The Kantara Initiative Advanced Notice & Consent Receipt (ANCR) Work Group continues the effort that produced the Consent Receipt v1.1, incorporated into ISO/IEC 29184 Online Privacy Notices and Consent in 2020 and the forthcoming ISO/IEC 27560 Consent Record Information Structure. This is being extended in the WG presently with work on an Open Notice Controller Credential and Transparency Performance Indicators (TPIs) for digital privacy conformance. Recently, the WG submitted
comments to the Federal Trade Commission on its Advanced Notice of Proposed Rulemaking on Commercial Surveillance and Data Security. The WG advocated for the use of 2 Factor Notice, notice of risk and proof of notice. They commented that - just like the process the FTC itself uses in rule-making - the same 2FN should apply on the Internet. The notices and receipts generated provide co-governance and a form of enforcement innovation through transparency in the notice. TPIs and Open Notice Controller Credential use the ISO standards and laws relevant to jurisdictions such as COE 108+, GDPR, as well as the growing number of regulations that always require notice and
transparency. The specifications drawn up by the ANCR WG provide mechanisms to implement legal and technical standards for transparency that supersede simple Terms and Conditions’, 'user licenses’, ‘privacy policies’ and ‘data sharing agreements’. The goal is to specify an active, personal, technical object for managing the rules of data and its consented exchange. On January 27th, as part of International Privacy Week, the ANCR WG held a workshop in conjunction with the recently launched Digital Transparency Lab and the IEEE Digital Privacy Community. They discussed data control and interoperability from a human
perspective and will be sharing further updates in due course.
Why not join our Work Group and help us ensure the development of digital identity solutions that protect and enhance privacy for everyone. Sign up here |