oblige people to break the law, but we don't want contracts to allow for a hole you could drive a double-decker bus through, and the same applies to other standards. 11:29:11 q+ 11:29:17 ack next 11:29:20 justin: contracts shouldn't be dispositive 11:29:44 susanisrael: Is the principle best expressed not through contracts -- but proof of delivery of the ad is the basis? 11:29:50 ... not necessarily required that data linkable 11:29:56 susanisrael: is the principle best expressed through contracts, "proof of delivery" -- which doesn't require that data be linkable 11:29:57 ... maybe that's also something to work with? 11:30:22 q+ 11:30:24 q+ 11:30:30 susan scribing again 11:30:34 Jeff, here is a direct SEC mandate requiring data used for transacational audits be retained for 7 years: http://www.sec.gov/rules/final/33-8180.htm 11:31:09 would need to know definition of "linkable" 11:31:13 ack tl 11:31:13 tl, you wanted to say that we don't want to oblige people to break the law, but we don't want contracts to allow for a hole you could drive a double-decker bus through, and the 11:31:16 ... same applies to other standards. 11:31:16 susanisrael: question whether linkable data is required for this purpose 11:31:19 it might be a useful term 11:31:25 Shane, doesn't that SEC doc apply only to accounting firms? 11:31:31 aleecia: linkable not part of definition right now 11:31:37 q+ 11:31:41 tl: standard should not require breaking law 11:31:57 Thanks. I had lawyers review this and they did not find any evidence that Sarbannes requires online ad companies to keep data linked to users. We will have them review this. But at the moment, we don't believe that sufficient evidence has been given. 11:31:59 There are other industry standars, such as GAAP accounting standards that may come into play 11:32:02 +q 11:32:06 q+ 11:32:12 ack dwainberg 11:32:17 tl: i think compliance with contracts or other standards could make standard emptyt 11:32:22 q+ 11:32:28 I think we can incorporate the workaround that contracts DNT following the law, but that issue is somewhat orthogonal to what is reasonable retention/use for financial logging. 11:32:31 Can Tom propose how it should be written? 11:32:35 s/DNT/DNE/ 11:32:39 Ed, in this case it does - but the orgin of the records has the same retention requirement OR GREATER - looking for the exact reference now. IRS requirements not as easy to thread in this context (receipt/financial record retention laws). 11:32:46 rigo_ has joined #dnt 11:32:57 I think the standard should be written based on Do Not Track, not Do Not Collect, since these issues have nothing whatsoever to do with tracking. 11:33:03 david w: i think we are somewhere in gap between required by law but don't want big loophole permitting throwing it out 11:33:08 q? 11:33:14 q+ to respond to Ed and finding purpose limitation an option, concerned by the level of document required. 11:33:20 david w: might help to hear bad things we think might result so we can protect against them 11:33:21 q+ 11:33:28 q- later 11:33:32 hwest has joined #dnt 11:33:33 q+ to suggest a note on contracts and practices 11:34:01 aleecia: can i sum up as worry be able to have contracts do away with the standard and global protection entirely 11:34:17 aleecia: i think that is the concern rather than any specific thing 11:34:31 ack amyc 11:34:34 (want to: identify concern over billing of past/subsequent activity; billing of profile of the audience) 11:35:02 +1 to amyc 11:35:02 amy: i was going to highlight that i have an action pending re: not using the contract to circumvent the spec. so rather than trying to deal with this piecemeal 11:35:15 ack Chris_IAB 11:35:15 ...let's rely on that global requirement 11:35:20 aleecia: could be helpful 11:35:22 +1 to AmyC 11:35:31 +1 on global requirement, amyc 11:35:52 chris: in arguing vs the way the draft is today, i am trying to understand why it's a problem... 11:36:04 q? 11:36:06 ack rachel_n_thomas 11:36:08 are you trying to protect against bad actors? spec requires some level of trust 11:36:08 +1 to Amy 11:36:20 s/are you/... are you/ 11:36:41 rachel: newbie question: why legal requirements in standard 11:36:47 rachel, different discussion. 11:36:55 q+ 11:37:13 rachel: my question is why does it need to be in doc if w3c standard process and if not why not 11:37:38 q- 11:37:39 aleecia: we have said we are for law compliance and we're not going down that path so don't need to discuss this 11:37:46 aleecia: it's dead 11:38:12 q? 11:38:37 ack Chapell 11:38:37 alan: trying to use reasonable person standard, but in hypo that i have given there may be a requirement to report 11:38:39 ack lmastria-DAA 11:38:44 q+ 11:39:16 lou: we have certainly found language acceptable to broad swath of language acceptable to industry. not sure what we would want beyond that 11:39:18 jmayer has joined #dnt 11:39:24 -bryan_ 11:39:41 aleecia: so are you suggesting read daa text? was originally suggested but people may not have read recently 11:39:53 +Jonathan_Mayer 11:40:03 +q to say that this is not the DAA 11:40:32 Consumer and privacy groups were not involved with the DAA process at all. Consequently it is narrowly drawn and does not reflect the interests of users, esp on privacy. 11:40:36 aleecia: lou has action to provide text re data retention which is applicable to financial logging 11:40:39 action: luigi to provide text regarding data retention, applicable to finanical logging data 11:40:39 Created ACTION-276 - Provide text regarding data retention, applicable to finanical logging data [on Luigi Mastria - due 2012-10-10]. 11:40:55 Walter has joined #dnt 11:41:12 Hello Walter! 11:41:17 nick: i wanted to pick up on point ed was making and i think alan or david w re: what we might have concern about that is not captured in text 11:41:19 djm has joined #dnt 11:41:27 Good afternoon Jeffrey (and the rest) 11:41:40 nick: examples that have come up in thread with alan. one is billing re: past or subsequent activity 11:42:02 nick: contract where i get paid differently if someone sees ads then purchases, that might be a concern 11:42:34 q? 11:42:36 nick: other might be billing based on profile of audience. do i need to keep data re: type of people who saw ad for financial reporting? 11:42:38 ack npdoty 11:42:43 Nick. That's what the industry calls attribution, and where a user's history and actions are tracked and stored so billing can be shared with multiple parties. 11:42:44 ack rigo_ 11:42:44 rigo_, you wanted to respond to Ed and finding purpose limitation an option, concerned by the level of document required. 11:43:21 rigo: as the other contributor to epic thread with alan, i think thread is epic because it goes beyond financial logging, so generally alan is saying certain business practice required 11:43:55 we would pull in activity through financial reporting. my concern is that you create consortium, create standard then dissolve 11:44:00 q+ 11:44:04 +q 11:44:27 rigo: as soon as no requirement on business practice we open up hole in ground where other group can decide whether our docs useful or not 11:44:47 q+ 11:44:53 rigo: this is the concern. you have document here but can dismiss through consortium you create 11:45:03 alan: that is exactly what we are doing here 11:45:39 alan: if we here are prepared to say that standards bodies have to be ignored then that's what we are doing 11:45:40 ack dsinger 11:45:40 dsinger, you wanted to suggest a note on contracts and practices 11:46:22 david singer: reacting to ed's concern and reasonable man idea, and idea that contract may be a good reference but not if it's unreasonable 11:46:38 ack ifette 11:47:04 david s: a large reputable auditor should be considered but this is not a get out of jail free card 11:47:18 david: it's something that you can say in your defense 11:47:22 +q 11:47:26 add the note on the general principles (on "the data as reasonably needed, and as long as reasonably needed") – a contract or other specification might be a reference of reasonable need for the data or period, but may not suffice if its requirements are not reasonable" 11:47:26 q- 11:47:30 mike z: not sure it works but couldn't agree more 11:47:46 rigo_ has joined #dnt 11:47:50 rigo_ has joined #dnt 11:47:52 aleecia: so non-normative text for implementation 11:48:09 q? 11:48:10 aleecia: david has action item 11:48:15 -q 11:48:41 q- (I yielded my time to Mike Zaneis who couldn't get in the q) 11:48:54 action: singer to propose non-normative text regarding contracts/other specifications 11:48:54 Created ACTION-277 - Propose non-normative text regarding contracts/other specifications [on David Singer - due 2012-10-10]. 11:48:55 ian: would be useful to go through practices like conversion tracking to see how they work under standard 11:49:01 ack Chris_IAB 11:49:01 q- 11:49:06 action-277: add the note on the general principles (on "the data as reasonably needed, and as long as reasonably needed") – a contract or other specification might be a reference of reasonable need for the data or period, but may not suffice if its requirements are not reasonable" 11:49:06 ACTION-277 Propose non-normative text regarding contracts/other specifications notes added 11:49:16 David. But industry could change the standards--and the financial crisis showed the inadequacies of leading auditing firms. So I am afraid that here will still be loopholes that permit practices that override user expectations related to the permitted uses. 11:49:20 ian: there are toher things not a standard practice that would also be interesting to review 11:49:43 ian-aleecia dialogue: first party in first example 11:49:44 ebates.com is an example of Ian's use case 11:49:54 aleecia: not sure these 2 are very different 11:50:14 what does "ack" mean rigo_ ? 11:50:20 "acknowledge" 11:50:24 aleecia: we have a bunch of non-normative examples here 11:50:31 got it, thanks 11:50:38 q? 11:50:40 aleecia: actually we just have the note, don't yet have the examples 11:50:42 Zakim, close the queue 11:50:42 ok, npdoty, the speaker queue is closed 11:50:44 (In IRC only as it's historical --on 'good and bad actors'). Our restrictions are for organizations that (a) wish to claim with a straight face that they comply yet (b) will take every inch of the permissions -- will 'drive right up to the fence'. Where the fence is matters a great deal for us, for those organizations. We have much less to say about organizations whose apsirations are well within the fence, and nothing to those who will go where they want and 11:50:44 not care about the fence at all. 11:50:51 -q 11:50:56 ack dwainberg 11:50:59 It appears that the "reasonable standard" would be a rebuttable presumption so if someone was making a claim that this standard is violated then it is up to the trier of fact to determine reasonableness 11:51:05 dsinger, great point 11:51:29 The "good actors" argument has been made again and again. Not helpful. 11:51:35 david wainberg: we have already enumerated allowed uses, and beyond that good actors don't have a desire to retain the data and bad actors will ignore standard anyway 11:51:37 ack Chapell 11:52:05 alan: nick you and i were going to draw up some additional text on this--maybe first thing tomorrow? [nick yes] 11:52:06 Chapell: can volunteer, to help with Nick tomorrow 11:52:20 tlr: against which text is david s's action item 11:52:31 kj has joined #dnt 11:52:58 aleecia: i think i heard the text in action 235 does not survive, but 255 alan is suggesting he and nick try to work through so 255 goes back to open 11:53:00 reopen action-255 11:53:00 ACTION-255 Work on financial reporting text (with nick, ian) as alternative to legal requirements re-opened 11:53:16 action-235: decided not to do legal requirement for financial 11:53:16 ACTION-235 Draft middle way draft on permitted uses notes added 11:53:36 aleecia: they should have 2 weeks or so to go through and we still have editor's draft - any questions? 