https://wiki.idesg.org/index.php?action=history&feed=atom&title=Privacy_Req_15Privacy Req 15 - Revision history2026-05-06T09:57:25ZRevision history for this page on the wikiMediaWiki 1.38.4https://wiki.idesg.org/index.php?title=Privacy_Req_15&diff=5770&oldid=prevOmaerz: 8 revisions imported: Initial Upload of old pages from IDESG Wiki2018-06-28T04:02:59Z<p>8 revisions imported: Initial Upload of old pages from IDESG Wiki</p>
<table style="background-color: #fff; color: #202122;" data-mw="interface">
<tr class="diff-title" lang="en">
<td colspan="1" style="background-color: #fff; color: #202122; text-align: center;">← Older revision</td>
<td colspan="1" style="background-color: #fff; color: #202122; text-align: center;">Revision as of 04:02, 28 June 2018</td>
</tr><tr><td colspan="2" class="diff-notice" lang="en"><div class="mw-diff-empty">(No difference)</div>
</td></tr></table>Omaerzhttps://wiki.idesg.org/index.php?title=Privacy_Req_15&diff=5769&oldid=prevMary Hodder: updated SG and roles for Phase II2018-06-13T20:56:57Z<p>updated SG and roles for Phase II</p>
<p><b>New page</b></p><div>''<< Back to [[Baseline_Functional_Requirements_v1.0|Baseline Functional Requirements Index]]''<br />
<br />
== PRIVACY-15. ATTRIBUTE SEGREGATION ==<br />
Wherever feasible, identifier data MUST be segregated from [[IDEF Glossary ATTRIBUTES|attribute]] data.<br />
<br />
=== SUPPLEMENTAL GUIDANCE ===<br />
<br />
User attributes can be used to narrow the pool of potential real world human beings to the point where the real world identity can be determined. That said, there are a set of user static identifiers which must be protected from disclosure above more general user information. An example of the identifiers that need special protection include:<br />
<br />
1. Legal Name <br><br />
2. Social Security Number <br><br />
3. Street address of domicile <br><br />
4. Cell phone number <br><br />
5. Email address <br><br />
<br />
When recent identity protocols (like OpenID Connect) are used, it is technically possible to authenticate a user with no user identifiers or attributes at all. In that case the user identifiers in the protocol between digital entities should be opaque to the extent that any party outside of the Identity Provider and the Relying party will not be able to use those identifiers in any other context. In that case other baseline requirements will apply.<br />
<br />
<br />
=== REFERENCES ===<br />
Further reference materials to aid organizations interested in conforming to these Requirements can be found at the wiki page [[Supplemental Privacy Guidance]]; this has been archived at https://workspace.idesg.org/kws/public/download.php/56/Supplemental-Privacy-Guidance.docx<br />
<br />
=== APPLIES TO ACTIVITIES ===<br />
[[IDEF Functional Model REGISTRATION|REGISTRATION]], [[IDEF Functional Model CREDENTIALING|CREDENTIALING]], [[IDEF Functional Model AUTHORIZATION|AUTHORIZATION]]<br />
<br />
=== KEYWORDS ===<br />
[[IDEF Keywords ARCHITECTURE|ARCHITECTURE]], [[IDEF Glossary ATTRIBUTES|ATTRIBUTE]], [[IDEF Keywords IDENTIFIERS|IDENTIFIER]], [[IDEF Keywords PRIVACY|PRIVACY]], [[IDEF Keywords PROCESS|PROCESS]]<br />
<br />
=== APPLIES TO ROLES ===<br />
1 - [[IDEF Glossary RELYING PARTIES|RELYING PARTIES]] <br><br />
4 – Intermediaries <br><br />
<br />
<br />
----<br />
----<br />
Quick Links: [[SALS]] | [[Baseline Functional Requirements v1.0]] | [[Glossary]] |<br />
<br />
----<br />
----</div>Mary Hodder