Status: CANDIDATE
Optional comments about the requirement may be entered here
Item | Description |
---|---|
Statement (Single phrase or sentence) | Verifiers must attest their use-cases - which in turn defines the data they will need to collect and its retention policy |
Description | Verifiers must share in a public forum which data elements they will collect and how they expect to retain and use the data. This assertion should be associated with their form of identification. This will enable providers/users to understand in advance of any presentations what the implications of sharing are and ensure broader accountability. |
Scope (applies to) |
|
Select the Primary Consideration |
|
Other considerations |
|
Select the Identifiers |
|
Reference (Scope_Consideration_Ref #) | |
Related Requirements | |
Explanatory Notes (Text or Link) |
Reference
Privacy Principles
For descriptions see ISO/IEC 29100
# | Abbreviation | Principle |
---|---|---|
1 | CC | Consent and Choice |
2 | PL | Purpose legitimacy and specification |
3 | CL | Collection limitation |
4 | DM | Data minimization |
5 | UR | Use, retention, and disclosure limitation |
6 | AQ | Accuracy and quality |
7 | OT | Openness, transparency, and access |
8 | IA | Individual access & participation |
9 | AC | Accountability |
10 | IS | Information Security |
11 | PS | Privacy compliance |