14:11:52 RRSAgent has joined #EPC 14:11:52 logging to https://www.w3.org/2020/10/28-EPC-irc 14:11:55 RRSAgent, make logs Public 14:11:56 Meeting: European Publishers Council – Future of the Open Web 14:13:50 bkardell has joined #EPC 14:57:10 gendler has joined #EPC 15:01:07 kris_chapman_ has joined #EPC 15:01:45 asoltani has joined #EPC 15:01:49 robin has joined #EPC 15:01:49 present+ 15:01:50 weiler has joined #EPC 15:01:52 pchampin has joined #epc 15:02:03 present+ 15:02:10 jrosewell has joined #EPC 15:02:16 jra has joined #EPC 15:02:19 present+ 15:02:32 Bleparmentier has joined #EPC 15:02:33 cwilso has joined #EPC 15:02:35 present+ 15:02:38 present+ 15:02:41 JacquesHansROCHE has joined #EPC 15:02:48 dmarti has joined #EPC 15:02:56 igarashi__ has joined #EPC 15:03:06 present+ 15:03:13 present+ 15:03:16 AramZS has joined #EPC 15:03:20 present+ 15:03:21 takashi has joined #EPC 15:03:43 Present+ 15:03:49 wseltzer has joined #EPC 15:04:12 Bert has joined #EPC 15:04:13 kleber has joined #EPC 15:04:18 present+ 15:04:27 present+ 15:04:38 jeff has joined #epc 15:04:44 present+ 15:05:31 [Presentation: Phil Eligio] 15:05:41 joshua_koran_ has joined #epc 15:05:44 present+ 15:05:52 -> https://lists.w3.org/Archives/Public/www-archive/2020Oct/att-0008/01-part Phil's slides 15:06:59 [he's presenting using different slides, though] 15:07:27 QAdex has joined #EPC 15:08:27 https://www.epceurope.eu/ 15:08:49 https://www.epceurope.eu/post/epc-position-paper-on-the-future-of-audience-addressability-identity-and-privacy-in-a-digital-world 15:14:45 q+ to get Phillip's view on how representation could be improved. 15:15:43 q+ to ask why an identifier is the only solution to these problems? 15:15:46 q+ neutral entity - admin and/or operate? 15:15:54 q+ 15:16:09 q- neutral, entity, -, admin, and/or, operate? 15:16:16 q+ 15:16:26 Ralph has joined #EPC 15:16:53 (the format is q plus sign `to` and then string I think jrosewell) 15:17:44 q? 15:17:52 ack jeff 15:17:52 jeff, you wanted to get Phillip's view on how representation could be improved. 15:17:58 naxf has joined #EPC 15:18:10 Karen has joined #epc 15:18:15 present+ 15:19:13 kazho has joined #epc 15:19:17 q+ 15:20:23 q+ to point out that The Times's offer of training in W3C standards for publisher organisations still stands 15:20:50 qq+ 15:20:56 pchampin has joined #epc 15:21:45 ack robin 15:21:45 robin, you wanted to point out that The Times's offer of training in W3C standards for publisher organisations still stands 15:22:15 ack wseltzer 15:22:15 wseltzer, you wanted to react to jeff 15:22:36 I'm here sorry 15:22:51 q- 15:23:03 ack aram 15:23:03 AramZS, you wanted to ask why an identifier is the only solution to these problems? 15:23:08 pl_mrcy has joined #epc 15:23:21 I can take notes 15:23:45 AramZS: Can you dig in a bit more to the conclusion you reached that a 1:1 psuedonymoous identifier is the solution 15:23:50 aramzs++ 15:23:57 ... we've had the discussion and reached a different answer 15:24:10 Phil: we concluded that was what drove value today 15:24:24 q+ to point out that this is not a unanimous position in the EPC 15:24:37 ... know there's been some owrk to address value-drivers that aren't 1:1 15:24:47 Jeff: In the EPC paper it encourages W3C to have greater representation in our ecosystem. But we are an open organization with about 450 members, 1/3 in Europe; merged with IDPF. What else can we do? 15:24:48 ... no technical solution proposed in the paper 15:25:11 AramZS: do you think the group of publishers here would be open to a diferent solution that reasonably satisfied the needs being met by ID? 15:25:20 Phil: if it reasonably satisfies 15:25:24 ... important conversation to have 15:25:30 ... not at the end point of the conversation eyt 15:25:38 Phillip: (paraphrase after the fact) Good question, Jeff. Difficult to find technical resources. It would probably be helpful if you can be proactive. 15:25:53 q+ Anil 15:25:58 ack weiler 15:26:02 ... publishers interested in finding a solution that addresses these areas 15:26:04 Robin: In terms of guiding publishers and advertisers how to get around in W3C, I'm happy to lead a workshop. 