Versions Compared

Old Version 10

changes.mady.by.user Salvatore D'Agostino

Saved on

compared with

New Version 11

changes.mady.by.user Mark Lizar

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Kantara Initiative - Advanced Notice & Consent Receipt - ANCR-WG Charter

 

(1) WG NAME (and any acronym or abbreviation of the name):  

Advanced Notice and Consent Receipt Work Group

ANCR WG ANCR WG (Anchored Notice & Consent Receipt). 

(2) PURPOSE:

To provide a protocol and framework based on notice and consent that supports the use of records and receipts for decentralized authorization independent of identifier technology. To provide a specification for an anchor receipt for notice of purpose and context and proof of notice that supports decentralized governance and authorization (Auth C) by the principal and the controller/operator.

Collaborate with other Kantara, and community and standards groups in the adoption of the protocol and the anchor receipt.

Contribute this to iso works, contribute to conformance programs for notice and consent in Kantara Initiative Community.

(3) SCOPE: 

...

Develop and contribute to standardised digital notice transparency in the 'digital commons', mandating the use of consensys protocol for  specifying internationally interoperable data governance. 

ANCR objective is to complete the Notice and Consent Receipt work. started in the Consent and information Sharing WG, that is specified for (public access) ISO/IEC 29100 Security and privacy technique and ISO/IEC 29184 Online Notice and Consent Standard, where the Consent Notice Receipt Is published (Appendix B  and Consent Standard). 

This WG is charted, to update this specification to the Council of Europe 108+ international legal framework (for the Common Wealth Countries), specifying the Consent Receipt v2. Consent Token Architecture and associated Transparency conformance and compliance schemes.   

Chartered to utilising the updates to the Consent Receipt v1.1 (now ISO/IEC 27560 Consent Record Information Structure) 

To specify a human Trust Anchored, governance framework and architecture, for interoperable, inclusive record and receipt based governance, referring specifically to Conv 108+ Art 14- Transparency Modalities, Art 30 RoPA, and Art 88 - Logging. 

To specify royalty free, open access and open source digital transparency, transparency performance, and transparency signalling for distributed notice and decentralised  consent.  Specified strictly to  legal requirements and the listed standards,  agnostic to digital identity protocols so as to be interoperable with identifier 'trust/security' frameworks. 

To ensure that the Record of Processing Activity (RoPA) are Transparency and trustworthy with a Notice Receipt as a mirrored record  (digitally twinned) record architecture.  The RoPA-T provides a notice receipt, that is used as a legal proof of Notice and knowledge that is inclusive.  As a digital record owned and controlled by the individual) that an individual can trust and self verify, validate and assure and issue as a digital claim.                                                   

To contribute this work to;   Kantara Initiative Conformance and Assurance initiatives, ISO/IEC, NIST, IEEE, DIACC, W3C DPV, OIX, OpenID, community and standards group liaisons.


(3) SPECIFICATION COPE: 

  1. Specify and Publish: ANCR Record Transparency Performance Scheme for Transparency Performance indicators, which  can identify the digital transparency gaps, so they can be addressed.   
  2. Specify and Contribute: ANCR Record Framework 
  3. Specify and Contribute:  AuthC Transparency Protocol for signalling authorisation with consent  
    1. Innovate in accordance with Kantara Operating Procedures and promote a consent notice receipt (a receipt that is a notice of consent) as an international tool for human, legal and decentralized identity governance and interoperability.

...

Name

Description

Link

Spec input summary

date reviewedNone

Transparency Performance Conformity and Compliance Assessment Scheme 1, Part 1 and Part 2

specifies 4  Transparency performance indicators, to produce a digital transparency record. 




(6) LEADERSHIP: Proposed WG Chair and Editor(s)

  • Chairs & Secretary (initial)
    • Chair - Sal D'Agostino
    • Editor - Mark Lizar
    • Secretary - tbdGigi Agassani

(7) AUDIENCE: Anticipated audience or users of the work includes

Regulators looking for technical controls to implement legal requirements that scale.

Trust Framework Providers, 

Software developers, and product managers as a means of achieving interoperability across a wide range identity, security, and privacy of use cases. Developers of decentralized governance and next generation internet services.

Regulators looking for technical controls to implement legal requirements that scale.

For human Human beings, as the notice and consent receipts provide an alternative/complement to terms of services and privacy policies, and provides something that can be understood by people. This is in contrast to the current abuser experience, namely that privacy policies and terms of service address privacy concerns and provide safeguards of personal information.

Operators of Digital Privacy Operators, who are liable for  identity, privacy, security, and consent systems in the real world.

...