Core Spec: Minimum Viable Consent Receipt (MVCR)- Specification
Related Documents:
CISWG: Consent Requirements Map: (spreadsheet of laws/principles for receipt and data control R&D)
Open Notice: Mockup of a Consent Receipt: (A first MockUp of the consent receipt record)
...
Draft, background document can be found here,
Minimum Viable Consent Requirements
By its format and structure the MVCR is intended to provide the basic information to review further the compliance of policy for consent. The MVCR is a record in a standard format. As a result it can be further extended by jurisdiction, data type and additional context. A basic consent receipt will assure a basic level of general regulatory compliance for consent. It will do this by being open, accessible, extensible and providing a standard format to develop a higher quality of consent and policy usability, data privacy law usability.
MVC Contents
This may end up being an XML document, but for now some basic Key:value pairs will provide an initial framework
...
Proposed minimum for an alpha test (Respect Network XDI Consent Receipt)
Consent Receipt
Field Name | Description | Purpose/Explanation | Format example (XDI) |
---|---|---|---|
Data Subject | Name or pseudonym of the user | Depending on the context could be full name, username, or pseudonym | Data Subject: Alice [=]!:uuid:1111 |
Data Controller | Name of the entity issuing the receipt | Should be the entity/organization operating the service/web site that is collecting personal information | Data Controller: Amazon [+]!:uuid:9999 |
Third Parties | Names of third parties involved in the transaction | An example would be a transaction with Amazon where the fulfilment of the order is done be UPS | Third Parties: UPS [+]!:uuid:9999 |
Data Subject: Alice [=]!:uuid:1111
Data Controller: Amazon [+]!:uuid:9999
Third Parties: UPS [+]!:uuid:8888
In Alice's and Amazon's cloud:
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#location><$uri>&/&/"....."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#location><#digital>&/&/true
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#explicit>&/&/true
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#purpose>&/&/"...."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<$t>&/&/"2014-07-13T21:32:52"
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#privacy><#policy><$uri>&/&/"https://..."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#cookie><#policy><$uri>&/&/"https://..."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#tos><$uri>&/&/"https://..."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#short><#privacy><#notice><$uri>&/&/"https://..."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#dnt>&/&/true
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#sensitive>&/&/true
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#jurisdiction>/$ref/[=]!:uuid:1111<#jurisdiction>
[=]!:uuid:1111<#jurisdiction>&/&/"USA"
[+]!:uuid:9999<#jurisdiction>&/&/"DE"
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234 <-- copy of the receipt
[=]!:uuid:1111<#email>&/&/"alice@gmail.com"
[=]!:uuid:1111#address<#street>&/&/"Street 123"
[=]!:uuid:1111#address<#country>&/&/"DE"
[=]!:uuid:1111#address<#postal><#code>&/&/"23544"
([+]!:uuid:9999/[+]!:uuid:8888)$do/$get/[=]!:uuid:1111#address
([+]!:uuid:9999/[+]!:uuid:8888)$do/#receipt/([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234
Full Content (proposed development
Field Name | Description | Purpose/Explanation | Format of Field | Example | Legal Reference for Field | Tech Ref | Next Step | Comments | |
---|---|---|---|---|---|---|---|---|---|
DP_Domain_Accountable for Consent | URL of the domain where consent is provided Consent. If this is physical space, then physical location needs to be included, along with digital domain of service provider/data controler. | Header/Admin/entity identifier,location of domain, physical space where the consent is provided. | |||||||
Location: | is this a physical location | ||||||||
ConsentPref_ThirdParty | Yes/No share with 3rd partie | ||||||||
Third Party Sharing - Link List | A list of third parties, that data is shared with. | This is a critical element for having a consistent scope for data sharing and enabling people to manage/check third parties post consent. | html link, contact info, policy info | A format and form for Linking third parties needs to be created. | |||||
ConsentPre_etc | ConsentPref captured during the consent recording/transaction | This field is for capturing consent preferences at the point of consent. This is only used when making a live record of consent. | Comment by John; Comment by Mark etc | ||||||
Consent type: Explicit, Implied, Exception | Assumed Explicit consent fro alpha version | for live consent, this explicit, althought there are post, pre, consent notices and development which may need a different consent type. | |||||||
Data Processing consented to: Purpose | What are the top level purpose(s) for the consent | Note; There are some jurisdictions that require multiple consents for multiple purposes. | |||||||
Processor ID if different than Domain Id : Listed DP | The identification of the data processor | entity in charge | |||||||
User ID: | id (email) of the user in the consent form | non-repudiation | |||||||
Transaction ID: GUID | the specific consent ID | (or transaction id) | |||||||
Use Reference: type of use ID | Note how is this different than purpose? | ||||||||
Date:TimeStamp | time and date of consent | ||||||||
Policy URI’s: PP, TOSA, Cookies | Url of policies, these are used to grab a copy of the policies and to store them in the registry record. | ||||||||
Address & Contact details of SP | Unless different DP this should be the same as the DP | ||||||||
IP of DS | IP of person making consent - Jurisdiction of the IP address | In order to compare compliance of policy of the Service provider against the jurisdiction of the individual | |||||||
Data Type: Personal Information(PI), (SPI) Sensitive Personal Information (Y/N) | Data sensitivity (privacy category) |
Header Information
DP Domain:Domain URL
DS Consent Preferences: {array to be determined}
Processor ID: Listed DP
User ID: Consenting identifier
Transaction ID: GUID
Sequence #: 0 for new receipt +1 every time it is used
Use Reference: type of use ID
Date:TimeStamp
Consent type: Explicit, Implied, Exception
Policy URI’s: PP, TOSA, Cookies
Data Processing consented to: Purpose
Address & Contact details of DP
IP of DS
Data Type: Personal Information(PI), (SPI) Sensitive Personal Information (Y/N)
Extended By Other Services
Jurisdictional specifics
Reputations
Icons
Short Notices
Trust Frameworks
...