15:26:14 weiler: I heard you say you're looking for a simple transparent solution 15:26:25 ... and in the paper, propose psuedonymous identifier 15:26:42 ... If a linkable identifier is widely used across the web, it loses its psuedonymity properties 15:26:53 ... you may have to do something more complicated 15:26:57 ack jrosewell 15:27:20 q+ @sam "pseudonymous" by definition means that it has technical or operational means to keep the activity distinct from directly-identifiable information (i.e. offline identity) 15:27:25 jrosewell: a lot of businesses will have suppliers that support them 15:27:31 @sam "pseudonymous" by definition means that it has technical or operational means to keep the activity distinct from directly-identifiable information (i.e. offline identity) 15:27:37 ... rely on technology providers 15:27:45 q? 15:28:01 ... lots of those tech companies that support publishers, generally referred to as "ad tech", are involved with W3C 15:28:23 ... they are capable of representing views of publishers 15:28:26 q+ to the question that ad tech could represent the interests of publishers 15:28:35 ... we talked about business models and solutions 15:28:45 ... not just code, but also laws 15:28:45 AramZS ++ to that question 15:29:12 ... heard a presentation from Blacklight re how GDPR has impacted 15:29:20 ... could be discussed in proposed Decentralization IG 15:30:05 ... Spectrum of owned+operated together, and splitting operation and administration, any preference? 15:30:18 Phil: the paper specified neutral 15:30:21 q+ to ask why use a model that needs governance (v. fully self-soverign) 15:30:22 ... didn't describe the governance 15:30:33 ... question that can be investigated 15:30:56 ... if we build for neutral entity, need to address governance 15:31:04 ack kris_chapman_ 15:31:28 kris_chapman_: comment on the difficulty of knowing which groups to join, timing for participation 15:31:40 ... I spend about 25% of my time working in various W3C groups 15:32:13 kris_chapman_: there's a need to provide a pecking order among groups, which is the priority to be involved with 15:32:22 ack robin 15:32:22 robin, you wanted to point out that this is not a unanimous position in the EPC 15:32:22 ... so you don't miss important conversations 15:32:51 robin: re pseudonymous identifiers, I wouldn't say EPC had a unanimous position. More nuance 15:33:14 ... pseudonymous identifiers are a governance and privacy method designed for areas that are strongly governed 15:33:18 q+ 15:33:26 tantek has joined #EPC 15:33:27 ... e.g. clinical trials with IRB, audits, bureaucracy 15:33:33 ... lots involved in "doing it right" 15:33:42 ... accountability 15:33:50 ... requires lots of bureaucracy to do it right 15:33:57 ... that would slow innovation substantially 15:34:08 ... from our perspective, more value to try innovative alternatives 15:34:14 +1 to Robin 15:34:24 ... Second, the idea that any non-publisher can represent publishers is preposterous 15:34:41 ... Ad tech companies are more than welcome to participate, a key part of the future of the web 15:34:49 ack anil 15:34:57 ... but they shouldn't speak as if they represent publishers 15:35:18 anil: Is there a prospective business model behind the identifier you mentioned? 15:35:19 +1 15:35:25 ... eg. relating to email marketing? 15:35:35 Phil: there hasn't been specific discussion around that 15:35:44 ack AramZS 15:35:44 AramZS, you wanted to the question that ad tech could represent the interests of publishers 15:35:49 AramZS: reinforce what Robin said 15:36:23 ... a number of studies show 70% of ad profits go to ad companies, not to publishers 15:36:31 ... reports on % of ad traffic that's fraudulent 15:36:49 ... not interested in disparaging ad tech 15:37:05 mserrate has joined #epc 15:37:11 +1 to cleaning up fraud, but we have to also acknowledge publishers are sources of fraud independent of intermediaries 15:37:12 ... but address technical problems that need to be solved re reporting and business issues 15:37:25 ... Advertising technology represents some interests; web publishing represents others 15:37:43 ... recognize that they're separate interests 15:37:45 ack weiler 