Consent: Difference between revisions

From IDESG Wiki
Jump to navigation Jump to search
 
(5 intermediate revisions by the same user not shown)
Line 4: Line 4:
==Context==
==Context==
* The term Resource Owner (RO) is often used for the entity that control release of information. That term is misleading in that many controllers do not, in fact or in law, own the data.
* The term Resource Owner (RO) is often used for the entity that control release of information. That term is misleading in that many controllers do not, in fact or in law, own the data.
* Notice an consent have teviewed by an eminent committee [http://www3.weforum.org/docs/WEF_Redesigning_Data_Privacy_Report_2020.pdf World Economic Forum] which produced:
* Notice and consent have reviewed by an eminent committee from the [http://www3.weforum.org/docs/WEF_Redesigning_Data_Privacy_Report_2020.pdf World Economic Forum] which summarized the situation as:
<Blockquote>The model of Notice & Consent, therefore, is no longer relegated strictly to the legal realm; it is inherently a human-technology interaction problem, one that requires the expertise of those professionals and academics versed in human-computer interaction issues and, ideally, public  
<Blockquote>The model of Notice & Consent, therefore, is no longer relegated strictly to the legal realm; it is inherently a human-technology interaction problem, one that requires the expertise of those professionals and academics versed in human-computer interaction issues and, ideally, public policy and ethics.  
policy and ethics.  
As discussed above, taking a step back to adopt a global, technologically neutral approach that  
As discussed above, taking a step back to adopt a global, technologically neutral approach that  
is ethical, includes an awareness of society and involves industry is key. And, critically, professional UX designers – who fundamentally understand how people interact with technology – will need to tap into design thinking to try to address this intractable problem.
is ethical, includes an awareness of society and involves industry is key. And, critically, professional UX designers – who fundamentally understand how people interact with technology – will need to tap into design thinking to try to address this intractable problem.
How do we move forward?
How do we move forward?
  Industry must havebe included in this conversation at all stages or we risk  
  Industry must be included in this conversation at all stages or we risk  
a race towards compliance for compliance’s sake.
a race towards compliance for compliance’s sake.
Redesigning Data Privacy: Reimagining Notice & Consent for human-technology interaction</Blockquote>
</Blockquote>
Or in other words, the creation of any standard inevitably results in a race to the bottom, where every participants does only the minimum necessary to meet the standards. But this has been true of any standard, even, like ladders, which included the manufacturers of ladders in the standard development.


==Problems==
==Problems==
* Advertisers and social media are perfectly happy with the current environment.
* Advertisers and social media are perfectly happy with the current environment.
* The major problem with determining the [[Intent]] of the user is that the users are not willing to spend much time entering the data needed to be sure that their intent has been accurately captured.


==Solutions==
==Solutions==
* The WEF report mentioned above also suggested the following:
==References==
==References==
* See also wiki page [[Consent Grant]]
* See also wiki page [[Consent Grant]]

Latest revision as of 05:02, 3 August 2020

Full Title or Meme

In the context of Identity Management Consent will mean the determination of the Intent of a Subject to Authorize the release of data that might be in the message or on a Resource Server whose release is controlled by the Subject.

Context

  • The term Resource Owner (RO) is often used for the entity that control release of information. That term is misleading in that many controllers do not, in fact or in law, own the data.
  • Notice and consent have reviewed by an eminent committee from the World Economic Forum which summarized the situation as:

The model of Notice & Consent, therefore, is no longer relegated strictly to the legal realm; it is inherently a human-technology interaction problem, one that requires the expertise of those professionals and academics versed in human-computer interaction issues and, ideally, public policy and ethics.

As discussed above, taking a step back to adopt a global, technologically neutral approach that is ethical, includes an awareness of society and involves industry is key. And, critically, professional UX designers – who fundamentally understand how people interact with technology – will need to tap into design thinking to try to address this intractable problem.

How do we move forward? Industry must be included in this conversation at all stages or we risk a race towards compliance for compliance’s sake.

Or in other words, the creation of any standard inevitably results in a race to the bottom, where every participants does only the minimum necessary to meet the standards. But this has been true of any standard, even, like ladders, which included the manufacturers of ladders in the standard development.

Problems

  • Advertisers and social media are perfectly happy with the current environment.
  • The major problem with determining the Intent of the user is that the users are not willing to spend much time entering the data needed to be sure that their intent has been accurately captured.

Solutions

  • The WEF report mentioned above also suggested the following:

References