NOTE-P3P10-principles-19980721
13.2 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
<!doctype HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<META NAME="GENERATOR" CONTENT="Mozilla/4.03 [en] (Win95; U) [Netscape]">
<!-- Created with AOLpress/2.0 -->
<TITLE>P3P Guiding Principles</TITLE>
</HEAD>
<BODY BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#0000EE" VLINK="#551A8B" ALINK="#FF0000">
<DIV ALIGN=right>
<H3>
<A HREF="http://www.w3.org/"><IMG ALT="W3C" BORDER=0 ALIGN=LEFT SRC="../../Icons/w3c_home"></A>NOTE-P3P10-principles-19980721
</H3>
</DIV>
<CENTER>
<H1>
P3P Guiding Principles
</H1>
</CENTER>
<CENTER>
<H3>
W3C NOTE 21-July-1998
</H3>
</CENTER>
<DL>
<DT>
<B>This Version:</B>
<DD>
<A HREF="http://www.w3.org/TR/1998/NOTE-P3P10-principles-19980721">http://www.w3.org/TR/1998/NOTE-P3P10-principles-19980721</A>
<DT>
<B>Latest Version:</B>
<DD>
<A HREF="http://www.w3.org/TR/NOTE-P3P10-principles">http://www.w3.org/TR/NOTE-P3P10-principles</A>
<DT>
<B>Previous Version:</B>
<DD>
<A HREF="http://www.w3.org/TR/1998/NOTE-P3P10-principles-19980710">http://www.w3.org/TR/1998/NOTE-P3P10-principles-19980710</A>
<DT>
<B>Editor:</B>
<DD>
<A HREF="http://www.research.att.com/~lorrie/">Lorrie Faith Cranor</A>
(AT&T Labs-Research)
<A HREF="mailto:lorrie@research.att.com">lorrie@research.att.com</A>
<DT>
<B>Signatories:</B>
<DD>
[See <A HREF="#Signatories">below</A>]
</DL>
<P>
<SMALL><A HREF="http://www.w3.org/Consortium/Legal/ipr-notice#Copyright">Copyright</A>
© 1998 <A HREF="http://www.w3.org">W3C</A>
(<A HREF="http://www.lcs.mit.edu">MIT</A>,
<A HREF="http://www.inria.fr/">INRIA</A>,
<A HREF="http://www.keio.ac.jp/">Keio</A> ), All Rights Reserved. W3C
<A HREF="http://www.w3.org/Consortium/Legal/ipr-notice#Legal Disclaimer">liability
,</A>
<A HREF="http://www.w3.org/Consortium/Legal/ipr-notice#W3C Trademarks">trademark</A>,
<A HREF="http://www.w3.org/Consortium/Legal/copyright-documents">document
use </A>and
<A HREF="http://www.w3.org/Consortium/Legal/copyright-software">software
licensing </A>rules apply.</SMALL>
<H2>
Status of This Document
</H2>
<P>
This document is part of the <A HREF="http://www.w3.org/P3P">Platform for
Privacy Preferences Project Activity</A>. This document describes the intent
of P3P development and recommends guidelines regarding the responsible use
of P3P technology. It is one section of the P3P Implementation Guide. Comments
to the editor or endorsements are welcome.
<P>
<HR>
<P>
The Platform for Privacy Preferences Project (P3P) has been designed to be
flexible and support a diverse set of user preferences, public policies,
service provider polices, and applications. This flexibility will provide
opportunities for using P3P in a wide variety of innovative ways that its
designers had not imagined. The P3P Guiding Principles were created in order
to: express the intentions of the undersigned members of the P3P working
groups when designing this technology and suggest how P3P can be used most
effectively in order to maximize privacy and user confidence and trust on
the Web. In keeping with our goal of flexibility, this document does not
place requirements upon any party. Rather, it makes recommendations about
1) what <I>should</I> be done to be consistent with the intentions of the
P3P designers and 2) how to maximize user confidence in P3P implementations
and Web services. We invite organizations, individuals, policy-makers, and
companies who use P3P to join us in supporting these principles.
<H2>
Information Privacy
</H2>
<P>
P3P has been designed to promote privacy and trust on the Web by enabling
service providers to disclose their information practices, and enabling
individuals to make informed decisions about the collection and use of their
personal information. P3P user agents work on behalf of individuals to reach
agreements with service providers about the collection and use of personal
information. Trust is built upon the mutual understanding that each party
will respect the agreement reached.
