05_P_PL: Inform users of Verifier policies
Statement: Providers must communicate to users any attestations associated with a verifier
Review Meetings:
Status: Draft
Inform users of verifier policies | |
---|---|
Statement (Single phrase or sentence) | Wallet [sic] Providers (Holder Agent) must communicate to the Holder any attestations about data use associated with a verifier in the context of the transaction. |
Description | When a Holder Agent receives attestations from a verifier those attestations must be made available to the Holder. To inform users of a verifiers use-case and retention policy, along with the data requested - the provider should communicate to users how the verifier has claimed they will use the data and how they expect to retain it. |
Scope (applies to) | Part A: Verifiers Part B: Issuers Part C: Providers |
Select the Primary Consideration | CC (Consent and Choice) PL (Purpose legitimacy and specification) CL (Collection limitation) DM (Data minimization) UR (Use, retention, and disclosure limitation) AQ (Accuracy and quality) OT (Openness, transparency, and access) IA (Individual access & participation) AC (Accountability) IS (Information Security) PS (Privacy compliance) |
Reference | 05_P_PL |
Other considerations | CC (Consent and Choice) PL (Purpose legitimacy and specification) CL (Collection limitation) DM (Data minimization) UR (Use, retention, and disclosure limitation) AQ (Accuracy and quality) OT (Openness, transparency, and access) IA (Individual access & participation) AC (Accountability) IS (Information Security) PS (Privacy compliance) |
Related Requirements | |
Explanatory Notes (Text or Link) | Add notes about context and cognitive overload vis-a-vis UX |