...
For Operational Transparency
Version: 0.8.8.3.1
Document Date: Aug 24, 2022
...
In this specification PII Principles manage consent and identity systems manage a permission grant defined by the notified purpose and what people expect in context. This specification focuses on transparency of control, with extensions for extending this transparency to services with a purpose specification protocol as outlined in the attached Annex. Impacting security to reduce and eliminate the exchange and exposure of PII, its need for protection and it’s future attack surfaces.
Abstract:
Currently, when online service are involved, the PII Principal (referred to as the Data Subject or Individual in this proposed standard) is unable to see who is in control of processing their personal data before it is processed, shared or disclosed. No way to assert authority upfront, to determine, imply or negotiate the conditions of data processing, identifier generation, its management or to even establish a trust protocol to engage with.
...
Version | Date | Summary of Substantive Changes | |
0.1 DRAFT | 2021-02-28 | Initial v1.1 draft | |
0.5 | 2022-02-02 | Draft – updating scope to Notice and eConsent | |
0.8 | 2022-07-04 | Full outline / 70% drafted | |
0.8.5 | 2022-08-04 | Outline 100% Draft - Posted to Kantara Wiki | |
8.8.2 | Annex Updates | ||
8.8.3 | Restructured Sections and schema, cleaned schema up a little – practice what preaching by making spec structural human centric | ||
8.8.3.1 | 2022-08-24 | Operational Privacy - Notice Record - | |
8.8.5 | full reference draft | ||
8.8.9 | Annex | ||
1
I