(Draft) The premier use case for transparency and security over the surveillance of children, youth and Community requires the use of governed facial surveillance technologies, in order to not only include but protect the vulnerable and 4th sector (non identified) human.
[Note: The ANCR Age Assurance input, for reference.]
ANCR WG - & the Digital Transparency Lab, works on global privacy rights as an asset locked public facing community interest infrastructure in the Digital Commons, in accordance with work to contribute in the ANCR WG developing specifications to enable global privacy rights through a Trust Framework Program called 0PN Digital Privacy and Transparency, a Community Interest-Charity with Asset Locked community interest infrastructure for Digital Commons infrastructure development.
All of this work is in accordance with OECD Guidelines, Convention 108+, using ISO/IEC 29100 Security and Privacy framework for digital identity management, ISO/IEC 29100 Security and privacy techniques framework, in which the terminology is interoperable with the definitions used legally in the Convention 108+ and GDPR, making it the most authority legal and technical privacy framework, implementing the 0PN: ANCR Trust Framework as sepcified specified by laws using standards.
This enables the TP-Scheme to be employed to make a ISO/IEC 29100 standard record, and Consent Receipt, which can be used to capture the transparency of any given technical context in a digital record and (digital) consent receipt, enabling digital privacy rights based access and control of information.
...
This standardised digital privacy transparency, records and receipts bring assurance to accountability infrastructure, which has been lacking regulated transparency and consent, up until 2024, when the three required things have happened. 1.
Feb 17, Digital Services Act came into force (consent receipt was originally in that Act),
...
March 7, and the CJEU Ruled on the commercial Transparency and Consent Framework, (
...
I Agree' check boxes and buttons for plain text privacy policies, effectively contracting privacy, without consent.
Digital Market Act came into force March 8,
All of this is a pre-cursor to the Convention 108+ comes into effect internationally, which is what we have been focused on here in the ANCR WG for quite sometime. 108+ comes into effect as the defacto international adequacy standard legally and baseline for compliance for standards.
\
All of these apply greater legal scope and definition to what has already been defined and understood as notice and consent legally, but ignored by industry.
In terms of international gold standard the Quebec, Canada law came into force and in effect enforcing the requirements to provide a consent receipt, not only when requested but in Quebec.
These regulations started to officially come into force in Aug in the EU with DPA starting to fine companies in 2023.
Regulated -
March 7, 2024 - CJEU Judgment in Case C‑604/22 (IAB TCF)
...
What to expect next:
The case goes back to the Belgian Courts and will almost definitely result in the Belgian DPA's enforcement being upheld and further action against any company that continues to use the TCF system and new actions against the thousands of data brokers behind OpenRTB.
https://sd.iso.org/documents/ui/#!/doc/182c269a-8346-41ec-a4d1-b2bd9ced7a64