Versions Compared

Old Version 10

changes.mady.by.user Mark Lizar

Saved on

compared with

New Version Current

changes.mady.by.user Mark Lizar

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. the initial receipt is used to create an Ancr recored anchored record for the implementation assertion of data sovereignty by PII Principal

  2. Use the ANCR record to generate a consent receipt by choosing / confirming the legal justification, which represents a consent type and onto of this the legal justification is layered.

  3. **  implement this specification choose the receipt type for the legal justification, display the consent label in the receipt and privacy rights information access for the context of processing  

  4. The notice receipt is extended by the legal justification for processing

    1. Each type of Notice receipt is defined by a legal justification mapped to a consent type label for human record processing and privacy rights. 

    2. The legal justifications are represented generically, and based on those defined in the GDPR and  guidelines like those found in Canadian  privacy for meaningful consent.

Table 1:

...

Consent Receipt Types for Legal Justifications & Consent Type Labels for Notice Liability Transfer

Master Data Consent Paradigm Controls - matching - Privacy Rights to data controls that re specified for data context governance and trust.  

Layering legal justifications onto of a consent receipt to modify the rights and permission scopes.  

“Consent is not the only lawful basis for the processing of PII and thus not always required. “  The aim of this specification is to modernize the consent exceptions to account for new digital realities that were not anticipated when these laws were originally adopted. 

In some jurisdictions, other lawful basis includes 29184, generic set of lawful basis are adopted and specified from the GDPR. 

  1. consent

  2. contractual necessity,

  3. compliance with legal obligations,

  4. vital interest, 

  5. public interest, and 

  6. legitimate interests

...

Notes for Implementors Conformance Testing Consent Types

Checklist: To determine a consent type,

...

 Notice have the 4 minimum requirements:

  1. identity of controller and accountable point of contact

  2. contact

...

  1. information for privacy rights access

  2. purpose description  

  3. legal justification for processing personal data (or consent type)

  1. In this policy context ; Does does the notice have ?

    1. Dark patterns are identified, is there an appropriate ;

      1. opt-in,

      2. opt-out

      3. no opt-in (or) opt-out -

      4. Terms of Service Framework

      5. No Transbordar - metadata privacy mechanism

      6. presentation of risks ]

  2. Is this notice, a notification of an existing Notice or Consent - already active ?

    1. yes

    2. no

...