11:53:53 kathy joe: we have text pending re: market research and will put it in 11:54:09 aleecia: we are looking at financial right now 11:54:39 nick: can i clarify my understanding? i am not wedded to my text if we come up with something better 11:54:57 nick: hope we can get our action done in 24 hours 11:55:39 nick: does group think conversion tracking and audience profiling are permitted uses? 11:55:53 +q 11:56:18 jeff: i think it's a very good question, i put it in irc and would like to know whether attribution is a practice under what you suggested 11:56:37 zakim, reopen queue 11:56:37 ok, tlr, the speaker queue is open 11:57:04 should we have a permitted use for these things? 11:57:20 I'm OK with the first use case, npdoty, as a subcategory within reporting. 11:57:32 jonathan mayer: want to make sure i understood nick's question--is it are we assuming whether we have these things? ok i got clarification from irc 11:57:54 jonathan: my position is that you should not be able to collect whatever you want for these things 11:58:08 Unlinkable data doesn't meet the needs in this case. 11:58:57 justin, you think it would be consistent with a Do Not Track preference to track subsequent activity of an ad impression in order to bill differently? 11:59:02 mike z: we are having a discussion about permitted uses. obviously it's what david says that obviously we have permitted uses. But we are not having discussions about what type of data you need to have 11:59:08 q+ 11:59:35 aleecia: there has been growing discussion re: doing all of these if data is unlinkable but ther ehas been no support for ad industry 11:59:40 Chris_IAB: "If you look at the DAA, just to beat that drum a little bit more..." 11:59:41 q+ 11:59:51 difficult to think about exceptions in terms of non-defined terms 11:59:52 what does "unlinkable" mean? We need a definition in order to evaluate and move forward 12:00:01 mike z: we have permitted uses but ......de-identification, not either/or 12:00:07 s/Chris_IAB: "if you/mikez: "if you/ 12:00:14 Aleecia, for at least a month we have asked for a definition of "linkable" 12:00:27 Thanks Nick. 12:00:28 Susan - I'll take over scribing 12:00:28 aleecia: these permitted uses all ok if unlinkable 12:00:48 mike z: not in scope, not permitted uses but unlinkability 12:00:53 npdoty, sorry, I don't understand your text? 12:01:00 +q 12:01:10 +q 12:01:19 aleecia: but that could be a way out if we could agree that these uses ok if unlinkable, this is not out of scope 12:01:36 mike z: so is it the same type of data to be used for permitted use: 12:01:36 Mike Zaneis, please stop arguing with Aleecia and allow the queue to comment. 12:01:41 npdoty, Yes, our proposal has allowed for this from the beginning. I understand that the user is monitored across sites, but it's a very narrow set of tracking (did action occur on this one site) for a narrow purpose. 12:01:41 Mike Z: are we having a disucssion around permitted uses 12:01:52 Aleecia: we are moving off of this 12:01:53 q+ 12:02:03 -q 12:02:04 Aleecia: how many in queue 12:02:06 -q 12:02:08 aleecia: it is still within the concept of permitted uses to say you could do if unlinkable 12:02:09 Jonathan, he is still discussing his item in this queue and is allowed to work through that. 12:02:11 answer: 5 12:02:20 Nick: down to three 12:02:26 ack rachel_n_thomas 12:02:27 aleecia: pls drop from q if you think we have discussed 12:02:36 I think the unlinkability issue is relevant. 12:03:11 rachel: don't see how we could say industry has not agreed to unlinkability if we haven't found defintion, and linking of that to tracking definition 12:03:21 ack jmayer 12:03:23 -q 12:03:27 aleecia: i ahve heard that a couple of times looking for new points 12:03:29 -q 12:03:32 wq+ 12:03:35 q+ 12:03:41 ack lmastria-DAA 12:04:01 rachel_n_thomas, there is nothing new about the unlinkability proposal. 12:04:10 lou: i think we heard a couple of use cases that require data to be used in a couple of way s that are different than what is being proposed 12:04:35 lou: have trouble because we are trying to make some of these things binary 12:04:43 We have been discussing these issues for over a year. 12:04:49 Jonathan, would you agree that we've not yet come to consensus on the definition of unlinkability and until we do so its difficult to look a Permitted Uses through that lens? 12:04:56 I dropped myself from the queue. 12:05:00 lou: there are exceptions/use cases that need to be factored in 12:05:09 aleecia: we have been doing that 12:05:49 WileyS, we have a range of definitions on unlinkability. Any should be adequate. There's not a dependency there. 12:05:53 aleecia: re: financial reporting. hearing this allows businesses to prove they have done what they said they would do vs. very expansive approach 12:06:01 rigo_ has joined #dnt 12:06:12 also heard concerns about standards for limiting 12:06:25 +q 12:06:38 so what would be*reasonable*? 12:06:40 q+ 12:06:56 david wainberg: clarification: we aren't talking about unlimited retention 12:07:05 q+ 12:07:17 aleecia: so what is the way out? set period for retention? 12:07:35 q- 12:07:38 indefinite and not defined are already not allowed 12:07:41 I think we may have that text (specific to indefinite retention) in the spec already 12:07:49 Please see Nick's version 12:08:02 david wainberg: but no one wants indefinite. idea of loophole to retain data forever is kind of a fairy tale 12:08:14 aleecia: but some people think that idea has validity 12:08:21 q? 12:08:27 David Wainberg, people in your industry have been talking about 7+ year retention. 12:08:38 ack rachel_n_thomas 12:08:45 That may not be unlimited, but it's close enough. 12:08:54 Who is talking? 12:09:04 And could she decrease her volume a bit? 12:09:05 rachel: no one wants unlimited retention: want only as long as is necessary or required by law. all of industry has already commited to it 12:09:07 Rachel Tomas DAA talking 12:09:27 aleecia: in global section you will find language that is similar but not as restrictive 12:09:32 Rachel thomas DMA 12:09:34 -fielding 12:09:45 rachel: but you say there are people who don't believe it 12:09:48 Ok, would you mind asking her to decrease her volume a bit? Thanks. 12:09:52 It's not about forever. It's kept too long for when people send DNT: 1 12:10:14 aleecia: some people feel global section not ok 12:10:26 There is no individual way to do that 12:10:31 +q 12:10:33 To point out the obvious, not all companies belong to DAA. 12:10:48 WileyS has joined #DNT 12:10:56 There are two separate issues - whether a standard is enforceable, and what the standard requires. 12:10:56 rachel: if an existing self-reg framework not sufficient what is 12:11:02 I'm glad we agree on enforceability. 12:11:08 aleecia: that's what we are looking for 12:11:20 q? 12:11:36 Only if the FTC has the knowledge and political will to enforce meaningful privacy safeguards 12:11:47 q+ 12:11:55 lou: apologize that i will not offer any additional text but this is not just us based, other reg bodies not engaged 12:12:27 aleecia: queue closed 12:12:27 q? 12:12:45 -q 12:13:11 I thought the proposal was Chapell works with npdoty on language. 12:13:20 Susan, good job scribing this session 12:13:25 -q 12:13:35 aleecia: if no concrete proposal we keep one of these texts, and decide global language ok 12:13:45 q- 12:14:16 david w: does data minimization and retention section solve this if parties have to disclose retention period 12:14:25 my answer to the sufficiency of data collection by 3rd parties under DAA principles is: Do Not Collect. 12:14:27 aleecia: that is the question 12:14:33 When do you need the text proposal? 12:14:45 how many people think David Singer's proposal is not sufficient? 12:14:54 jeff: i will take it on to write some text will do in 2 weeks and will go to my privacy colleagues 12:15:12 q+ 12:15:22 The existing language in the text is broader than the DAA requirement (requires disclosure). 12:15:22 dsinger, we have proposals from Alan, from the editor's draft, from my proposal (although perhaps that won't get support) 12:15:23 jeff: are you saying default will be daa text if no alternative? then i will write it 12:15:37 q- 12:15:38 aleecia: does anyone else want to help 12:15:39 Isn't there text already from Mozilla/Stanford/EFF 12:16:02 tl: i would like to repropose the text that jonathan peter and i proposed 12:16:14 jeff: then i will withdraw my action 12:16:28 I think Chapell and I are going to find time in the next 24 hours 12:16:38 right, Chapell? 12:16:39 Can we please see recap the three options? 12:16:42 aleecia: next debugging 12:16:48 Topic: Debugging 12:16:50 scribenick: Joanne 12:17:04 thanks to susanisrael for scribing! 12:17:31 Aleecia: looking for info on debugging. 6.1.1.7 12:17:31 nick, shane, my pleasure. hope i captured it 12:17:55 ...text from Nick. 12:18:03 Nick: action 235 12:18:56 Operators MAY retain data related to a communication in a third-party context to use for identifying and repairing bugs in functionality. As described in the general requirements [reference to Minimization section], services MAY collect and retain data from DNT:1 users ONLY when reasonably necessary to identify and repair errors in functionality. Services SHOULD use graduated responses where feasible. 12:19:02 Nick: suggestions from last week's call to add non-normative text and normative text around that it is short term 12:19:10 seriously, just to be clear, industry does not retain data "forever" (what's the point of this debate then?) 12:19:12 q+ 12:19:18 +q 12:19:40 Aleecia: anything further to discuss or wait for Nick to add text. May want to discuss graduated response 12:19:41 Chris_IAB, I think the concern is about retaining data too long, rather than forever 12:19:54 To point out the obvious, not all companies belong to DAA (neither to the W3C) 12:20:22 "too long" is vague... we are saying, as long as we need it to do our legitimate business, within our rules, and as GOOD actors 12:20:37 good luck regulating bad actors-- they aren't here in Amsterdam 12:20:43 Chris_IAB, point taken. Was responding to an assertion that nothing is needed here because "the industry" is following the DAA program. 12:20:58 Isn't most debugging by first party site? 12:21:00 +q 12:21:08 Ifette: issue is if discver a bug, you want to go back and look at log data to fix it. if small percentage of users, then may need to log additional data to track and fix bug 12:21:18 ...minimal scope for fixing bug 12:21:19 I think we are debating a variety of business practices; behavioral targeting is a legitimate business practice that would be limited in part by DNT, for example 12:22:17 Allecia: we don't have minimazation for debugging and something useful to write up 12:22:35 efelten, we do however have representatives from industry representing thousands of companies 12:23:03 efelten: re: DAA not all, but many many do and the number continues to grow each day...our umbrella covers thousands of companies in the space in the US and internationally 12:23:18 Adriaanb: purpose of text was that data minzation to capture data that was necessary 12:23:24 efelten, you're correct that no group represents every single company...but the DAA - through the associations that form it - represents more than 5,000 companies. That includes all of the major players in every sector of the online advertising ecosystem. It's the most inclusive and representative group ever created in the industry, and the only one to successfully bring all of those companies on board wiht one self-regulatory standard. No small feat. 12:23:25 Aleecia: thanks for context 12:23:40 Shane: disagree with graduated response in reality 12:23:50 q+ 12:23:55 q+ 12:23:56 q+ 12:24:00 +q 12:24:01 q+ to give examples of additional information we may collect 12:24:09 ...its that information we can't predict what is going to break. there the graduated response isnt helpful 12:24:12 ack adrianba 12:24:14 ack WileyS 12:24:18 q+ 12:24:41 ...like to understand how how this works, esp for 3rd party 12:25:12 Aleecia: not all companies are the same 12:25:25 "should whenever reasonably possibe" 12:25:33 wouldn't the global principles on data minimization get us out of this box? 12:25:36 Shane: Roy has helped us understand a should be interperted as a must 12:25:57 ...isolate this as a May 12:26:21 q- 12:26:43 that's just not how debugging works 12:26:49 tlr has joined #dnt 12:26:58 Aleecia: text as it stands, Should use graduated response. then use debugging for non-DNT users. can we collect less data upfront. not all cos aren't going to do this the sames. 