[Global_industry_committee] Preliminary FTC Staff Report - Protecting Consumer Privacy in an Era of Rapid Change

David Campbell dcampbell at owasp.org
Tue Dec 21 17:04:44 EST 2010

FYI one of the guys who authored this report is an associate of mine. 
I'm trying to find funding to get him to Portugal.


On 12/17/2010 7:49, Colin Watson wrote:
> I'm less certain about this...
>   Protecting Consumer Privacy in an Era of Rapid Change
>   A framework for businesses and policymakers
>   http://www.ftc.gov/os/2010/12/101201privacyreport.pdf
> but it is aimed at business, and OWASP has already been cited in this
> FTC document:
>   Protecting Personal Information: A Guide for Business
>   http://business.ftc.gov/documents/bus69-protecting-personal-information-guide-business
> The proposed framework is based on three principles, which have some
> relevant content:
> 1. Privacy by design
> 2. Simplified choice
> 3. Greater transparency
> In the first of these "data security" is listed as an example practice
> to build in.  This document also talks about a persistent mechanism to
> allow consumers to opt out of tracking - commentators elsewhere
> believe this might be a "Do Not Track" header added by the browser.  I
> think we need to be careful what constitutes tracking - behavioural
> advertising yes, but how about security event logging, incident
> response or even session management?
> Responses are being accepted until 31 January 2011.  Is it worth responding to:
> 1. if OWASP has something relevant to say, and
> 2. to keep OWASP on the radar as an organisation that engages with others
> ?
> Regards
> Colin Watson
> Global Industry Committee
> http://www.owasp.org/index.php/Global_Industry_Committee
> _______________________________________________
> Global_industry_committee mailing list
> Global_industry_committee at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/global_industry_committee

More information about the Global_industry_committee mailing list