<P>
Service providers should preserve trust and protect privacy by applying relevant
laws and principles of data protection and privacy to their information
practices. The following is a list of privacy principles and guidelines that
helped inform the development of P3P and may be useful to those who use P3P:
<UL>
<LI>
<A HREF="http://www.cdma.org/new/ethics_2.html#Private">CDMA Code of Ethics
& Standards of Practice: Protection of Personal Privacy</A>
<LI>
<A HREF="http://www.privacy.org/pi/intl_orgs/coe/dp_convention_108.txt">1981
Council of Europe Convention For the Protection of Individuals with Regard
to Automatic Processing of Personal Data</A>
<LI>
<A HREF="http://www.csa.ca/">CSA</A>--Q830-96 Model Code for the Protection
of Personal Information
<LI>
<A HREF="http://europa.eu.int/comm/dg15/en/media/dataprot/dir9546.htm">Directive
95/46/EC of the European Parliament and of the Council of 24 October 1995
on the protection of individuals with regard to the processing of personal
data and on the free movement of such data</A>
<LI>
<A HREF="http://www.the-dma.org/busasst6/busasst-guidelineshome.shtml">The
DMA's Marketing Online Privacy Principles & Guidance and the The DMA's
Ethical Business Practice Guidelines</A>
<LI>
<A HREF="http://www.epic.org/privacy/consumer/code_fair_info.html">HEW Fair
Information Principles</A>
<LI>
<A HREF="http://www.oecd.org/dsti/sti/it/secur/prod/PRIV-EN.HTM">OECD Guidelines
on the Protection of Privacy and Transborder Flows of Personal Data</A>
<LI>
<A HREF="http://www.privacyalliance.org/resources/ppguidelines.shtml">Online
Privacy Alliance Guidelines for Online Privacy Policies</A>
</UL>
<P>
In addition, service providers and P3P implementers should recognize and
address the special concerns surrounding children's privacy.
<H2>
Notice and Communication
</H2>
<P>
Service providers should provide timely and effective notices of their
information practices, and user agents should provide effective tools for
users to access these notices and make decisions based on them.
<P>
Service providers should:
<UL>
<LI>
Communicate explicitly about data collection and use, identifying the purpose
for which personal information is collected and the extent to which it may
be shared.
<LI>
Use P3P proposals to communicate about all information they propose to collect
through a Web interaction.
<LI>
Prominently post clear, human-readable privacy policies.
</UL>
<P>
User agents should:
<UL>
<LI>
Provide mechanisms for displaying a service's information practices to users.
<LI>
Provide users an option that allows them to easily preview and agree to or
reject each transfer of personal information that the user agent facilitates.
<LI>
Not be configured by default to transfer personal information to a service
provider without the user's consent.
<LI>
Inform users about the privacy-related options offered by the user agent.
</UL>
<H2>
Choice and Control
</H2>
<P>
Users should be given the ability to make meaningful choices about the
collection, use, and disclosure of personal information. Users should retain
control over their personal information and decide the conditions under which
they will share it.
<P>
Service providers should:
<UL>
<LI>
Limit their requests to information necessary for fulfilling the level of
service desired by the user. This will reduce user frustration, increase
trust, and enable relationships with many users, including those who may
wish to have an anonymous, pseudonymous, customized, or personalized relationship
with the service.
<LI>
Obtain informed consent prior to the collection and use of personal information.
<LI>
Provide information about the ability to review and if appropriate correct
personal information.
</UL>
<P>
User agents should:
<UL>
<LI>
Include configuration tools that allow users to customize their preferences.
<LI>
Allow users to import and customize P3P preferences from trusted parties.
<LI>
Transfer personal information only to sites with which the user has reached
an agreement authorizing such transfers or when authorized by the user.
<LI>
Present configuration options to users in a way that is neutral or biased
towards privacy.
<LI>
Be usable without requiring the user to store user personal information as
part of the installation or configuration process.
</UL>
<H2>
Fairness and Integrity
</H2>
<P>
Service providers should treat users and their personal information with
fairness and integrity. This is essential for protecting privacy and promoting
trust.
<P>
Service providers should:
<UL>
<LI>
Accurately represent their information practices in a clear and unambiguous
manner -- never with the intention of misleading users.