12:27:14 ...we suggest not using the phrase "graduated response" 12:27:48 TL: concenr we collect data now becuase something might go wrong 12:27:49 not only are not all companies the same, debugging scenarios differ. each scenario is by nature 'graduated'. 12:27:59 Aleccia: do you have something to address that 12:28:01 q+ 12:28:06 q+ 12:28:14 q+ 12:28:40 ack tl 12:29:05 TL: suggestion substantially different from graduated response 12:29:20 +q 12:29:30 ...may collect information necessary to resolve issue as long not used beyond that purpose 12:29:32 I would note that this is a new concession. The EFF/Mozilla/Stanford proposal does not allow collection of linkable data as a graduated response to debugging. 12:29:49 ...security discussion around fraud and malicous behavior 12:29:53 tl is suggesting that "once you have identified a problem," rather than ongoing graduated response 12:29:54 not applicable here 12:30:01 The latest EFF/Mozilla/Stanford text is at http://jonathanmayer.github.com/dnt-compromise/compromise-proposal.html. 12:30:06 ...will write up sentence in IRC write now 12:30:33 If you're allowing for prophylactic collection for security, what is the privacy advantage of . . . what ifette is saying now. 12:30:53 ifette: without reopening wounds...data may collected another use may now be used for this purpose 12:31:10 action: lowenthal to suggest an alternative to debugging graduated response ('once identified a problem') 12:31:10 Created ACTION-278 - Suggest an alternative to debugging graduated response ('once identified a problem') [on Thomas Lowenthal - due 2012-10-10]. 12:31:14 ...back to Shane's point, audio example 12:31:27 Justin, once you allow collection for *any* purpose, the privacy advantages of focusing on uses quickly diminish. 12:31:32 damiano has joined #dnt 12:31:50 Aleecia wants Ian to write up something 12:32:12 Aleecia: explaniation around graduated use cases and how that may work 12:32:17 jmayer, I'm just trying to envision a scenario where data collection for debugging > data collection for security. 12:32:20 q 12:32:22 q? 12:32:22 action: fette to write an explanation of graduated response and a list of explanatory use cases 12:32:22 Created ACTION-279 - Write an explanation of graduated response and a list of explanatory use cases [on Ian Fette - due 2012-10-10]. 12:32:23 ifette: say something ends up with action 12:32:27 ack ifette 12:32:27 ifette, you wanted to give examples of additional information we may collect 12:32:28 q? 12:32:33 ack lmastria-DAA 12:32:50 q- 12:33:10 lou: good practie inside a company but not sure if policy that needs to be pushed down. not sure worthy of full on conversation 12:33:13 fwagner has joined #dnt 12:33:16 ack jmayer 12:33:45 Jmayer: ask for more info about debugging in general to learn more 12:33:48 q+ 12:33:54 ack dsinger 12:34:44 Is David saying that a best practice should be read as a MUST? 12:34:46 dsinger, would a "SHOULD where feasible" work for that? 12:34:50 q+ 12:34:57 ack Chris_IAB 12:34:58 Dsinger: agree with Lou and disagree with Shane a little. Collecting data for debugging is a best practice. Document what Ian described. Collecting data for bug you are aware of to fix it then get rid of it 12:35:15 Chris_IAB: lots of cos read that as a MUST 12:35:29 npdoty, my text: "After identifying an error that impairs existing intended functionality, it is acceptable to collect additional data which may be needed to identify the cause of the error and resolve it, so long as the resolution of that error is as prompt as possible, and that the data is used only for that purpose and deleted immediately afterwards." 12:35:48 action-278: "After identifying an error that impairs existing intended functionality, it is acceptable to collect additional data which may be needed to identify the cause of the error and resolve it, so long as the resolution of that error is as prompt as possible, and that the data is used only for that purpose and deleted immediately afterwards." 12:35:48 ACTION-278 Suggest an alternative to debugging graduated response ('once identified a problem') notes added 12:35:56 Is this the "good actors" argument again? 12:35:56 maybe we need an explicit note on this 'should' explaining why it's not a must? 12:35:58 ...what harm are we trying to prevent in putting further restrictions on debugging 12:36:00 agreed - don't think this is a SHOULD here - it's an english suggestion that it would be a good idea to only collect what is needed when it is needed 12:36:16 Thanks, npdoty! 12:36:26 action-278 pending review 12:36:33 action-278 pending-review 12:37:22 Aleecia: two possilbe wasy to address Should v May. 1. change the word Should. 2. provide example when graduated response does not make sense and add as non-normative text 12:37:27 +q 12:37:41 Chris_IAB: doesn't agree with approach. should remove the word "shoud" 12:37:42 ack ksmith 12:38:03 q+ 12:38:23 q- 12:38:42 KevinS: agress with both sides. in enterprise world, graduated response is not fesible. wishes it was. however, cos are dealing with 1000's of bugs 12:39:09 If we don't use SHOULD, I'd prefer a non-normative example using graduated response instead of MAY which is irrelevant. 12:39:13 ...can;t turn on off collection. not very practical 12:39:21 +q 12:39:25 Zakim, close queue 12:39:25 ok, npdoty, the speaker queue is closed 12:39:28 Aleecia: good direction.closing queue 12:40:03 Many third parties don't collect ID cookies from opted-out users. They do debugging just fine. 12:40:23 I'm aware of several third parties that presently use graduated response on debugging. 12:40:29 They probably use IP info 12:40:48 ShaneW: made it in the queue. 3rd parties wanting to be fast and reactive. collecting more data to determine root cause not realistic. moved beyond collection v use. graduated response is not real. strongly support moving to a "may" 12:40:55 And you don't think you can rely on non-DNT users? 12:41:00 JC, that would be OK under our proposal. 12:41:19 Aleecia: alternative - don't change collection styles, but change retention 12:41:20 WileyS, one good example of such a company is Unicorn, Inc. 12:41:29 q? 12:41:39 WileyS, when you say we've moved beyond "collection v. use", which way do you mean that we've moved past it? 12:41:43 Rob is breaking up 12:41:43 ack WileyS 12:41:48 ack rvaneijk 12:41:55 Rob: quick Q. talking about debugging in a general sense or in a prod dev sense 12:42:03 Aleecia: reading text 12:42:15 +q to say "bugs" 12:42:21 ack rachel_n_thomas 12:42:22 =[ 12:42:37 i don't think a MAY is appropriate - we're definitely not saying graduated response needs permission in the spec - perhaps this is a non-normative suggestion? 12:42:49 q+ 12:42:54 Rachel_N_Thomas: it should be "may". lawyers will interpert "should" as a "must" 12:42:54 (i also don't think SHOULD is appropriate) 12:43:01 ...request it be "may" 12:43:23 Joanne, to clarify my audible comment, the 2nd point was that we have already agreed not to use the data for targeting, so I don't think this should be a debate any longer. 12:43:25 Aleecia: "should" is a strong statement and you are hearing it correctly 12:43:33 thanks Chirs 12:43:35 http://www.ietf.org/rfc/rfc2119.txt 12:43:36 Chris 12:43:40 q? 12:43:48 ... defines the keywords SHOULD, MUST, ... 12:43:59 I support Rachel's request to change "should" to "may" 12:44:01 Aleeica: action item to clean up text a bit 12:44:03 we can avoid 'should' by being clearer "the best and safest practice is to use graduated response; an un-graduated response has some risks..." 12:44:34 I do not think "may" has quite the right formal sense, either. 12:44:43 dsinger, good suggestion to make this non-normative best practice 12:44:46 +1 12:44:48 Yes, MAY is clearly wrong. 12:45:10 Aleecia: genuie differnce on graduated response. solid text on this proposal and we'll go from there 12:45:16 "best and safest practice is to use graduated response WHEN FEASIBLE"? 12:45:18 should may be should? who's on first? :) 12:45:27 ...break 15 minutes early and hoepfully we can keep ahead 12:45:32 break early, back in half an hour. 12:45:33 -johnsimpson 12:46:02 fwagner_ has joined #dnt 12:57:38 ksmith has joined #DNT 13:01:21 Simon has joined #dnt 13:08:52 dsriedel has joined #dnt 13:11:05 vincent has joined #dnt 13:17:17 are we back? 13:19:52 vinay has joined #dnt 13:19:52 Cant't telephone in. says conference is "restricted" 13:21:01 amyc has joined #dnt 13:21:14 q+ 13:21:24 zakim, open the queue 13:21:24 ok, ifette, the speaker queue is open 13:21:25 Zakim, open the queue 13:21:25 ok, npdoty, the speaker queue is open 13:21:26 scribenick tedleung 13:21:26 Aleecia: next discussion is user agent compliance 13:21:32 scribenick: tedleung 13:21:44 oops, sorry ted, I will scribe next 13:21:55 ok, that's fine 13:21:57 justin_ has joined #dnt 13:21:58 having trouble calling in. Says conference is "restricted" and won't let me in 13:21:58 13:22:00 make sure we have the universe of issues that we need to resolve 13:22:15 Zakim, who is on the phone? 13:22:15 On the phone I see Telegraaf, BrendanIAB?, Jonathan_Mayer 13:22:15 scribenick amyc 13:22:32 npdoty: amyc will scribe, not me 13:22:39 JBWeiss has joined #DNT 13:22:39 gaaah 13:22:56 me 13:22:58 Chapell has joined #DNT 13:23:03 since i am already the nick 13:23:30 reviewing section 5 on UA compliance 13:23:31 afowler has joined #dnt 13:23:52 dsinger and hober, how does Apple feel about a mandatory link in the browser UI? 13:24:00 jchester2 has joined #dnt 13:24:01 taking WileyS;s point 13:24:04 q+ 13:24:06 pionts 13:24:10 hwest has joined #dnt 13:24:12 -q 13:24:22 *raises hand* 13:24:23 q+ 13:24:27 still locked out of call 13:24:32 q+ 13:24:34 browser folks object to link to explanatory text when DNT is enabled 13:24:46 did that and am holding for an operator.... 13:24:48 ack ifette 13:25:14 +q 13:25:16 ifette in chrome, when user checks the box, more info will be given in an additional dialog as opposed to a link to a document 13:25:18 +q 13:25:33 ack dsinger 13:25:35 ifette prefer less prescription, but agree with the spirit 13:25:48 s/ifette in/ifette: in/ 13:25:48 +q 13:25:55 s/ifette prefer/ifette: prefer/ 13:25:55 The goal is a "pre-selection" option 13:26:00 still holding for an operator 13:26:00 stella has joined #dnt 13:26:21 q+ 13:26:29 dsinger don't want to stray into product / ui design. also unhappy with a MUST that says you have to explain how your product works to your users 13:26:49 q+ 13:26:52 q+ to suggest we probably want a middle ground between "a link right next to the checkbox" and "go dig in the manual" 13:27:11 Marije has joined #dnt 13:27:14 s/dsinger don't/dsinger: don't/ 13:27:18 looks like nobody plans to answer the telephone 13:27:24 ack WileyS 13:27:24 still holding 13:27:29 aleecia are you changing the MUST to SHOULD, non-normative text, or deleting? 13:27:37 dsinger any of those 13:27:50 Proposal: SHOULD provide users with information about Do Not Track. Don't specify the form of that information. 13:28:02 Why does pre- or post-selection matter, Shane? 13:28:07 One click to deselect. 13:28:10 thanks, nick. should i hang up and call back? still getting message to hold for an operator 13:28:11 WileyS the goal here is to have pre-selection means of informing the user, not a post-selection means 13:28:31 We've talked about the "balance" argument before. Many in the group don't buy it. 13:28:36 lmastria-DAA has joined #dnt 13:28:37 q? 13:28:39 q+ 13:28:41 WileyS goal was to bring balance between UA's and servers 13:28:44 mikez has joined #dnt 13:29:22 aleecia I hear no disagreement with moving away from link 13:29:24 violent agreement that we don't need language specific to a link 13:29:31 Still no operator. Am hanging up and redialing... 