Next meeting of the TOS/EULA task force - February 11, 2009 20:00 UTC
0 views
Skip to first unread message
Steven Greenberg
Feb 11, 2009, 10:10:55 AM2/11/09
to dataportabi...@googlegroups.com
Next meeting of the TOS/EULA task force - February 11, 2009 20:00 UTC
Trent has once again graciously forgotten to tell me to stop using his
phone bridge, so we'll continue to take advantage of him (he pays for
this out of his own pocket-- THANK YOU TRENT).
- Skype: +9900827041975640
- Dial-Up: 1-201-793-9022 Room Code: 1975640
Steve Repetti
Feb 11, 2009, 12:23:32 PM2/11/09
to DataPortability.General
The following is provided in response to a request from the Data
Portability EULA/TOS task force. The intent is to provide the basis
for conversation related to identifying and quantifying the specific
elements that might make up a user’s DP “Bill of Rights.”
[There is a great related discussion entitled <a href=”
http://datasharingsummit.com/dsswiki/index.php?title=Bill_of_Rights”
target=_blank>“A Bill of Rights for Users of the Social Web”</a>
originated by Joseph Smarr, Robert Scoble, and Michael Arrington; and
signed by more than two dozen leading individuals]
More specifically, to me, when I go to a web site I should have a
reasonable expectation as to what I can and cannot due with the data
that I bring, create, or reference within the site. And, I should also
have reasonable understanding as to what the site owners can and
cannot due with this collection of data related to me.
On the on hand, it doesn’t really matter what those boundaries are –
provided they are disclosed up front and upheld throughout my
relationship with the site. In this manner, I can make an informed
decision as to whether or not I choose to continue. On the other
hand, there must be disclosure, transparency, and accountability for
this to work.
Ideally, I would go to a web site and there would prominently sit a
Data Portability badge that identified the points of compliance in
these areas that I am most concerned about. Display of the badge
would provide the disclosure and transparency that I seek allowing me
to make an informed decision. Likewise, display of the badge would
also demonstrate accountability since the TOS identifying allowable
usage of the badge would require compliance.
Further, the badge would not likely simply state compliance or non-
compliance, rather “degrees” of participation. In a well structured
user bill of rights, it is not likely that every site I choose to
participate in will fully support every core tenant of Data
Portability. I should be able to quickly identify which of the core
elements that most interest me relevant to the site are in fact
supported by the site.
Some of the key elements in this matter are directly related to
privacy, usage, and control. From this we can then extrapolate a
series of compliance statements that hopefully begin to take the shape
of a user’s “bill of rights.” Specifically:
Key concepts:
- Data I bring, I have the right to take away
- Data I create, I have the right to share
- I have the right to choose who can and cannot access my data
- I have the right to access my data internally and externally
Specific questions:
- User personal data is private (y/n)
- Private data is secured (y/n)
- Personal data is fully removed upon request (y/n)
- Personal data is not sold or reused without permission (y/n)
- User data is accessible outside of the website (y/n)
- User data is available using industry standard formats (which ones)
Fringe thoughts:
- Public posts can be retracted (y/n)
- Public posts can be anonymous (y/n)
There is certainly more thought required in this area, both from me
and others. Love to get everyone else’s opinions on the matter.
On Feb 11, 10:10 am, Steven Greenberg <green...@puzzlingevidence.net>
wrote:
> - *Dial-Up:* 1-201-793-9022 *Room Code:* 1975640
Portability EULA/TOS task force. The intent is to provide the basis
for conversation related to identifying and quantifying the specific
elements that might make up a user’s DP “Bill of Rights.”
[There is a great related discussion entitled <a href=”
http://datasharingsummit.com/dsswiki/index.php?title=Bill_of_Rights”
target=_blank>“A Bill of Rights for Users of the Social Web”</a>
originated by Joseph Smarr, Robert Scoble, and Michael Arrington; and
signed by more than two dozen leading individuals]
More specifically, to me, when I go to a web site I should have a
reasonable expectation as to what I can and cannot due with the data
that I bring, create, or reference within the site. And, I should also
have reasonable understanding as to what the site owners can and
cannot due with this collection of data related to me.
