Versions Compared

Old Version 8

changes.mady.by.user Mark Lizar

Saved on

compared with

New Version 9

changes.mady.by.user John Wunderlich

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Core Spec: Minimum Viable Consent Receipt (MVCR)- Specification

Related Documents:

...

Draft, background document can be found here, 

Minimum Viable Consent Requirements

By its format and structure the MVCR is intended to provide the basic information to review further the compliance of policy for consent. The MVCR is a record in a standard format. As a result it can be further extended by jurisdiction, data type and additional context. A basic consent receipt will assure a basic level of general regulatory compliance for consent.  It will do this by being open, accessible, extensible and providing a standard format to develop a higher quality of consent and policy usability, data privacy law usability.

MVC Contents

This may end up being an XML document, but for now some basic Key:value pairs will provide an initial framework

...

Proposed minimum for an alpha test (Respect Network XDI Consent Receipt)


Consent Receipt

Field NameDescriptionPurpose/ExplanationFormat example (XDI)
Data SubjectName or pseudonym of the userDepending on the context could be full name, username, or pseudonymData Subject: Alice [=]!:uuid:1111
Data ControllerName of the entity issuing the receiptShould be the entity/organization operating the service/web site that is collecting personal informationData Controller: Amazon [+]!:uuid:9999
Third PartiesNames of third parties involved in the transactionAn example would be a transaction with Amazon where the fulfilment of the order is done be UPSThird Parties: UPS [+]!:uuid:9999
    
    
    
    
    
    


 

Data Subject: Alice  [=]!:uuid:1111
Data Controller: Amazon  [+]!:uuid:9999
Third Parties: UPS  [+]!:uuid:8888

 

 

In Alice's and Amazon's cloud:

 

 

([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#location><$uri>&/&/"....."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#location><#digital>&/&/true
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#explicit>&/&/true
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#purpose>&/&/"...."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<$t>&/&/"2014-07-13T21:32:52"
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#privacy><#policy><$uri>&/&/"https://..."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#cookie><#policy><$uri>&/&/"https://..."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#tos><$uri>&/&/"https://..."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#short><#privacy><#notice><$uri>&/&/"https://..."
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#dnt>&/&/true
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#sensitive>&/&/true
([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234<#jurisdiction>/$ref/[=]!:uuid:1111<#jurisdiction>
[=]!:uuid:1111<#jurisdiction>&/&/"USA"
[+]!:uuid:9999<#jurisdiction>&/&/"DE"

 

In Amazon's clouds:

 

 

([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234  <-- copy of the receipt
[=]!:uuid:1111<#email>&/&/"alice@gmail.com"
[=]!:uuid:1111#address<#street>&/&/"Street 123"
[=]!:uuid:1111#address<#country>&/&/"DE"
[=]!:uuid:1111#address<#postal><#code>&/&/"23544"
([+]!:uuid:9999/[+]!:uuid:8888)$do/$get/[=]!:uuid:1111#address
([+]!:uuid:9999/[+]!:uuid:8888)$do/#receipt/([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234

 

Note:

"there is a relationship between 9999 and 8888. in that relationship we have a link contract ($do). the link contract's associated #receipt is under ([=]!:uuid:1111/[+]!:uuid:9999)[#receipt]!:uuid:1234

 

 

Generic schema: (entity1/entity2) = Entity 1 and entity 2 have a relationship.

 

UUID:1234 = transaction receipt identifier

 




Full Content (proposed development

Field NameDescriptionPurpose/ExplanationFormat of FieldExampleLegal Reference for Field

Tech

Ref

Next StepComments 
DP_Domain_Accountable for ConsentURL of the domain where consent is provided Consent. If this is physical space, then physical location needs to be included, along with digital domain of service provider/data controler. Header/Admin/entity identifier,location of domain, physical space where the consent is provided.       
Location:is this a physical location        
ConsentPref_ThirdPartyYes/No share with 3rd partie        
Third Party Sharing - Link ListA list of third parties, that data is shared with.This is a critical element for having a consistent scope for data sharing and enabling people to manage/check third parties post consent.html link, contact info, policy info   A format and form for Linking third parties needs to be created.  
ConsentPre_etcConsentPref captured during the consent recording/transactionThis field is for capturing consent preferences at the point of consent. This is only used when making a live record of consent.     Comment by John; Comment by Mark etc 
Consent type: Explicit, Implied, ExceptionAssumed Explicit consent fro alpha versionfor live consent, this explicit, althought there are post, pre, consent notices and development which may need a different consent type.       
Data Processing consented to: PurposeWhat are the top level purpose(s) for the consentNote; There are some jurisdictions that require multiple consents for multiple purposes.       
Processor ID if different than Domain Id : Listed DPThe identification of the data processorentity in charge       
User ID:id (email) of the user in the consent formnon-repudiation       
Transaction ID: GUIDthe specific consent ID(or transaction id)       
Use Reference: type of use ID       Note how is this different than purpose? 
Date:TimeStamptime and date of consent        
Policy URI’s: PP, TOSA, CookiesUrl of policies, these are used to grab a copy of the policies and to store them in the registry record.        
Address & Contact details of SPUnless different DP this should be the same as the DP        
IP of DSIP of person making consent - Jurisdiction of the IP addressIn order to compare compliance of policy of the Service provider against the jurisdiction of the individual       
Data Type: Personal Information(PI), (SPI) Sensitive Personal Information (Y/N)Data sensitivity (privacy category)        


Header Information

  • DP Domain:Domain URL

  • DS Consent Preferences: {array to be determined}

  • Processor ID: Listed DP

  • User ID: Consenting identifier

  • Transaction ID: GUID

  • Sequence #: 0 for new receipt +1 every time it is used

  • Use Reference: type of use ID

  • Date:TimeStamp

  • Consent type: Explicit, Implied, Exception

  • Policy URI’s: PP, TOSA, Cookies

  • Data Processing consented to: Purpose

  • Address & Contact details of DP

  • IP of DS

  • Data Type: Personal Information(PI), (SPI) Sensitive Personal Information (Y/N)

Extended By Other Services

  • Jurisdictional specifics

  • Reputations

  • Icons

  • Short Notices

  • Trust Frameworks

...