13:29:50 Shane, I think what you said was "Inform the user as part of enabling" was a good way to approach this 13:29:55 no one in the room in favor of link, so moving on 13:30:01 rigop has joined #dnt 13:30:13 q? 13:30:14 aleecia still have a question on MUST vs SHOULD 13:30:37 ack tl 13:31:15 tl current test builds for Firefox have a tri-state build, but we don't think people should be forced to do this. We might find a better way, this language seems restrctive 13:31:30 mischat1 has joined #dnt 13:31:37 tl very worried that this will be used to rule UA's non—compliant. 13:32:01 Nick, called back still holding for an operator to answer, 13:32:05 tl this is oriented towards mouse based GUI's. What about curl or UI less extension 13:32:15 dwainberg 13:32:19 q+ dwainberg 13:32:25 npdoty: ok 13:32:26 Tom, is that the actual text? Has anyone ever checked the box "Tell sites I want to be tracked?" 13:33:10 Nick, any ideas? 13:33:26 aleecia: if we change the MUST to SHOULD, and then give examples of best practices, give an example with no UI, and give info about DNT at the point of download, could people live with that 13:34:09 ksmith, the tri-state with explanatory link that Tom mentioned is still in our experimental builds and not in our full releases, yet. 13:34:15 cURL? Seriously Tom, what's the installed based of cURL users surfing websites? 13:34:27 WileyS: concern is over making sure people understand DNT before turning it on 13:35:42 cURL is the use case we hinging on? 13:35:50 tl: still concerned over ruling browsers non-compliant, and still feel that curl isn't covered 13:36:10 Can we have an explicit exception for Curl? 13:36:10 +q 13:36:21 tl: don't want a situation where browser vendor says "we're compliant" and site says "no, your not" 13:36:24 Nick, should I hang up or keep on "holding for an operator" 13:36:33 Shane, we're not renegotiating the working group charter. 13:36:43 Shane: what's good for the goose should be good for the gander - agree 13:36:52 There are no UX requirements on servers. 13:36:58 WileyS: we have all these rules for servers, but not allowed to have rules for UAs? 13:37:16 Nick, so hang up? 13:37:22 q+ 13:37:25 WileyS: we could work on the text so that curl could be covered 13:37:32 Marc has joined #DNT 13:37:38 jmayer, Shane is arguing within the working group charter, as he reads it 13:37:38 q- 13:37:48 three suggestions (a) 'should 13:38:00 zakim, who is on phone 13:38:00 I don't understand 'who is on phone', johnsimpson 13:38:01 Chris, the working group charter explicitly excludes UI. You know that. 13:38:33 Zakim, who is on the phone? 13:38:33 On the phone I see Telegraaf, BrendanIAB?, Jonathan_Mayer 13:38:41 jmayer, We are talking about requirements, not actual UI 13:38:44 tl: we can get around this by making a SHOULD suggestion that enough information is provided for a GUI Browser, a UI less extension, and, a program like curl. A combination of normative and non-normative text 13:38:49 three suggestions (a) 'should' (b) 'as well documented as other user choices and operations' and (c) a gentleman's agreement not to use this as a way to deem UAs non-compliant (as a compromise on the 'should') 13:39:28 WileyS: to update text 13:39:35 action: wiley to draft updated text on UA requirements; explanatory text made more general; add 'prior to selecting DNT'; add examples; change MUST to SHOULD 13:39:35 Created ACTION-280 - Draft updated text on UA requirements; explanatory text made more general; add 'prior to selecting DNT'; add examples; change MUST to SHOULD [on Shane Wiley - due 2012-10-10]. 13:39:37 Chris, if mandating a particular format (link) for information in a particular place (before clicking the DNT button) isn't a UI requirement, I don't know what is. 13:39:43 jmayer, general requirements don't = specifying UI 13:39:50 Gentleman's agreement? 13:39:58 q? 13:40:14 Jonathan, we already agreed to remove link 13:40:23 dwainberg: was going to propose review of charter statement on UI 13:40:28 I agree that, sans link, we're in scope. 13:40:38 aleecia: we are walking close to the line, but not crossing it 13:40:54 jmayer, just because you don't understand how this fits, doesn't mean it's not a valid proposal for discussion (many here, including Shane and obviously the Chairs agree that this is something to talk about) 13:41:07 Nick, should I hand up or keep holding? 13:41:08 review of charter content around UI/UE 13:41:24 q- 13:41:38 q? 13:41:49 ack jmayer 13:41:52 Shane - rather than "Prior to selecting" you might consider "Prior to enabling" or some such which would allow for Ian's suggested workflow in which turning on DNT is a 2 (or more) step process of selecting, and then accepting 13:42:02 I'll hang up now. 13:42:14 Kevin, I like that "prior to enabling" 13:42:30 Kevin, consider it borrowed/stolen :-) 13:43:41 jmayer: what about current implementation of help pages - is that enough for DNT? 13:43:44 +q 13:44:05 Jonathan, do you feel comfortable if I make an opt-in choice work in the same way? 13:44:07 WileyS: does the current implementation of Firefox and IE satisfy the test 13:44:28 Nick, please let me know when to call back. 13:45:06 thanks for your help, I don't mean to sound impatent 13:45:06 tl, what does the one sentence next to the DNT check-box mean? 13:45:23 sorry, what does it say? 13:45:23 Then I strongly object. 13:45:26 and mean? 13:45:29 @WIleyS: users have made an active and informed choice to allow or disallow DNT... ? 13:45:32 WileyS: it does not meet the text 13:46:16 q? 13:46:23 tl, what I meant to ask is, "what does that sentence next to the check-box say exactly" 13:46:27 aleecia: does anyone want to draft alternative text 13:46:28 I can draft alternative text. 13:46:49 q- 13:46:50 vinay, are you sharing on screen? 13:47:00 q? 13:47:07 ack Chapell 13:47:12 -q 13:47:13 mikez: DAA will supply alternative text 13:47:17 vinay, thanks got it. 13:47:20 Zakim, who is on the phone? 13:47:20 On the phone I see Telegraaf, BrendanIAB?, Jonathan_Mayer 13:47:28 Zakim, drop Jonathan_Mayer 13:47:28 Jonathan_Mayer is being disconnected 13:47:30 -Jonathan_Mayer 13:47:32 Zakim, drop BrendanIAB 13:47:32 BrendanIAB? is being disconnected 13:47:34 johnsimpson - sorry. didn't see your request for access. You should see her screen now 13:47:34 -BrendanIAB? 13:47:36 Zakim, drop Telegraaf 13:47:36 Telegraaf is being disconnected 13:47:36 Chris_IAB: The release implementation right now has a checkbox and the phrase "Tell websites I do not want to be tracked." 13:47:37 mischat has joined #dnt 13:47:38 Team_(dnt)06:49Z has ended 13:47:38 Attendees were +31.20.585.aaaa, Telegraaf, +1.714.852.aabb, fielding, BrendanIAB?, +1.310.292.aacc, johnsimpson, +1.425.214.aadd, bryan_, Jonathan_Mayer 13:48:14 can I dial back in now? 13:48:30 ...so now everyone's off the call... 13:48:41 tl, thanks-- what does "Tell websites I do not want to be tracked" mean? Websites = ALL websites, including first party? 13:48:42 q? 13:48:45 q? 13:48:46 *Nick is working in the phone issue 13:48:56 q? 13:49:21 let us know when to call back in 13:49:23 q+ to point out that not every UA is a browser 13:49:27 Chapell: asking drafters to supply more meat around the framework in addition to the details 13:49:27 Chris_IAB: If the box is checked, a "DNT:1" header is sent with every HTTP request. 13:49:38 Zakim, move 26631 to here 13:49:39 ok, npdoty; that matches Team_(privacy)13:48Z 13:49:54 okay phone folks, please dial back in, and use code 26631 13:49:57 sorry for the drop 13:50:02 tl, can you please answer my actual question? 13:50:06 +Jonathan_Mayer 13:50:13 Zakim, who is on the phone? 13:50:13 On the phone I see Telegraaf, Jonathan_Mayer 13:50:16 q? 13:50:23 to those who were on the phone, nick is working on getting you all back on 13:50:28 Chris_IAB: I'm not sure I understand your question? 13:50:29 tl, I get what happens 13:50:47 Chris_IAB: What confuses you? 13:50:50 ack dsinger 13:50:50 dsinger, you wanted to point out that not every UA is a browser 13:50:52 dsinger: not every UA is a browser: RSS feed readers, Mail UA's, etc 13:51:24 what I want to know, is what does Mozilla (and presumably it's users) mean by "websites" in this sentence you are using to turn on the sending of DNT:1. It's a simple question Tom. 13:51:28 mikez: can't live with suggested proposal to change MUST to SHOULD 13:51:30 q+ 13:51:33 do we use a different code? 13:51:41 q? 13:51:54 mikez, you just argued that SHOULD was effectively the same as MUST for graduated response :) 13:51:56 Mike Zaneis, there was nothing clear about that White House "agreement." One of your own member companies thought it allows a silent default. 13:51:57 q? 13:52:05 +johnsimpson 13:52:36 Chris_IAB: The recipient of any HTTP request from the browser. 13:53:15 Chris_IAB: When you check the box, Firefox tells everyone that you don't want to be tracked by sending them a signal in the form of a DNT header. 13:53:26 q? 13:53:34 tlr has joined #dnt 13:53:44 ack dsinger 13:53:46 lmastria-DAA: forthcoming language on mobile; DAA representing many in ecosystem, browser vendors will be gaining responsibility 13:53:49 justin, no, I argued that browsers should have an affirmative, non subjective obligation 13:54:42 dsinger: if we have rules about what browsers must present to users, then we will have to contemplate rules about what sites must present to users. at the moment we are silent. on bot h sides. it's a balance argument 13:54:58 issue-150? 13:54:58 ISSUE-150 -- DNT conflicts from multiple user agents -- raised 13:54:58 http://www.w3.org/2011/tracking-protection/track/issues/150 13:55:23 tl, so ALL websites then? Since ALL websites would receive the HTTP request... So by checking your box, the user is asking that ALL WEBSITES (including first party sites) not "track" them. Ok, that's clear now, thanks. Ad industry has HUGE issue with this. 13:55:24 David Singer - UAs have zero business impactful implications from DNT - having a single requirement for user disclosure prior to selecting DNT IS BALANCE. 13:55:26 jmayer, read this and then get back to me about whether our position on defaults are unclear - https://www.documentcloud.org/documents/445384-daa-commitment.html 13:55:45 mikez, take it up with Microsoft. 13:55:57 going to close 150 with: up to the browsers to resolve DNT conflicts beween multiple plugins 13:56:27 it's non-compliant to send multiple headers, and it is non-compliant to send a header that does not reflect the user's intent. do we need to say more? 13:56:27 q+ to answer matthias' questions 13:56:30 q+ 13:56:41 schunter: can browser plugins set headers? 13:57:28 q+ 13:57:40 thanks for all your help, Nick 13:57:44 q+ 13:57:48 to dsinger: DAA has specific rules on what "sites" have to tell users and how that is accomplished 13:57:54 ifette: depends on which browser. flash for example does not use the browser's network stack in some browsers. In some browsers extensions can add headers, multiple extensions can set multiple headers 13:57:56 +??P31 13:58:00 do I need to create action items for mikez and jmayer for proposals on UA requirements? 13:58:02 q+ 13:58:12 q+ 13:58:34 Zakim, ??P31 is probably me 13:58:34 +BrendanIAB?; got it 13:59:03 ack ifette 13:59:03 ifette, you wanted to answer matthias' questions and to 13:59:04 ifette: hard to enforce "there must be only 1 DNT header" 13:59:09 ack ifette 13:59:18 ALL, if you read up, tl points out that Mozilla's UI of asking websites not to track the user, applies to ALL websites (if I read it right). That seems to be why we are having the UI discussion here. 13:59:20 Zakim, who is making noise? 13:59:33 Can an out of band request to confirm the user preference help in the case of multiple DNT header request? 