On the on hand, it doesn’t really matter what those boundaries are –
provided they are disclosed up front and upheld throughout my
relationship with the site. In this manner, I can make an informed
decision as to whether or not I choose to continue. On the other
hand, there must be disclosure, transparency, and accountability for
this to work.
Ideally, I would go to a web site and there would prominently sit a
Data Portability badge that identified the points of compliance in
these areas that I am most concerned about. Display of the badge
would provide the disclosure and transparency that I seek allowing me
to make an informed decision. Likewise, display of the badge would
also demonstrate accountability since the TOS identifying allowable
usage of the badge would require compliance.
Further, the badge would not likely simply state compliance or non-
compliance, rather “degrees” of participation. In a well structured
user bill of rights, it is not likely that every site I choose to
participate in will fully support every core tenant of Data
Portability. I should be able to quickly identify which of the core
elements that most interest me relevant to the site are in fact
supported by the site.
Some of the key elements in this matter are directly related to
privacy, usage, and control. From this we can then extrapolate a
series of compliance statements that hopefully begin to take the shape
of a user’s “bill of rights.” Specifically:
Key concepts:
- Data I bring, I have the right to take away
- Data I create, I have the right to share
- I have the right to choose who can and cannot access my data
- I have the right to access my data internally and externally
Specific questions:
- User personal data is private (y/n)
- Private data is secured (y/n)
- Personal data is fully removed upon request (y/n)
- Personal data is not sold or reused without permission (y/n)
- User data is accessible outside of the website (y/n)
- User data is available using industry standard formats (which ones)
Fringe thoughts:
- Public posts can be retracted (y/n)
- Public posts can be anonymous (y/n)
There is certainly more thought required in this area, both from me
and others. Love to get everyone else’s opinions on the matter.
On Feb 11, 10:10 am, Steven Greenberg <green...@puzzlingevidence.net>
wrote:
> Next meeting of the TOS/EULA task force - February 11, 2009 20:00 UTC
> Trent has once again graciously forgotten to tell me to stop using his phone
> bridge, so we'll continue to take advantage of him (he pays for this out of
> his own pocket-- THANK YOU TRENT).
>
> - *Skype:* +9900827041975640
> Trent has once again graciously forgotten to tell me to stop using his phone
> bridge, so we'll continue to take advantage of him (he pays for this out of
> his own pocket-- THANK YOU TRENT).
>
> - *Dial-Up:* 1-201-793-9022 *Room Code:* 1975640
Steve Repetti
Feb 11, 2009, 12:26:13 PM2/11/09
to DataPortability.General
Also, I will unfortunately be unable to attend the meeting this
afternoon. If it's not too much trouble, it would be great if someone
could please post a summary afterwards.
Thanks,
Steve Repetti.
www.radwebtech.com
> > - *Dial-Up:* 1-201-793-9022 *Room Code:* 1975640- Hide quoted text -
>
> - Show quoted text -
afternoon. If it's not too much trouble, it would be great if someone
could please post a summary afterwards.
Thanks,
Steve Repetti.
www.radwebtech.com
>
> - Show quoted text -
Iain Henderson
Feb 11, 2009, 5:02:42 PM2/11/09
to dataportabi...@googlegroups.com
Sorry folks, I did not have this call on my schedule so missed it - when's the next one?
Cheers
Iain
Christian Scholz / Tao Takashi (SL)
Feb 11, 2009, 5:14:58 PM2/11/09
to dataportabi...@googlegroups.com
On Wed, Feb 11, 2009 at 11:02 PM, Iain Henderson <iain.he...@gmail.com> wrote:
Sorry folks, I did not have this call on my schedule so missed it - when's the next one?
In 2 weeks, same time.
-- Christian
CheersIainOn Wed, Feb 11, 2009 at 3:10 PM, Steven Greenberg <gree...@puzzlingevidence.net> wrote:
Next meeting of the TOS/EULA task force - February 11, 2009 20:00 UTCTrent has once again graciously forgotten to tell me to stop using his phone bridge, so we'll continue to take advantage of him (he pays for this out of his own pocket-- THANK YOU TRENT).
- Skype: +9900827041975640
- Dial-Up: 1-201-793-9022 Room Code: 1975640
--
Christian Scholz
http://mrtopf.de/blog
New Podcast: http://datawithoutborders.net
Reply all
Reply to author
Forward
0 new messages