...
In this WG's effort to address these core technical and governance issues 2FN and 2FC has worked to separate technical permissions in the context of access management and human permission in the context of Consent which is 'purpose of use' management. Not separating system permissions from consent is an identified dark parttern which 2FN is specified in ANCR to address. This has been made more difficult through a consolidated industry effort to conflate these two types of permission (as digital trust) for commercializing digital identity as security services.
The 2FN proof of authorization before processing policy, is a policy control for the use of AI, and through discussion was conceived as tool for safeguarding children's privacy in AI. The mirrored notice record standard : aka a Consent Receipt provides high quality, labelled data for people to manage their own micro-data and control its use and who benefits from this data when used as - meta-data.
Resources and Links
Unicef Released an Ethics/Policy Guide
...