15:37:45 weiler, you wanted to ask why use a model that needs governance (v. fully self-soverign) 15:37:54 An assessment on some of the reporting of fraud https://mashable.com/2016/06/09/ad-fraud-organized-crime/#NEIQuQmMSsqE 15:38:10 Another estimation of fraud: https://www.campaignlive.co.uk/article/unilever-were-miles-ahead-pack-tackling-ad-fraud/1592052 15:38:13 weiler: when I hear concerns about governance, wonder why we use an architecture with such requirements, rather than engineering 15:38:31 q+ 15:38:51 Phil: look forward to the conversation, don't have a clear answer today 15:39:00 weiler: or proposing something else that doesn't have those problems 15:39:08 q+ to ask about specific data ownership needs of publishers — a global identifier pushes in the opposite direction of pubs keeping control of their data, audiences, etc 15:39:16 I'm curious about the defensiveness about (not) disparaging ad tech, I mean, everyone knows about the widespread problem of https://en.wikipedia.org/wiki/Malvertising right? 15:39:45 ack jrosewell 15:39:49 jrosewell: I'm not directly involved in ad tech, though I have customers in that field 15:40:12 ... disagree, a tech company can represent its customers 15:40:27 q? 15:40:40 q+ to ask if publishers are the customer for adtech companies or the product 15:41:09 ... any industry can have its bad actors (diesel emissions, Enron), but we shouldn't all actors with the same brush 15:41:20 ... the vast majority I've interacted with are trying to do the right thing 15:41:29 ... no one finds fraud numbers acceptable 15:41:46 Some writing on why the split of profit to middlemen technologies creates real problems in the ecosystem - http://adcontrarian.blogspot.com/2017/01/why-ad-fraud-thrives.html 15:41:58 ... Re pseudonymous identifiers and governance, EPC aren't the only body proposing. Competition and Markets Authority UK also propose 15:42:02 q+ to rebut re: bad ideas 15:42:30 ... before we assume there's a problem associated with audit and control, shouldn't we understand those solutions and compare with alternative 15:42:35 q+ 15:42:44 ack kris_chapman_ 15:42:54 kris_chapman_: Salesforce isn't ad tech, martech. 15:43:18 ... while best representatives of publishers are the publs themselves, I do try to represent the feedback I hear from our customers in publishing 15:43:20 q- 15:44:07 Two pieces on the question of the concerning split in profit regarding middlemen - https://mediatel.co.uk/newsline/2016/10/04/where-did-the-money-go-guardian-buys-its-own-ad-inventory/ & https://digiday.com/careers/ad-tech-confession/ 15:44:16 ... re pseudonymous identifier, we tend to have engineering background and therefore try to develop engineering solutions 15:44:23 ... not the only answer 15:44:34 q+ to respond to kris 15:44:36 ... we shouldn't dismiss business logic and business solutions 15:44:39 Agree with Kris that we tend to seek solutions in technology and not in other areas such as policy, governance, etc. 15:44:41 ack kleber 15:44:41 kleber, you wanted to ask about specific data ownership needs of publishers — a global identifier pushes in the opposite direction of pubs keeping control of their data, 15:44:44 ... audiences, etc 15:45:28 kleber: on the subject of pseudonymous identifiers, 30 years of privacy research says there's no global cross-context identifier with the properties you're looking for 15:45:54 ... without a lot of regulatory work behind enforcement 15:45:55 +q re pseudonymous IDs 15:46:04 ... what are the specific data ownership needs of publishers 15:46:10 ... in the regime you're talking about 15:46:28 ... global ID we're talking about seems to cut against some of the needs 15:46:47 michaelchampion has joined #EPC 15:47:01 ... I'm author of privacy sandbox proposals, e.g. letting publishers advertise on their site without contributing to the building of audiences that can be used off-site 15:47:04 ack gendler 15:47:04 gendler, you wanted to ask if publishers are the customer for adtech companies or the product 15:47:18 ... pseudonymous ID doesn't offer protection against that threat 15:47:50 gendler: NYT, to jrosewell, I'd disagree that publishers