Letter to JTC1 Dear Members of JTC 1 - WG Mirror Committee: Introducing the Transparency Performance Scheme
ANCR (Anchored, Notice and Consent Receipts) WG, Standard Digital Privacy Transparency Record Framework for Consent by Design.
The ANCR WG contributed to the last JTC 1 WG5 meeting through a number of contributionsitems:
ISO/IEC 27568 Security and privacy in Digital Twin - PWI Report
ISO/IEC 27091 Security and privacy in Generative AI - A use case for ethics and AI Governance
ISO/IEC 27566-2 Benchmarking Age Assurance Systems
Attached here is the report presented in the 27568 sessions, and this be found here,
View file | ||
---|---|---|
|
Project No. | Title | Due date | |||
27568 (1.27.163) | 2024-04-29 |
The presentation of this work articulated how security and privacy can be digitally twinned for Age Assurance and Generative AI applications in order to enable governance through the use of digital identifier managament management technologies.
ANCR Transparency Performance Scheme (TPS)
...
Consent by design is enabled by using a PII Controller Notice Credential to decentralised the records, with a receipt. In that individual is provided with a receipt in order to mitigate the liability and risk in data processing. In the common context a digital transparency receipt is provided when engaging with any type of sign or notice, This specifies for a notice/sign enhancement for an inclusive record and receipt provisioning practice, that is a called a two factor notice (2FN). A 2FN uses an overlay capture architecture when interacting with a notice, notification and disclosure, to create a consent receipt, which can be used with consent to interact with the service autonomously.
In Summary
We submit the ANCR WG specifications as Consent by Design for Privacy by Default systems, which can be used to secure individual privacy, dramatically reduce risks, enable the dynamic transfer of liability with authentication from consent.
...
To address Generative AI risks of deep fake, as well as assurance against mis-information the consent receipt is produced with a registered controller record, (a digital trust registry) and is registered in order to secure the accountability, providence and transparency of personal identifiable information processing
ANCR Work Group Presentation
0PN-DTL - ANCR Transparency Record Framework - Global Age Assurance April 13 2024 Manchester, UK
...