The ANCR WG is pleased to announce that the WG effort is resulting in what we belive is the first publicly regulated data controller credential for people called an Open Notice Controller Credential. By regulated, it is a ‘Code is Law’ notice credential specified with jurisdiction and context relevant regulation to specify a PII Controller credential for Digital Privacy and Privacy by Design. A credential which is comprised of publicly required privacy information, (digital privacy transparency) that is directly regulated by international privacy law. Providing a notice credential using an international standard security + privacy ISO/IEC framework of standards that are interoperable. Building upon the ISO 31700-1:2023(en) Consumer protection — Privacy by design for consumer goods and services — Part 1: High-level requirements privacy by design framework to support privacy defined, data governance interoperability. It’s intended use is to enhance the digital privacy transparency and as a result to ussability the operational usability and the adequancy of a digital privacy notice, notifications or disclosuredisclosures.
It adds the next layer to the notice record and consent receipt framework for generating records of processing activities for people. It provides the capability for new network architectures, where a micro-notice credentials can provide proof of digital notice and where consent receipt tokens are used for evidence of consent.
...