are the customers of ad tech 15:47:51 q+ 15:47:58 ... advertisers are the customer, publishers are the product 15:48:10 ... so harder for them to represent publishers' interests 15:48:27 ... re painting all with the same brush, overall ecosystem has issues 15:48:40 ack wseltzer 15:48:43 ... links Aram is putting in the chat 15:50:28 wseltzer: @@ 15:50:30 ack weiler 15:50:30 weiler, you wanted to respond to kris 15:50:51 weiler: re preference for engineering solutions 15:50:59 q+ to point out that engineering, governance, policy aren't either/or 15:51:06 ... in security and privacy, at least some of our adversaries don't play by the rules 15:51:10 pe has joined #epc 15:51:16 ... sometimes it's state actors or organized crime 15:51:24 ... seeking to subvert user interests 15:51:32 ... e.g. state actors blocking TLS 1.3 15:51:50 ack joshua_koran_ 15:51:50 joshua_koran_, you wanted to discuss pseudonymous IDs 15:51:51 ... that's when I don't think we can rely on policy solutions 15:52:04 q+ to the question of mechanical enforcement and the need for it 15:52:08 joshua_koran_: Zeta Global, martech 15:52:27 ... agree with wseltzer start with business cases, then evaluate the technology that would solve them 15:52:37 ... we tend not to look at problems that can 15:52:45 ... 't be solved by technology 15:53:02 ... agree we want to clean up fraud. 15:53:07 ack jrosewell 15:53:15 ... much of that driven by publishers, and advertisers deploy anti-fraud tech 15:54:10 jrosewell: let's not label countries as bad actors 15:54:17 ... W3C shouldn't 15:54:59 Note: other ad tech firms than SSPs work directly with publishers. 15:54:59 jrosewell: some ad tech companies, SSPs, work with publishers; others, DSPs, work with advertisers 15:55:09 ... I should have referred specifically to sell-side 15:55:16 ack robin 15:55:16 robin, you wanted to point out that engineering, governance, policy aren't either/or 15:55:42 robin: re not just focusing on engineering, it's not either or 15:55:52 q+ 15:55:56 ... look at engineering and policy solutions, a big toolbox 15:56:07 ... engineered solutions can act as forcing functions 15:56:42 ... value in doing more work to bridge engineering and policy solutions 15:57:00 ... e.g. GPC noted limits in pure-tech, and looked to bridge to policy 15:57:47 ... I'd say there's 50 years experience looking at pseudonymous identifiers, from paper filing times, and still they don't work 15:57:51 ack AramZS 15:57:51 AramZS, you wanted to the question of mechanical enforcement and the need for it 15:58:07 AramZS: adtech engineering director, Washington Post 15:58:16 ... +1 Robin 15:58:24 ... publishers work with lots of systems besides SSPs 15:58:58 q? 15:58:59 ... there is fraud that occurs with creation of fake users, fake publishers, and larger problem around incentives for propaganda and fake news 15:59:18 ... separate needs so we can understand incentives and transpaerency 15:59:40 ... one of those incentives is the need to monetize on individual users, which creates the demand for fake users 15:59:44 I would further note that legitimate publishers are also harmed by fraudulent publishers since we compete for the same money 15:59:45 ack kris_chapman_ 15:59:51 [Tantek, in terms of your point "I'm curious about the defensiveness about (not) disparaging ad tech" within W3C we should never be disparaging an entire industry.] 16:00:04 atai1 has joined #epc 16:00:13 kris_chapman_: I have an engineering background too 16:00:24 ... support looking beyond engineering for solutions 16:00:30 ... and beyond where engineering is today 16:00:31 [jeff: I disagree.] 16:00:37 Ivan: thank you all! 16:00:48 zakim, end meeting 16:00:48 As of this point the attendees have been gendler, kris_chapman_, jrosewell, Bleparmentier, cwilso, weiler, igarashi__, AramZS, robin, Bert, wseltzer, jeff, ivan, Karen 16:00:51 RRSAgent, please draft minutes v2 16:00:51 I have made the request to generate https://www.w3.org/2020/10/28-EPC-minutes.html Zakim 16:00:53 I am happy to have been of service, ivan; please remember to excuse RRSAgent. Goodbye 16:00:57 Zakim has left #EPC 16:00:59 rrsagent, bye 16:00:59 I see no action items