13:59:37 npdoty, listening for 10 seconds I could not identify any sounds 13:59:45 dsinger: HTTP only allows on instance of a given header. Therefore it's up to the browser to ensure a single header 13:59:46 q+ 13:59:46 ack dsinger 13:59:50 ack tl 13:59:52 q+ 13:59:52 can we please define "user intent"? 14:00:21 I believe it's already invalid, at the HTTP level, per discussion with fielding 14:00:22 tl: 2 dnt headers in a single request is an invalid HTTP request 14:00:28 q? 14:00:33 from HTTP: "Multiple message-header fields with the same field-name MAY be present in a message if and only if the entire field-value for that header field is defined as a comma-separated list [i.e., #(values)]. " this is not the case for the DNT header 14:01:03 +q 14:01:48 q- 14:02:02 If multiple DNT signals come in the same header, DNT:0 wins. 14:02:07 disagreement over HTTP compliance of multiple DNT headers. 14:02:21 q+ 14:02:42 Similar outcome in MSFT's TPL white/black list conflict resolution (I'm in no way supporting TPLs - they are still horrible) 14:02:59 aleecia: propose "UA may only send 1 DNT signal", "A transaction with 2 DNT headers is invalid and is equivalent to DNT unset" 14:03:02 lmastria-DAA, can you take on the action item with Mike Z.? 14:03:23 Sounds very reasonable to me. 14:03:34 q? 14:03:45 Language in the TPE about invalid syntax, that is. 14:04:45 dsinger: whoever added the 2nd DNT header is non complient 14:04:50 +q 14:05:06 tl: let's not rule pieces compliant, lets just say the request is invalid 14:05:08 I was totally onboard... until the multiple headers component. 14:05:18 If you get multiple "DNT: 1"s, that should be "DNT: 1" 14:05:23 DNT: muffins = DNT unset 14:05:35 Example: both browser and extension blindly add "DNT: 1" 14:05:36 action: dsinger to add to the TPE that at most one DNT header is permitted in any HTTP request 14:05:36 Sorry, couldn't find dsinger. You can review and register nicknames at . 14:05:43 q- 14:05:44 result of this discussion to go into TPE 14:05:45 DNT:1, DNT:0, DNT:1 = DNT: 14:05:57 action: singer to add to the TPE that at most one DNT header is permitted in any HTTP request (issue-150) 14:05:57 Created ACTION-282 - Add to the TPE that at most one DNT header is permitted in any HTTP request (issue-150) [on David Singer - due 2012-10-10]. 14:06:13 WileyS: well, not DNT:, just not DNT header. 14:06:36 Sounds good 14:06:40 I would like to volunteer to draft alternative text. 14:06:48 aleecia: if we're fine with that text, then we'll close issue-150 14:07:00 tl, fair 14:07:02 We do not have agreement on duplicate headers for ISSUE-150. 14:07:03 action-282: if this text goes through, we can close issue-150 14:07:03 ACTION-282 Add to the TPE that at most one DNT header is permitted in any HTTP request (issue-150) notes added 14:07:08 issue-153? 14:07:08 ISSUE-153 -- What are the implications on software that changes requests but does not necessarily initiate them? -- raised 14:07:08 http://www.w3.org/2011/tracking-protection/track/issues/153 14:07:17 +q 14:07:23 The statement that aleecia made is different: She concluded: If you have multiple DNT headers (no matter what they contain), the http request is invalid (and a 505 error will be returned9. 14:07:24 jmayer, David already volunteered, do you want to write an alternative? 14:07:46 my proposal with dave singer: http://lists.w3.org/Archives/Public/public-tracking/2012Aug/0001.html 14:07:46 Yes. 14:07:49 q+ 14:07:50 Matthias, that's not what we all just agreed to 14:08:00 issue-153? 14:08:00 ISSUE-153 -- What are the implications on software that changes requests but does not necessarily initiate them? -- raised 14:08:00 http://www.w3.org/2011/tracking-protection/track/issues/153 14:08:08 I think Aleecia just mis-stated it. 14:08:13 action: mayer to draft an alternative for multiple DNT headers (issue-150) 14:08:13 Created ACTION-283 - Draft an alternative for multiple DNT headers (issue-150) [on Jonathan Mayer - due 2012-10-10]. 14:08:16 q? 14:08:20 q+ 14:08:21 ack dwainberg 14:08:22 q+ 14:08:58 I don't believe there is any such encompassing piece of software. 14:09:03 q+ 14:09:12 dwainberg: i submitted some text around this to ensure that user choice is reflected 14:09:20 "A UA that allows or enables other software to alter the DNT setting MUST ensure that such alteration reflects the user's intent." 14:10:10 aleecia: we are looking at going beyond a UA. A UA or anything else that sets DNT 14:10:15 objections from the room 14:10:24 ack jeffwilson 14:10:26 rigop has joined #dnt 14:11:12 jeffwilson: referring to multiple DNT header situation, is that true in relation to the JS API? 14:11:32 dsinger: that can't happen 14:12:26 Issue - 143: requires naming the setter of the DNT signal 14:12:51 what are the objections in the room to moving towards requirements beyond the user agent? 14:13:00 q+ 14:13:19 issue-116? 14:13:19 ISSUE-116 -- How can we build a JS DOM property which doesn't allow inline JS to receive mixed signals? -- pending review 14:13:19 http://www.w3.org/2011/tracking-protection/track/issues/116 14:13:26 the objection is that whatever is behind the HTTP end-point is opaque and out of scope, and it's a waste of time to discuss it. 14:13:50 q? 14:13:55 tl: the API's that we currently have defined do not have a consistency problem. We haven't figured out how to build the API in issue-116. 14:15:03 issue-116 is pending review because I think we actually do have it resolved, and we include language noting that a JS API signal won't guarantee a future value of a DNT header, which governs 14:15:32 aleecia: AVG was the driver for issue 153 14:15:47 q? 14:15:57 dsinger: that's a poorly engineered UA 14:16:26 Marc has joined #DNT 14:16:41 Tom - I think the question I heard from Jeff (correct me if I am wrong Jeff) - if there are multiple headers (say both a DNT:1 and DNT:0), thereby making the DNT request invalid, will the JS API also get an invalid response, or will it get a 1 or 0? 14:16:47 ack Chris_IAB 14:16:48 ack Chris_IAB 14:16:56 -q 14:16:57 Chris, please stop interrupting. It's very difficult to follow. 14:17:18 ksmith, overall question about getting status of conflicting preferences, regardless of the source 14:17:31 in all such cases, should be treated as dnt not set 14:17:45 Chris_IAB: do we have a common definition of user expectation? 14:18:02 Chris, this is totally off-topic. 14:19:12 issue-153? 14:19:12 ISSUE-153 -- What are the implications on software that changes requests but does not necessarily initiate them? -- raised 14:19:12 http://www.w3.org/2011/tracking-protection/track/issues/153 14:19:15 q? 14:19:29 Chris, please stop fighting with the chair. 14:19:32 q? 14:19:32 qq 14:19:35 ack WileyS 14:19:37 amyc has joined #dnt 14:19:43 issue-143? 14:19:43 ISSUE-143 -- Activating a Tracking Preference must require explicit, informed consent from a user -- raised 14:19:43 http://www.w3.org/2011/tracking-protection/track/issues/143 14:20:03 WileyS: issue-143 is related. It is difficult for one UA to know what another UA is doing 14:20:15 ted, let me know when you want me to take over 14:20:18 scribing 14:20:32 scribenick: amyc 14:20:32 let me finish this part out 14:20:41 scribenick: tedleung 14:20:48 q+ later 14:20:52 q- 14:21:04 to WileyS: the user-agent header tells you what the user-agent is. 14:21:12 discussions about whether issue-143 should come over from TPE 14:21:16 ack tl 14:21:17 q? 14:21:18 q+ 14:21:21 dsinger, you asserted the notion of "user expectation" in your argument. I asked if there was a definition for "user expectation" (since it's so commonly used here, but in many different contexts, and can be confusing) 14:21:55 q+ 14:22:00 dsinger, not true, installed software can overwrite UA settings and make it appear as if its still coming from the UA. For example, AVG. :-) 14:22:18 since I was cut off by the chair, can someone here please point me to the definition or tell me that there is not one? 14:22:43 to WileyS: But your complaint is then to the user-agent that allowed that to happen. THAT is what terminated the HTTP transaction. 14:22:45 q? 14:22:52 to be clear, is there a definition of "user expectation"? 14:22:54 tl: Browser vendors cannot vet their add-on's. All addon's should convey user intent - different addon's ascertain intent via different mechanisms. 14:22:55 ISSUE-153? 14:22:55 ISSUE-153 -- What are the implications on software that changes requests but does not necessarily initiate them? -- raised 14:22:55 http://www.w3.org/2011/tracking-protection/track/issues/153 14:22:56 q+ 14:23:08 q+ 14:23:25 Chris_IAB, I remember at least one paper mentioned about user expection of DNT mention during princeton workshop and then some recall during santa clara meeting 14:23:32 follow up to Chris_IAB: this discussion was suspended without all of the stakeholders in the q were heard 14:23:46 WileyS, we're only allowed to use APIs in IE to store settings in Windows that any other software is allowed to use - we can't prevent other people calling them 14:23:47 vincent, can you please point to the definition in this doc? 14:23:56 tl: i have no objection to clarifying 14:23:57 ack BrendanIAB 14:24:19 vincent, that's what I'm looking for-- a definition in of "user expectation" in this document 14:24:33 The record shows who was allowed to speak in that session, and who spoke how often. 14:24:50 I think that defining "user expectation" is boiling the ocean 14:25:26 efelton, the record does not reflect that the chair cut me off before I was done making my point, because she didn't understand the point I was trying to make, and decided it was off topic 14:25:37 agree with rigo, defintion would not be stable at all and varies for each user 14:26:12 efelten, the record shows that chris and i were both in the queue and were cut off without being given the opportunity to speak to the issue raised at the time we entered the queue. TPWG is not following its own processes, let alone those of W3C's process document. 14:26:21 rigop and vincent, then we should remove it from the documents -- if we can't define something, it shouldn't be in the document (context is everything) 14:26:33 that argues against using user expectation in docs, or in justifications 14:27:15 removing myself from the queue, i want to know that there seems little point in trying to closely follow the W3C / TPWG processes if the chairs do not comport with them in their management of the meeting. 14:27:20 q- 14:27:23 Chris_IAB: it says currently: "We do not specify how tracking preference choices are offered" so this is the verbose claim of not defining anything 14:27:39 @rachel: you can paste what you want to say in IRC or post it to the mailing list. Anything decided in the meetings here will need to go through the mailinglist anyways. 14:28:17 Zakim, close queue 14:28:17 ok, npdoty, the speaker queue is closed 14:28:20 BrendanIAB: browser plugins are like a new/2nd class of intermediary, should we be viewing this through the lens of intermediary compliance? 14:28:22 ack npdoty 14:28:24 rigop and vincent- if we can't agree to talk "apples and apples" in this forum, especially with all the language barriers, then it's work product will be clouded. What's wrong with nailing down definitions of terms commonly used in the documents and in discussions/debates/arguments? 14:28:36 if we are allowed to entere the queue, we should be allowed to speak. 14:28:38 http://lists.w3.org/Archives/Public/public-tracking/2012Aug/0001.html 14:28:43 Aleecia: Intermediary compliance is a good topic for the mailing list <= me agrees 14:29:54 from HTTP 1.1 "user agent 14:29:55 The client which initiates a request. These are often browsers, editors, spiders (web-traversing robots), or other end user tools." 14:30:00 dsinger - what is the scope of "these requirements"? 14:30:07 notes that that does NOT include plug-ins 14:30:08 I think existing text already does that, but fine adding this too. 14:30:13 npdoty: submitted language around software that modifies the DNT header needing to preserve the user intent 14:30:14 hwest has joined #dnt 14:30:24 I would like to suggest best practice language. 