Versions Compared

Old Version 5

changes.mady.by.user Mark Lizar

Saved on

compared with

New Version 6

changes.mady.by.user Mark Lizar

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Digital Transparency : Levels of Privacy Risk Assurance (or Levels of Trust)

The anchored trust framework refers to 4 Levels of Risk Assurances, provided for in the the notice record schema. The record represents a trust framework that is exclusively Soverign to the individuals belief, choice and action. It is the mechanism by which we the people can hold Controllers accountable and conversely be held accountable, to our own actions. Discussed in terms of autonomy, freedom, rights, which exitst and are represented in public and civil societywhereby the individual is authoritative.

The DTL Levels Of Risk Assurance: 

DTL 0,  - Notice Record and Credential - Minimum viable public service  (also referred too as the notice controller credential) [verified not authenticated. ]

...

DTL 3 - Operator (certified controller) Registrar - Industry Vertical Register 

What Are ANCR Records?

ANCR records are specified for public benefit and are contributed as public benefit technologies.

...

The specifications developed here are in reference to authoritative international law CoE Convention 108+ and the open ISO/IEC 29100 security and privacy techniques standard which defines the stakeholders and roles. The work has been curated to be licensed for the public benefit, to provide legal to technical framework for digital transparency. A technology and standard , personal data control and decentralizing data governance.

ANCR’d Trust Framework

  1. used autonomously to validate a current session

  2. notarized by a Referee

  3. Verified by a Regulated & Certified 3rd Party- like a bank which is a validator and proxy access to data profiles/accounts the individual controls.

ANCR Record Specifications

  1. Consent Receipt v1.1. & V2 i)

    1. A record created by a ‘privacy stakeholder’ [ref] Developed in the digital identity industry to provide people with records of Digital identity relationships, that can also be used to govern the digital relationship. Published in ISO/IEC 29184 Online privacy notice and consent, Appendix B, then adopted as basis or ISO/IEC 27560 [draft technical specification] consent record information structure.

  2. Transparency Performance Indicators (TPI’s) Draft v.00

    1. Digital Transparency metrics fo indicating operational state of transparency, useful to asses contextual conformance and compliance with laws, standards and personal expectations.

  3. Notice Record, (for Consent Receipts V2)

    1. this is the analogue concept of a notice record, to which a person (in a particular physical location, reads a notice and make their own record of who is control and accountable for their personal information, the core format of the consent receipt.

      1. with the addition of adding the use of a digital identifier to the notice recored, it can be used as extended to become a micro-notice credential

  4. Controller Notice Credential - (V.0.1) - an open digital identity credential that a PII Principal can create independently of the service providers, defined with International and enforceable law using ISO/IEC standard framework so as to be operationally authoritative.

Extensions in development:

  1. Micro-Notice Credential & Consent Token - the extension of a notice record with key and token management. A notice record stored as a micro-notice credential in an ANCR’d application can further be extended to become a consent receipt token, which is the transport format / vehicle for exchange of credential and controller information.

Acronym's, Terms and Definitions

ANCR (Anchored Notice and Consent Record ; An ANCR’d records is used by an individual to verify and validate each and every new, digital session, with a service provider. digital identifiers and

...