Page Comparison

INCOMPLETE DRAFT

(1) WG NAME (and any acronym or abbreviation of the name): The WG name, acronym and abbreviation must not include trademarks not owned by the Organization, or content that is infringing, harmful, or inappropriate.

Consent and Information Sharing , Notice, and Consent, Work Group (InfoSharing NC WGCISWG)

(2) PURPOSE: Please provide a clear statement of purpose and justification why the proposed WG is necessary.

The amount and frequency of sharing of information about, by, and from individuals is outpacing our has outpaced the ability to manage it. Our role  The system of privacy policies and terms of use are not sufficient for personal data control.  In this context, this work group is chartered to develop open specifications that support an infrastructure for personal data control.

The individual is the optimal point of integration and control for managing personal information services.  The role of this WG is to shepherd new specifications by by which personal information can be enabled to flow under the control of the individual, improving the relationship between demand and supply . Our contention is that when individuals are forced to "consent" to confusing organization-centric privacy policies and terms of use, the flow of quality information is limited. If such constraints were removed, and capabilities built on the side of the individual, then new, rich information will flow - including actual demand data (as opposed to derived/ predicted demand). The goal of this working group is to identify and document the use cases and scenarios that illustrate the various sub-sets of individual-driven information sharing, the benefits therein, and specify the policy and technology enablers that should be put in place to enable this information to flow.with personal data control.

(3) SCOPE: Explain the scope and definition of the planned work.

The founding Work Group participants recognize that deployers developers are working in an ever-evolving heterogeneous environment that requires interoperability of identity services (i.e. identity- and SOA-enabled applications), and integration of policy assets both internal and external to the enterprise. In order to advance the identity-enabled marketplace - specifically application domains that rely upon identity-based web services - information sharing, privacy, consent and trust this Work Group is chartered to:

• Become and/or initiate an active public discussion forum for the collection, development, and analysis of use cases

  /

  , scenarios

  that are met by the emerging concept of individual-driven information sharing.
• Develop a detailed public roadmap that provides recommended next actions to make the concept of individual-driven information sharing a reality within 12 months.

• , and specifications that improve consent-driven  information sharing.

• Foster awareness of and participation in

  this effort

  open consent and sharing infrastructure from the broadest stakeholder cross-section possible, both the near-term use case phase

  taking

  which has taken place in this working group, the mid-term specification and practical framework build phase (where we are now), and the long-term adoption of the

  newly emerged individual-driven

  specifications by SSO (Standards Setting Organisations).

• Develop guidance and supporting materials  in order to advocate the adoption of specific standard practices, policies, and terms to increase the quality of consent practices. Ensuring these practices  improve compliance and trust across legal jurisdictions for information sharing.

(4) DRAFT TECHNICAL SPECIFICATIONS: List Working Titles of draft Technical Specifications to be produced (if any), projected completion dates, and the Standards Setting Organization(s) to which they will be submitted upon approval by the Membership.

• Personal data store - an illustrative technical specification (in that we feel it is impossible to be definitive in this area)
• Technical specifications for individual-driven information sharing mechanism(s)
• Definition of Service Interface Specs (SIS) for each identified type of individual-driven information sharing (e.g. Buying Intentions)

  MVCR Consent Receipt: Core consent record profile for creating consent transaction receipts and records that comply with privacy regulation across jurisdictions: Projected SSO ISO - May 1st, 2016 -  v.8   v.1 by end of 2016

• User Submitted Terms: Common terms that can be asserted by the individual in parallel or contrast to terms of service that manage information sharing in trusted ways. Projected SSO W3C by end of 2017

• Information Sharing Agreements: Building on earlier work in CISWG, standardised mechanisms (contracts) that individuals can use to enter into agreements with organisations that enable two way flows of volunteered information. SSO and target dates to be determined.

It is the intention of the Information Sharing WG to ultimately submit the specifications listed above to an appropriate OASIS TC Standards Settings Organization for full life-cycle maintenance. The receiving organizations will be determined on a per-specification basis.

(5) OTHER DRAFT RECOMMENDATIONS: Other Draft Recommendations and projected completion dates for submission for All Member Ballot.

...

The CISWG is open for supporting and collaborating with organizations that have specification work or standards in this space.

(6) LEADERSHIP: Proposed WG Chair and Editor(s) (if any) subject to confirmation by a vote of the WG Participants.Iain Henderson, Mydex Community Interest Company (Chair)
Joe Andrieu, SwitchBook (co-Chair

Mark Lizar - (Chair- Jan, Feb, March 2016)

Mary Hodder (Chair April, May, June 2016)  (Co-Editor of the Consent Receipt Specification, Editor of UST Specification)

John Wunderlich (Chair - July, August, Sept, Oct 2016)

Iain Henderson, (Chair Oct, Nov Dec )

(7) AUDIENCE: Anticipated audience or users of the work.

Developers, entrepreneurs, policy makers, developers, and deployers, both internal and external, to large organizations who manage individuals services for individual customers...,,

(8) DURATION: Objective criteria for determining when the work of the WG has been completed (or a statement that the WG is intended to be a standing WG to address work that is expected to be ongoing). 

The Kantara Leadership Council charters the Information Sharing Work Group for five years. It may be amended from time to time, with changes approved by the Leadership Council. This charter will expire in June 2014August 2018.

(9) IPR POLICY: The Organization approved Intellectual Property Rights Policy under which the WG will operate.

Kantara IPR Policy - Option Patent and Copyright Reciprocal Royalty Free with Opt-Out to (RAND)

(10) RELATED WORK AND LIAISONS: Related work being done in other WGs or other organizations and any proposed liaison with those other WGs or organizations.

...

• #RealConsent workshops

• Conference Liaisons

• ISO Liaison

• UMA Collaboration

• Project VRM

• Emerging VRM .dot org
• Identity Card FoundationOpen ID Foundation
• Identity Commons
• DataPortability Project

  Customer Commons

• Know Privacy

(11) CONTRIBUTIONS (optional): A list of contributions that the proposers anticipate will be made to the WG.

Use cases (from prior VPI SIG)Design documentation for personal data store and VPI sharing (Mydex)Reference deployment for personal data store and VPI sharing using ID WSF, Information Cards, XRI / OpenID (Mydex). Open Notice preliminary work and partial draft specification.

(12) PROPOSERS: Names, email addresses, and any constituent affiliations of at least the minimum set of proposers required to support forming the WG.

• Iain Henderson, Mydex Community Interest Company Bill WashburnThe Customers Voice
• Colin Wallis,
• Nat Sakimura
• Joe Andrieu, SwitchBook
• Eve Maler, Sun Microsystems
• Doc SearlsMark Lizar

History