14:30:38 q? 14:31:04 Rehashing an earlier conversation from Chris_IAB and tl in order then respond to it in IRC... [15:48] tl, thanks-- what does "Tell websites I do not want to be tracked" mean? Websites = ALL websites, including first party? [15:49] Chris_IAB: If the box is checked, a "DNT:1" header is sent with every HTTP request. [15:51] what I want to know, is what does Mozilla (and presumably it's users) mean by "websites" in this sentence 14:31:10 If software affects the DNT setting for other software, it is a best practice to clearly explain that to the user. 14:31:17 ack ifette 14:31:18 to BrendanIAB: the requirements are on all HTTP request headers. They must contain at most one DNT header which must reflect the user's intent. 14:31:35 so rigop, in response to your "We do not specify how tracking preference choices are offered", a valid user agent could say "I don't like pink unicorns" and the agent can send DNT:1? Is that acceptable to you? 14:31:49 ifette: propose not allowing other software to modify the header 14:32:08 Marije has joined #dnt 14:32:09 *hand up* 14:32:17 Chris_IAB: sure, have you seen the opera bork browser? It is valid 14:32:17 dsinger: propose the null proposal 14:32:20 to ifette: but that again is a rule for the user-agent author to write. don't modify existing headers 14:32:21 [15:55] tl, so ALL websites then? Since ALL websites would receive the HTTP request... So by checking your box, the user is asking that ALL WEBSITES (including first party sites) not "track" them. Ok, that's clear now, thanks. Ad industry has HUGE issue with this. 14:32:24 +1 David Singer 14:32:43 Chris_IAB: normal language can also be used to tell nonsense 14:32:43 jmayer: see my IRC proposal 14:32:58 action: fette to propose barring other software from altering a DNT signal if the browser already set it 14:32:58 Created ACTION-284 - Propose barring other software from altering a DNT signal if the browser already set it [on Ian Fette - due 2012-10-10]. 14:33:34 Want to reiterate that this is a huge issue for the entire ad industry. I cannot object more strenuously to tl's understanding that ALL websites would be required not to track (including first party) when box is checked. 14:33:35 q? 14:33:39 ack jmayer 14:33:40 amyc: over to you 14:33:44 q? 14:33:48 scribenick: amyc 14:33:49 action: mayer to propose non-normative text to add on to action-231 (with nick) 14:33:49 Created ACTION-285 - Propose non-normative text to add on to action-231 (with nick) [on Jonathan Mayer - due 2012-10-10]. 14:34:06 Aleecia: quite a thread on unlinkability, disheartening 14:34:22 ... have two world views on unlinkable 14:34:28 jeffwilson, dwainberg, Chapell, Marc -- if you have more comments on 153 but not new action items, maybe you can follow up with us over coffee or dinner? 14:34:29 q? 14:34:41 Topic: Unlinkability 14:34:48 ... as a group, haven't talked about Shane's proposal; EFF proposal was reviewed in DC 14:34:51 q= 14:35:03 Zakim, open the queue 14:35:03 ok, npdoty, the speaker queue is open 14:35:05 q= 14:35:10 queue= 14:35:25 scribenick: amyc 14:35:43 Shane: end goal is that resulting data (not raw form) then take unique identifiers like cookies and IP addresses 14:35:53 to Rachel: we should chat about why the DNT header is sent to everyone, even though what it means varies depending on whether you are first or third party 14:36:06 ... undergo one way hash, so that resulting info cannot be linked back to original production idenfiers 14:36:09 +q 14:36:14 q+ 14:36:16 +q 14:36:30 +q 14:36:40 ... notes that there are technical discussions about hashing, but end goal is that info cannot be used directly to link back to production system 14:37:03 ... not meant to say that can't be associated to real world user or browser, wouldn't affect 14:37:16 q+ clarifying question to shane 14:37:23 q+ to ask clarifying question to shane 14:37:33 ... 32 byte idenfiier, one way hash, could rotate 14:37:50 when you say "not tied to a production system" i assume what you mean is being able to link back to a given user or computer? 14:37:55 ... result may be longer or shorter in byte length, but would not link back to original idenfier 14:38:09 +q 14:38:19 Aleecia: two options in text 3.6.1 and 3.6.2 14:38:45 ... goes to queue, but need to end at 545 14:38:51 q+ 14:38:57 ... please keep civil 14:39:15 ack jmayer 14:39:26 q+ 14:39:50 jmayer: what exactly does unlinkability mean? what should not be linked after hash? 14:40:09 ... user ID from data, or ability to connect various actions 14:40:27 rigop, are you serious that if the UI of a DNT UA says "I don't like pink unicorns", you would consider this a valid UI for the W3C? I want to ensure I got this right... 14:40:57 ... which would be unlinking with respect to browser, but questions whether one way hash would make more difficult to connect to original source of data 14:41:14 ... but would retain linkability across events or sessions 14:41:49 ... seems like tension between one way hashes OK, but saying that OK to connect across sessions 14:42:17 Shane: connection back to device or browser, looking at maintaining longitudinal connection 14:42:31 ... major goal is delinking from production sets 14:42:45 q+ 14:42:49 q+ 14:43:04 q+ 14:43:04 Can I follow up on that with another technical clarifying question? 14:43:06 ... so could not affect user in real world, but could be used to maintain value of data 14:43:42 ... differences between option one and option two, difference in granularity, but maintain value of data while addressing harms 14:44:30 Aleecia: how does this fit into document, this is data that is outside of DNT, anyone can use without worrying about permitted use 14:44:38 ... not replacement for actually reading doc 14:44:48 while there may be several differences between Option 1 and Option 2, the key question seems to be whether the data can't be re-linked, or isn't linkable back to the production identifier? 14:44:57 ack dtauerbach 14:45:24 rigop, just want to make sure you don't miss my question (above): are you serious that if the UI of a DNT UA says "I don't like pink unicorns", you would consider this a valid UI for the W3C? I want to ensure I got this right... 14:45:37 dtauerbach: two separate definitions, what Shane is describing requires prior state, this is more like hashed data, need common sense definition 14:46:00 q? 14:46:03 ack efelten 14:46:05 Aleecia: option one should be named something else? 14:46:33 efelten: linkability back to original identifier vs to user or device, need to understand distinction 14:46:50 Chris: My take is that the preference collected via the "pink unicorn" UI (if used alone) would not satisfy the requirement that the resulting DNT values are reflecting the (unbiased) user preference. 14:47:06 Shane, why wouldn't the 'should' in the last sentence be a 'MUST' 14:47:23 note: "Chris" meant "response to chris" not anything chris said. 14:47:27 Shane: one is unlinkable to production systems, so that even if using unique cookie, when you hash then info could not be associated with that user in real world 14:47:36 q+ aleecia 14:47:37 s/Chris: My/Chris, My/ 14:47:48 Shane: is this a technical claim you're making? 14:47:53 ... but could be used longitudinally across data set, identifiers simply don't relate back to real world 14:47:54 ack tl 14:48:02 s/Shane: is/Shane, is/ 14:48:05 Because one-way hashing does not provide the technical properties you described. 14:48:09 Jonathan, I'm not sure I understand your question 14:48:10 …wonders if what we want is data that is detached from any specific user, user-agent, or device. maybe we are using the wrong term of art? 14:48:25 tl: thinks that all of the privacy folks are thinking about academic definition of unlinkable 14:48:28 ack ifette 14:48:28 ifette, you wanted to ask clarifying question to shane 14:48:29 Are you claiming that one-way hashing prevents associating production data with hashed data? 14:48:49 tl, so is your concern just with the name "unlinkable"? 14:49:00 q+ 14:49:00 ifette: even in academic community it is difficult to determine or define whether data set is re identifiable 14:49:45 Question for clarification for Dan. Was Dan proposing that neither options are appropriate or that 3.6.1 is the right option? I simply didn't follow. 14:49:47 ... this is unsolved problem, so best thing that we can do is de-identify to do one way hash, not a strict guarantee that there is no technical way to re-associate 14:50:09 Aleecia: dumping cookies is not part of what Shane is associated 14:50:12 q- 14:50:19 ... where dumping is equivalent of deletion 14:50:46 Jonathan, if you look at the larger definition there is a further restriction to NOT attempt to link unlinked data with linkable data. There will always be ways to break encryption given the appropriate tools and access. If I give you a list of data records (breach/gov't request) that has been "unlinked" you, with only that data, be able to re-identify that data. 14:51:04 It would be useful to have some non-normative text giving examples that we can agree are still linkable, and some that are definitely unsinkable. 14:51:05 npdoty, point of clarification please: how do we (DAA and DMA) open an action item? 14:51:06 would not be able 14:51:06 npdoty, a new action item? 14:51:12 rvaneijk: if goal is to de-anonymize so that law does not apply, will be difficult case for NL and EU, Second proposal addresses technical and organizational measures 14:51:19 ifette, the definitions suggest certain levels of confidence or use of legal means to prevent re-identifiability; but it seems like Shane's intent is not to prevent re-identifiability 14:51:20 ed, "unsinkable" - LOL 14:51:36 npdoty, that's a fair assessment 14:51:38 Shane, did you see my question about "should" vs "must"? 14:51:53 ... may still be considered personal data, also concerned about safeguards for further uses 14:52:01 rigop has joined #dnt 14:52:04 npdoty, i think all we can do is say "de-identify the data you have collected" e.g. one-way salted hash of cookies, not "guarantee the data could not be reidentified in any manner" 14:52:05 John, I didn't - speaking so unable to watch IRC at the same time - what is your question? 14:52:27 i understood shane to be discussing preventing the likelihood but not the absolute possibility of de-identification. 14:52:31 ... if go with option one, still need to comply with laws. but in option two, then that would not be personal info 14:52:34 Why not a "Must" in item 3 instead os "should"? 14:52:35 Ian, I think that's what the "reasonable" in some definitions is trying to address 14:52:35 Susan - spot on 14:52:45 Chris_IAB, we can open action items for any DAA or DMA folks that are listed as participants in the group (currently Luigi, Rachel, respectively) 14:53:01 Aleecia: what would work in EU? 14:53:28 Chris_IAB, which we can do from IRC or from https://www.w3.org/2011/tracking-protection/track/actions/new 14:53:38 if there is no solution, how can we meet the standard? 14:53:41 q? 14:53:42 npdogy and rachel_n_thomas, thank you Nick. 14:53:58 Chris_IAB, I suggested that we open an action on Luigi for something that Mike Z volunteered to do 14:53:59 q? 14:54:02 ack rvaneijk 14:54:04 rvaneijk: not really a solved problem in academia, process of anonymization still tricky, concerned about "reasonable" not being prescriptive, doesn't have solution 14:54:05 ack lmastria-DAA 14:54:18 Shane, Why not a "Must" in item 3 instead of "should"? 14:54:35 lmastria: tend to look at one issue at a time, would fall under many different regimes 14:54:52 ... additional legal protections 14:55:13 ... thinks that one way hash is a solution, but don't think that would work for everyone 14:55:13 q+ 14:55:25 option 1: data protection law applies, also for permitted uses: ie companies still need a legal ground. option 2: if done correctly, we are not dealing with (in)direct identifyable data anymore. 