/
2017-09-28 Meeting notes (CR)

2017-09-28 Meeting notes (CR)

Dec 12, 2019

Date

2017-09-28

Status of Minutes

Approved

Approved at: 2019-12-12 Meeting notes (CR) DRAFT

Attendees

Voting

 

Non-Voting

  • David Turner

  • Tom Jones

  • Colin Wallis

  • Dorota Filipczuk

  • Chris Cooper

Quorum Status

Meeting was << status>>

 

 

Voting participants

Participant Roster (2016) - Quorum is 5 of 8 as of 2017-08-24

Iain Henderson, Mary Hodder, Harri Honko, MarkLizar, Jim Pasquale, John Wunderlich, Andrew Hughes, Rupert Graves

Discussion Items

Time

Item

Who

Notes

Time

Item

Who

Notes

4 mins

  • Roll call

  • Agenda bashing

@Former user (Deleted)

  •  

1 min

  • Organization updates

All

Please review these blogs offline for current status on Kantara and all the DG/WG:

 

5 min

Discuss 'sprint' process diagram

David

 What is left to do for v1.1?

  • Sprint 5 resolution - issues will be closed - the Appendix listing examples will be moved into a different document/wiki

  • Sprint 6

    • The remaining issues

    • Looking to the end of October for completion of a stable draft

 

 

10 min

Discuss work backlog priorities for CR v1.1

David

Github Issues: https://github.com/KantaraInitiative/CISWG/issues

  • David wants to close off the issue of multiple 'Data Controller'

    • Some regulations allow the possibility of having more than one Data Controller - so the CR v1.1 has to be able to support this

    • General consensus on the call

  • Discussion on #80

    • Leave it as it is for this version

    • Future implementations may wish to declare very specific 'types' ofconsentthat are specifically bound to other things

    • RG: does this section include 'soft consent'?

      • Discussion - perhaps the discussion is more about pseudonymity versus identified entities

      • This is a longer discussion about device fingerprints being used asindentifyingdata

  • #106

    • AI: ACH - Need a blurb "about Kantara"

30 min

Draft of publication synopsis for new WG

Andrew

The purpose of the Consent Management Solutions – Best Current Practices publication is to establish an open standard of good practice for the management of an individual’s consent to process their personal data in electronic systems. The publication describes the practices used by leading organizations to manage the full lifecycle of an individual’s consent to process their personal data. 

Proposed Table of Contents

  • Introduction

  • Scope

  • Notations and Abbreviations

  • Terms and Definitions

  • Actors and Roles

  • Best Current Practices – Consent management solutions

    • General

    • Consent Management Life Cycle

    • Regulations

    • Privacy Notice

    • Collection of consent

    • Management of consent records

    • Interoperability of consent records

  • Use Cases

  • Considerations (Non-Normative)

  • Document Change History

  • Bibliography

  • Contributors

Discussion

  • There is a new wiki page that will hold all the known implementations of Consent Receipts

    • Includes a space to describe how the implementation uses the Kantara CR spec

  • Discussion about Consent Management Solutions BCP TOC

    • Link the BCP into Data Governance and Data Management practices

      • This is a pre-requisite