<LI>
Use information only for the stated purpose and retain it only as long as
necessary.
<LI>
Ensure that information is accurate, complete, and up-to-date.
<LI>
Disclose accountability and means for recourse.
</UL>
<P>
User agents should:
<UL>
<LI>
Act only on behalf of the user according to the preferences specified by
the user.
</UL>
<H2>
Security
</H2>
<P>
While P3P itself does not include security mechanisms, it is intended to
be used in conjunction with security tools. Users' personal information should
always be protected with reasonable security safeguards in keeping with the
sensitivity of the information.
<P>
Service providers should:
<UL>
<LI>
Protect users' personal information with reasonable security safeguards in
keeping with the sensitivity of the information.
<LI>
Use appropriate trusted protocols for the secure transmission of data.
</UL>
<P>
User agents should:
<UL>
<LI>
Provide mechanisms for protecting the personal information that users store
in their P3P data repositories.
<LI>
Use appropriate trusted protocols for the secure transmission of data.
<LI>
Warn users when an insecure transport mechanism is being used.
</UL>
<P>
<HR>
<H2>
Definitions
</H2>
<P>
The following definitions reflect the way these terms are used in this document.
<P>
<B>personal information</B> - Data relating to an identified or identifiable
user that is transferred to a service under a P3P agreement or stored in
a user's P3P data repository. Note, the term personal information in this
document does not refer to information exchanged in the course of interactions
inherent to the operation of the HTTP protocol or related protocols.
<P>
<B>preferences</B> - A set of rules that determines what action(s) a user
agent will take or allow when involved in an interaction or negotiation with
a service. Users' P3P preferences should reflect their attitudes towards
the use and disclosure of their personal information.
<P>
<B>proposal</B> - A series of P3P statements that describe the privacy-related
terms (practices) under which a service proposes to interact with a user
or user agent.
<P>
<B>service provider</B> - The person or organization that offers information,
products, or services from a Web site, collects information, and is responsible
for the representations made in a practice statement. Note, the term service
provider in this document does not refer to Internet Service Providers (ISPs),
except where ISPs also provide services from Web sites.
<P>
<B>user</B> - An individual (or group of individuals acting as a single entity)
on whose behalf a service is accessed and for which personal data exists.
<P>
<B>user agent</B> - A program that acts on a user's behalf. The agent may
act on preferences (rules) for a broad range of purposes, such as content
filtering, trust decisions, or privacy. For P3P purposes, a user agent acts
on a user's privacy preferences. Users may use different user agents at different
times.
<P>
<HR>
<H1>
<A NAME="Signatories">Signatories</A>
</H1>
<P>
<UL>
<LI>
Azer Bestavros, Ph.D., Senior Lead Technologist, Bowne Internet Solutions
<LI>
Ann Cavoukian, Ph.D., Information and Privacy Commission Ontario Canada,
Commissioner; Participant in P3P Vocabulary Harmonization Working Group
<LI>
Lorrie Faith Cranor, D.Sc., P3P Interest Group Co-Chair; AT&T Labs-Research
<LI>
Josef Dietl, W3C
<LI>
Daniel Jaye, CTO, Engage Technologies
<LI>
Marit Köhntopp, Privacy Commissioner of Land Schleswig-Holstein, Germany
<LI>
Tara Lemmey, Chairman, Narrowline; TrustE Board Member
<LI>
Dr. Steven Lucas, CIO, MatchLogic
<LI>
Massimo Marchiori, P3P editor; World Wide Web Consortium
<LI>
Dave Marvit, Internet Strategist, Fujitsu Labs
<LI>
Maclen Marvit, VP Engineering, Narrowline Inc.; Member P3P syntax working
group
<LI>
Yossi Matias, PhD, Department of Computer Science, Tel Aviv University
<LI>
James S. Miller, PhD, MIT Lab for Computer Science
<LI>
Deirdre Mulligan, Staff Counsel Center for Democracy and Technology; Coordinator
of the Internet Privacy Working Group; and, Participant in P3P Vocabulary
Harmonization Working Group
<LI>
Joseph Reagle, P3P Interest Group Co-Chair; Policy Analyst, W3C
<LI>
Drummond Reed, Co-Founder, Intermind
<LI>
Lawrence C. Stewart, Chief Scientist, Open Market, Inc.
</UL>
<P>
</BODY></HTML>