14:55:45 ... plenty of industries where much more senstive data is de-identified and kept for long periods of time (medical, education) 14:56:14 ... no harms come out of those, don't discount, simply because of fear of unknown, needs to be practical solvable solution 14:56:34 ... DAA has specific text on de-identified data, could draft up and send along 14:56:56 ... companies working on indirect identification, would boil the ocean 14:57:14 John, SHOULD due to the level of detail required to find the balance between not giving too many details to help bad guys figure out what you're doing and enough information for you and others to understand our approach generally. 14:57:15 Aleecia: not talking about security, separate issue 14:57:23 q? 14:57:25 q+ 14:57:57 vincent: hashing cookies and IP addresses, what about info in referral, personal info in referrer 14:58:09 action: luigi to propose DAA text regarding de-identification (for unlinkability discussion) 14:58:09 Created ACTION-286 - Propose DAA text regarding de-identification (for unlinkability discussion) [on Luigi Mastria - due 2012-10-10]. 14:58:50 shane: at yahoo look at suspected PII in headers, and transforms, websites shouldn't be sending PII in referrers 14:59:12 ... best efforts should be made 14:59:15 ack vincent 14:59:20 Aleecia: can text reflect that? 14:59:32 Shane: previously drafted non normative text 14:59:40 John, remember SHOULD in this case means you should do it unless you have a good reason not to 15:00:22 action: west to update unlinkable with non-normative text from Shane 15:00:22 Created ACTION-288 - Update unlinkable with non-normative text from Shane [on Heather West - due 2012-10-10]. 15:00:24 q? 15:00:26 Shane, seems to me ought to be a MUST on transparency, because you have the qualifier "to the extent it will not provide confidential details... 15:00:28 ack jmayer 15:00:31 rigop has joined #dnt 15:01:00 jmayer: first, with response to technical claim that one way hash would mean unusable in production systems, not accurate 15:01:14 that would be why you drop the key 15:01:14 ... as long as still have key, just one operation to reassociate 15:01:31 ... could have dictionary list of hash matches 15:01:34 what jonathan is describing is not at all what shane/others are describing 15:01:50 ifette, you can't drop the key if you're doing longitudinal research 15:01:53 ... second, likes DAA language 15:01:56 ifette, right? 15:02:01 ... prefers FTC language 15:02:06 justin, that would depend on the timeperiod 15:02:28 e.g. are you hashing with a salt you drop after 1 day, or do you do this on a 90-day or N-day period 15:03:01 q? 15:03:02 ifette, sure, but WileyS's language doesn't seem to envision a time limitation 15:03:10 lmastria: if not going down harms road, let's not go down path of speculating 15:03:12 I didn't understand that last comment. 15:03:37 aleecia: not as chair, other than data breach, is there a big difference practically between these two? 15:04:01 q? 15:04:02 ... just hard, as opposed to k-anon option 15:04:06 q+ 15:04:14 ack aleecia 15:04:25 ... may be cross-linked data, but a problem in both options 15:04:35 +q 15:04:38 The second part of my comment: I don't understand how Shane's proposal aligns with the DAA text. It seems like a much more rigorous requirement than what Shane's proposed. 15:04:50 Shane: primary difference is that option 2 forces much stronger anon end state 15:05:02 not 1024 buckets 15:05:05 100M / 1024 15:05:06 ... but it limits usefulness of data 15:05:07 +q to say that there's a big difference in secondary use risks which aren't leaks 15:05:08 (approx) 15:05:39 ... correct that you could look back after hashing, but spec says that you can't do that 15:06:27 .. focus on one is breaking conneciton with prod data, the focus on two is significant less value 15:06:27 Data breach is far from the only concern. 15:06:41 Access or use by anyone. 15:06:47 Aleecia: if change keys, then also losing value? 15:06:54 I imagine government access, for example, weighs on the mind of some. 15:07:14 Shane: yes, matters when you hash, when you rotate hash, each time boundary will impact how you use info and value going forward 15:07:18 The govt can get the data anyway 15:07:36 Aleecia: does anyone disagree with Shane's description? 15:07:40 +q 15:07:50 ifette: how different are these to implement, or risk to user? 15:08:07 I beleive using public comments that are posted on webstie, it is is enough to deanonymize the browsing history of someone 15:08:25 ... not much difference in risk to user 15:08:26 I disagree. 15:08:38 Aleecia: so other than breach, no difference to users? 15:08:55 tl: many types of data sharing and disclosure, outside of breach 15:09:16 ... for example, company is acquired or sharing info with affiliates 15:09:17 q+ 15:09:44 ... really, this is transofrming data, as opposed to k-anon 15:10:03 Vincent, fair - how often has that occurred in the real-world with 3rd party ad serving data? 15:10:05 rigop has joined #dnt 15:10:05 ack dtauerbach 15:10:12 dtauerbach: need to have a real standard, rather than some sort of hash 15:10:17 q+ rigo 15:10:19 ... option two makes more sense 15:10:43 Aleecia: can we adjust to make more acceptable, need to have complete understanding 15:10:49 ack tl 15:10:49 tl, you wanted to say that there's a big difference in secondary use risks which aren't leaks 15:11:03 ... may be ways to address breach and other concerns with option one 15:11:12 ack kj 15:11:34 kj: concerned about going into technical implementatin, technology will change quickly 15:11:57 KevinT has joined #dnt 15:11:58 ... DPR has proportionality and balance of interest, we should take that into account 15:12:15 ... supports research, while being careful about security and linkability 15:12:26 rigop has joined #dnt 15:12:26 the text Kathy is putting forward applies to SCIENTIFIC RESEARCH, not commercially data use 15:12:46 WileyS, as far as I am aware of, there has not been any concrete example, but someone inside the ad-network could easily do it... and I would still not be aware of it 15:12:52 Aleecia: we should try to avoid specific text, focus on outcomes 15:12:55 ack amyc 15:12:58 scribenick: npdoty 15:13:02 q+ 15:13:03 Kathy IS talking about research - "market research" 15:13:16 amyc: echo Shane and Kathy in proportionality and value of the data 15:13:45 ... for a voluntary standard that is not required to implement, please implement this (even though your competitors might not), want to entice as many as possible to implement 15:13:54 +q 15:14:12 ... language in there about protecting intellectual property 15:14:14 let's get into the nitty gritty of how the data is valuable 15:14:31 ... value of the data in improvement of research 15:14:32 thanks Nick 15:14:36 The "we want broad implementation" argument has very limited force. Taken to the limit, we would just declare Do Not Track a nullity. There are countervailing considerations, of course. 15:14:36 scribenick: amyc 15:14:48 Aleecia: anything else? 15:14:51 ack efelten 15:15:08 efelten: lauren gelman may propose language? 15:15:11 is the data valuable because you want to retroactively bucket the data? 15:15:14 aleecia: not a member or IE 15:15:19 or do you want to use it in a non-bucketed way? 15:15:32 q+ 15:15:36 efelten: thread went a lot of places, but didn't answer my questions 15:15:48 q+ 15:15:49 ... perhaps shane and I should chat 15:16:01 Shane: thought I had answered, happy to follow up 15:16:08 ack jmayer 15:16:10 Aleecia: suggests doing this in real time 15:16:36 jmayer: wanted to get more information about what the business uses for this info are 15:16:39 +Jonathan 15:17:01 ... what are business uses? 15:17:19 ... and do they overlap with other permitted uses 15:17:40 Jmayer - to the extent that industry shares more about uses of this data, would you be willing to share you insights re: the harms you are trying to prevent? 15:17:46 Shane: simplest form of reporting, product improvement, review through lens of being able to run reports 15:17:47 "able to run reports" -> bucketed data 15:18:03 so 1024-unlinkable 15:18:04 Chapell, sure, take a look at my paper "Third-Party Web Tracking: Policy and Technology." 15:18:05 should be no problem 15:18:20 ... can't specify all, so really want to make sure that busienss can understand its operations better 15:18:20 do you need raw data ever? 15:18:22 for what? 15:18:30 does every example in that paper address issues that are in the scope of DNT? 15:18:37 ... want to remove from production use 15:18:52 Chapell, I believe so. Read it and get back to me. 15:19:12 Will do 15:19:13 Aleecia: what if option two is DAA, and option one is data transformation, with retention period and new permitted uses 15:19:15 link? 15:19:26 ... who hates it 15:19:52 dtauerbach, I think it depends on exactly what kind of reporting you would want to do -- some of it might require longitudinal linkable data 15:19:53 q? 15:19:55 ... Rob, Jeff and Shane don't seem to like, unlikely to get traction 15:19:57 ack susanisrael 15:20:24 you can link data into buckets 15:20:39 npdoty, can you give a concrete example? 15:20:40 susanisrael: the kind of standard that Shane suggests, may not need to be same level of debate about permitted uses, if agreement that level of protection is adequate 15:20:43 it can be hypothetical 15:21:04 Jmayer: thanks, but found it.... to be clear, are you referring to section THIRD-PARTY WEB TRACKING POLICY III. PRIVACY PROBLEMS? 15:21:06 Aleecia: can we get economic value of data, while not providing get out of jail free card 15:21:22 ack rigo 15:21:35 Chapell, sounds right. 15:21:39 amyc, i would love an example of the economic value 15:21:43 Rigo: two suggestions, this is pseudonymity discussion that Ruud raises 15:22:10 Chapell, presently multitasking. Always glad to chat about my academic research offline. 15:22:12 ... warning againt fog (in) mess 15:22:57 ... we need to think about data breach 15:23:11 ... with option one, concerned about sharing with others 15:23:37 Jmayer: Ok thanks. would love to discuss at some point. 15:23:43 .... "Each particular scenario may have a low probability of occurring. But the chance of some scenarios occurring is substantial, especially when considered over time and across many companies." 15:23:47 q+ 15:23:54 ... maybe with publsihing, would look at k-anon for external use 15:24:18 Shane: maybe sharing outside of service provider would require additional anon, as opposed to external sharing 15:24:49 Aleecia: could be direction to consider, where we have option one for internal use plus service provider 15:25:01 ...."Third, an action that harms the consumer. The action could be, for example, publication, a less favorable offer, denial of a benefit, or termination of employment. Last, a particular harm that is inflicted. The harm might be physical, psychological, or economic." 15:25:04 ... then option two for external 15:25:06 q? 15:25:16 q- ifette 15:25:24 ack Simon 15:25:41 Simon: staring at two options, not that far apart 15:25:54 ... commercially reasonably but not less than 1024 15:26:01 .... I would like to discuss how these issues are being addressed by the W3C DNT effort AND why they are not addressed by the current industry standards. 15:26:10 ..... JMayer: I welcome the discussion. Thanks. 15:26:34 Aleecia: Shane would reject 15:26:54 Shane: reduce viable buckets of data to very small number 15:27:20 .. by using by k-anon 1024 bar 15:27:38 ... and reduces value of data 15:27:56 Aleecia: for some companies, may be case by case as to value 15:28:11 ack dtauerbach 15:28:16 stella has joined #dnt 15:28:30 dtauerbach: give me example of report, unless the report is by request 15:28:55 schunter has joined #dnt 15:29:06 Shane: thousands of employees, billions of records daily, unrealistic 15:29:19 ... would never be able to look back 15:30:02 Aleecia: k-anon would require that you never have a bucket of fewer than 1024 15:30:21 +q 15:30:29 Shane: can't build tables on fly, doesn;t make sense in real business 15:30:40 You don't have to predetermine reports. You can build an unlinkable dataset, then use that to generate reports. 