To find more information
Overview
A consent receipt is a record of a consent provided to an individual at the point in a person agrees to the sharing of personal information. Its purpose is to capture the privacy policy and its purpose for sharing personal information so it can be easily used by people to communicate and manage consent and sharing of personal information once it is provided.
Consent Receipt is record of authority granted by a Personally Identifiable Information (PII) Principal to a PII Controller for processing of the Principal's PII. The record of consent is human-readable and can be represented as standard JSON. This specification defines the requirements for the creation of a consent record and the provision of a human-readable receipt. The standard includes requirements for links to existing privacy notices & policies as well as a description of what information has been or will be collected, the purposes for that collection as well as relevant information about how that information will be used or disclosed. This specification is based on current privacy and data protection principles as set out in various data protection laws, regulations and international standards.
To find more information
- Known Implementations: Many Consent Receipt Implementations
- Meeting Notes: Meetings and Minutes (Consent & Information Sharing)
- GitHub Repo: https://github.com/KantaraInitiative/CISWG/issuesMeeting Notes: Meetings and Minutes
- Known Implementations: 2 - Consent Receipt ImplementationsConsent Receipt v0.7 test api on display at ConsentReceipt.org: http://api.consentreceipt.org,
- Consent Receipt CRG JSN - Documentation
- IIW XXIII Consent Receipt presentation: IIW XXIII - Wed 4E Consent Receipts.pptx
| Panel | ||
|---|---|---|
| ||
Title: Consent Receipt Specification (download here) Version: 1.1.0 Date: 2018-02-20 Editors: Mark Lizar, David Turner Status: This document is a Kantara Initiative Technical Specification Recommendation produced by the Consent & Information Sharing Work Group, and has been approved by the Group. The Public Comment and Intellectual Property Rights Review has been completed. It has been approved by the Membership of the Kantara Initiative. See the Kantara Initiative Operating Procedures for more information. Abstract: A Consent Receipt is record of authority granted by a Personally Identifiable Information (PII) Principal to a PII Controller for processing of the Principal's PII. The record of consent is human-readable and can be represented as standard JSON. This specification defines the requirements for the creation of a consent record and the provision of a human-readable receipt. The standard includes requirements for links to existing privacy notices & policies as well as a description of what information has been or will be collected, the purposes for that collection as well as relevant information about how that information will be used or disclosed. This specification is based on current privacy and data protection principles as set out in various data protection laws, regulations and international standards. |
Consent Receipt Technical Specification Supporting Material
| Child pages (Children Display) |
|---|