Versions Compared

Old Version 1

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Date

2019-07-10

...

  1. Call to order
    1. Roll Call & Determination of quorum status
    2. Agenda bashing
    3. Kantara Organization updates 
  2. WG Motions
  3. Discussion 
    1. WG path forwards
    2. WG & publication scope
  4. Upcoming conferences and events
  5. All Other Business (AOB)
  6. Adjourn

Attendees

Voting

  • Andrew Hughes

  • Marco Venuti

Non-Voting

  • Chris Cooper
  • Ken Klingenstein
  • Lisa LeVasseur
  • Nancy Lush
  • Chris Olson

Regrets:


Quorum Status


The meeting was not quorate


Voting participants

Participant roster (CMS) - Quorum is 4 of 6 as of 2018-04-02

...

The draft is in a Google doc - feel free to comment - Chairs and Editor will control acceptance of material.

Time

Item

Who

Notes

5 min
  • Call to order
  • Roll call
  • Agenda bashing
  • Organization updates
Chair



5 minWG Motions
A Quorum required 		Chair

Motion to ...

Moved by:

Seconded:

Discussion:

Result:


5 min

Introductions

All

Welcome!


30 minWG path forwardJim

2019-04-17 call notes:

How do we incorporate meaningfulconsent.org from Southampton University?

Look into submitting papers to:

SOUPS conference:

https://www.usenix.org/conference/soups2019

August 11–13, 2019, at the Hyatt Regency Santa Clara in Santa Clara, CA, USA

PEPR'19

2019 USENIX Conference on Privacy Engineering Practice and Respect

https://www.usenix.org/conference/pepr19

AUGUST 12–13, 2019 SANTA CLARA, CA USA

FYIDiscussion on document draftingCornéFYIDiscussion on the Interview QuestionsAllThe first draft of the interview questions are in a Google doc - please comment.All
  • Discussion about pressure points and the demand for 'consent'
    • Discussion on seeing 'consent' requirements in some RFPs - purchasing 
    • Also -  Service providers (data processors) are starting to insist that Brands (the data controllers) have valid 1st party consent from consumers (data controller to data processor demands) 
  • ACH asked Marco for ratio of wants consent stuff versus not asking for consent stuff in rfps
  • ACH asked Marco for sample language - examples of how company RFPs ask for consent management-related stuff
  • Andrew speculates - what if CMS WG produced a boilerplate clause setting out how to ask for consent management stuff?
  • James - one aspect is when a customer 'signs up' with a provider - explicit; another aspect is passive tracking; this is the omnichannel user consent management problem - the person might set different instructuctions on every different channel the customer connects to the provider (e.g. in person vs mobile app)
    • Caution to ourselves that user preferences can come from any channel, not just 'web' or 'mobile app'
  • Lisa & Eve Maler have written a paper that sets out 'consent' needs to evolve - interesting supporting material
  • James - identification of the user is a challenge that intersects with the explicit/active consent management topic
    • This is a big challenge for companies
    • Companies are seeking a solution to lightweight but robust identification solutions - rather than asking for an emailed picture of a passport or ID card
      • There is a need for safe, secure solutions to linking customer interaction channel identifiers together in order to manage consent instructions at a **person** level, not at a channel-user level
    • Notes that collection of passive identifiers via setting a cookies etc is problematic when those passive identifiers are sent onwards to a third party that has the capability of linking those passive identifiers to actual individuals. If the identifiers cannot be linked to real persons (because they are not sent onwards) then they are less problematic.
    • Companies want risk mitigation - this can mean unification of the many 'consents' that a person gives to a company due to many channels
5 minUpcoming conferences and eventsAndrew

Events that Kantara will have an active role: https://kantarainitiative.org/events/

5 minAOBChair

ACTIONS:

  • ALL: review web sites from these notes - identify potential verticals and the differences between them (e.g. who/what is the 'regulator' that sets and enforces the 'rules') - Please put your notes into the Gap Analysis docs.
  • ALL: look at SOUPS and PEPR conferences - each to decide on attendance.
    • Jim/Andrew

    :

    CISWG and / or CMS WG to consider submitting a paper to PEPR (the Personal Data Control Panel Demo)


    		AdjournChair

    Next WG meeting Wednesday, May 15XXXXXXXX, 2019 10:00 Eastern Daylight Time / 14:00 GMT

    https://global.gotomeeting.com/join/276734989 

    ...