15:31:03 none of this is in the queue... 15:31:07 q? 15:31:28 lmastria: number of assumptions going unchallenged 15:31:52 ... no one gives data to man on street, many professionals and contracts and security 15:32:20 ... can't pretend that we can preconceive buckets of data 15:32:22 ack lmastria-DAA 15:32:27 ... don't want to prevent innovation 15:33:04 Lou. I have to disagree. Online ad industry in US--despite having privacy employees-are continually expanding their data collection practices. Innovation is about more data mining and invading privacy of users. We have not seen much on promoting innovation to protect privacy in an online ad context. 15:33:34 Rigo: put into one bucket for internal use data 15:33:59 q+ 15:34:09 dtauerbach: don't need to detemine in advance 15:34:20 ... can come up with tables on fly, add to pipeline 15:34:29 ... still with k-anon 15:34:32 +q 15:34:56 ack rachel_n_thomas 15:34:57 rachel: wants to point out that DAA sent letter to W3C 15:35:08 Why is Rachel talking about the DAA letter to the W3C leadership? We're talking about technical issues related to data linkability. 15:35:43 ... wants to post letter, this is not appropriate process or means to move forward 15:35:58 ... should not try to refine industry practice where there is already a consensus 15:36:00 q+ 15:36:04 "The working group shouldn't try to refine industry practice where there isn't already widespread consensus..." 15:36:11 ... out of scope of w3c mission of developing web techology 15:36:36 ... looks like w3c thinking about more policy issues, let's focus on technology rather than policy 15:36:41 q+ 15:36:57 Aleecia: will take process discussion offline 15:37:13 DAA letter to W3C https://www.aboutads.info/blog/press-release-daa-issues-open-letter-w3c-actions-working-group-threaten-ad-supported-internet 15:37:25 tl: don't need to know in advance what you are doing 15:37:46 ... just need to collect it correctly, then reports wouldn't go back to data 15:37:56 stella has joined #dnt 15:37:56 q? 15:38:02 ack tl 15:38:08 Zakim, close the queue 15:38:08 ok, npdoty, the speaker queue is closed 15:38:30 ack WileyS 15:38:33 The DAA/IAB admitted last week in DC that they did not test itse self-regulatory system using the icon. They did not test, for example, how its system interacts with the optimized system designed to process users to conversion, inc. data collection. I ask again for the IAB/US and DAA to submit to this list any research any any outside independent research they used to establish its so-called privacy system. 15:38:56 Shane fifteen minutes ago: this can't be done. Shane now: OK, it can be done. But it's hard. 15:39:00 Shane: not disputing philosphically that this can be done, Google is large company, but speaking from own experience buidling data tables on the fly is incredibly expensive, current software packeage don't offer 15:39:09 ... so likely no one would implement 15:39:34 jeff I was at the meeting you are describing and i did not hear the dialogue quite that way. 15:39:36 q? 15:39:37 ditto shane 15:39:40 q? 15:39:49 ack dwainberg 15:40:22 jchester2 DAA admitted no such thing with regarding to testing the icon. An unrelated party made that assertion, when in reality TRUSTe did significant testing on the icon with extremely positive findings. 15:40:32 ditto dwainberg 15:40:37 dwainberg: dpn't want to adopt standard that disadvantages small companies 15:40:38 q? 15:41:05 npdoty: w3c process questions, happy to follow up 15:41:42 Aleecia: will submit DAA text, see whether everyone can live with this 15:41:50 from DAA letter: • DAA expressed strong opposition to the current posturing of the W3C’s effort to establish a “do-not-track” standard. 15:41:53 ... Shane making some modifications 15:41:57 IAB could not say any research was done. It referred to World Privacy Forum, which its researcher said wasn't a study. Provide the Evidon research and its design, and the outside review it undertook. 15:41:58 • This agenda states, “We will now accept that many issues cannot be resolved in a way that does not raise any objections.”1 o TPWG states that the goal of this meeting is to come to a decision on a standard through the following non-consensus process: “we will put more focus on creating viable alternative texts as input for our decision procedure where the chairs call for objections and then analyze the resulting input to come to a conclusion th 15:42:05 • This is not an appropriate process or means for moving forward on decisions that could affect the future of an entire online ecosystem. o A non-consensus decision by the TPWG, an organization of unelected individuals who do not represent the interests of all stakeholders, should not be substituted for the consensus judgment of the participants given the impact such a decision could have on consumers, commerce, national and global economies, jobs, an 15:42:09 s/will submit/Lou will submit/ 15:42:13 • The TPWG should not try to redefine established industry practice and consumer expectations in an area where widespread consensus already exists. 15:42:17 Nick - I don't see an action item for me, but I was assigned to edit section 3.5.2 slightly. Did you get that? Or am I looking in the wrong place? 15:42:18 ... will contine when we see texts 15:42:18 • The DAA has developed a comprehensive standard governing web-viewing data practices. 15:42:23 • To my knowledge, W3C is a technology standards organization that has traditionally focused on developing consensus around specifications and guidelines for web technologies. The W3C’s recent foray into setting public policy standards is outside the o The public interest is not served by this expansion of the W3C’s efforts, especially because the method by which the W3C is seeking to achieve results is not through consensus and gives all stakehold 15:42:25 -BrendanIAB? 15:42:31 • The TPWG should remain true to the W3C’s mission of developing consensus around specifications for web technologies and o should not seek to expand its scope into public policy issues that would be better addressed in other policy forums that have the experience and qualifications to evaluate these issues. 15:42:33 ksmith, I may have missed that one, what's the action? 15:42:35 • The DAA strongly believes that the W3C should not undertake further forays into privacy policy issues. o We ask that the W3C leave these areas to the established industry and policy bodies that have already been successfully addressing them.” 15:42:37 adjourned 15:42:52 Thank you Aleecia! 15:43:12 -Jonathan_Mayer 15:43:23 to addresss the requirement for a privacy policy link for 1st parties 15:43:29 Anyone headed to Centraal, Rob and I are headed straight there to get checked in first 15:43:33 in widget scenarios 15:44:05 -johnsimpson 15:44:23 johnsimpson has left #dnt 15:44:46 +??P1 15:44:52 Zakim, ??P1 is probably me 15:44:52 +BrendanIAB?; got it 15:45:07 -BrendanIAB? 15:45:17 -Telegraaf 15:45:18 Team_(privacy)13:48Z has ended 15:45:18 Attendees were Telegraaf, Jonathan_Mayer, johnsimpson, BrendanIAB? 15:45:24 rrsagent, draft minutes 15:45:24 I have made the request to generate http://www.w3.org/2012/10/03-dnt-minutes.html npdoty 15:48:10 rrsagent, bye 15:48:10 I see 27 open action items saved in http://www.w3.org/2012/10/03-dnt-actions.rdf : 15:48:10 ACTION: Colando to draft updated 'share' definition to avoid concerns (with rigo and chris-p) [1] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T08-45-39 15:48:10 ACTION: Wiley to update text in 3.8.1 regarding bringing into compliance, not just deletion [2] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T08-47-12 15:48:10 ACTION: fette to suggest retention related to a timed grace period (with dwainberg) [3] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T08-50-28 15:48:10 ACTION: rachel to propose first/third party definitions from existing DAA documents [4] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-11-51 15:48:10 ACTION: dsinger to edit the TPE document to make sure that the final definition of parties is in sync across the two specifications [5] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-13-36 15:48:10 ACTION: dsinger to edit the TPE document to make sure that the final definition of parties is in sync across the two specifications [6] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-14-44 15:48:10 ACTION: singer to edit the TPE document to make sure that the final definition of parties is in sync across the two specifications [7] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-15-23 15:48:10 ACTION: brookman to update 3.5.2 to expand beyond "Web site" [8] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-21-54 15:48:10 ACTION: rachel to propose existing DAA text for service providers [9] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-39-20 15:48:10 ACTION: west to update service provider language to apply to first and third parties [10] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-41-24-1 15:48:10 ACTION: roy Fielding to propose text for party and outsourcing definitions [11] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-45-54 15:48:10 ACTION: robsherman to draft text on first party [12] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-46-28 15:48:10 ACTION: sherman to propose text regarding multiple first parties [13] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-46-53 15:48:10 ACTION: wiley to propose non-normative text on service providers to clarify "independent use" (with rvaneijk) [14] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T09-51-30 15:48:10 ACTION: doty to update middle way proposals to avoid relying on "tracking" [15] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T11-26-21 15:48:10 ACTION: luigi to provide text regarding data retention, applicable to finanical logging data [16] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T11-40-39 15:48:10 ACTION: singer to propose non-normative text regarding contracts/other specifications [17] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T11-48-54 15:48:10 ACTION: lowenthal to suggest an alternative to debugging graduated response ('once identified a problem') [18] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T12-31-10 15:48:10 ACTION: fette to write an explanation of graduated response and a list of explanatory use cases [19] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T12-32-22-1 15:48:10 ACTION: wiley to draft updated text on UA requirements; explanatory text made more general; add 'prior to selecting DNT'; add examples; change MUST to SHOULD [20] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T13-39-35 15:48:10 ACTION: dsinger to add to the TPE that at most one DNT header is permitted in any HTTP request [21] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T14-05-36 15:48:10 ACTION: singer to add to the TPE that at most one DNT header is permitted in any HTTP request (issue-150) [22] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T14-05-57 15:48:10 ACTION: mayer to draft an alternative for multiple DNT headers (issue-150) [23] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T14-08-13 15:48:10 ACTION: fette to propose barring other software from altering a DNT signal if the browser already set it [24] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T14-32-58 15:48:10 ACTION: mayer to propose non-normative text to add on to action-231 (with nick) [25] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T14-33-49 15:48:10 ACTION: luigi to propose DAA text regarding de-identification (for unlinkability discussion) [26] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T14-58-09 15:48:10 ACTION: west to update unlinkable with non-normative text from Shane [27] 15:48:10 recorded in http://www.w3.org/2012/10/03-dnt-irc#T15-00-22 15:48:12 Zakim, bye 15:48:12 Zakim has left #dnt