The purpose of the Privacy Model Task Force is to bring together a small group of people to draft a set of privacy principles for the web. This document is to include definitions of key privacy concepts on the web, enabling us to use common language as we work together on new web technologies that have an impact on user privacy. It would also consolidate some of the work already done to define a privacy threat model.
This effort will look at privacy from a web architecture point of view, fitting together with the TAG's Ethical Principles, Design Principles, and the Privacy & Security Questionnaire jointly worked on between TAG and PING.
This effort will operate as a TAG-sponsored task force together with the Privacy Interest Group with participants invited by the TAG chairs and the PING chairs (which can include current or former members of each group). There will be a maximum of 10 participants in the task force. The task force will run for 6 months and the final product will be a report which can be published as a TAG Finding (which can be subsequently elevated to a W3C statement) with some additional acknowledgement that the document has been produced jointly between PING and TAG.
We will be building on the work of the Ethical Web Principles which lays down an ethical framework for the web. The goal of a privacy model for the web should be aligned with the goal of that document: to ensure that the web provides a net positive social benefit to humanity.
Periodically, and before working drafts are published, the task force will check in with an oversight group consisting of the TAG and PING chairs and team contacts for approval and comment.
This effort will happen in a public repo and with public comments.
We will be staying away from legal and regulatory material.
This effort will operate under the W3C's CEPC and as such we will maintain a respectful discourse. This effort will operate under anti-trust guidance from W3C.
Possible names : Architectural Principles for Web Privacy; Architectural Considerations for Web Privacy; Privacy Architecture for the Web (PAW).
We will strike a balance between working on the web as it is and also not being constrained by existing approaches if those approaches contravene privacy principles.
e.g.
As a target threat model, it describes not the current state of the Web including all current maybe-unwise APIs, but rather an end state that we hope to migrate to, and that new APIs should be held to. This is meant to be a plausible threat model: it doesn’t expect to remove any APIs or browser behavior that is deemed essential to the viability of the Web.
- Daniel Appelquist (Samsung, TAG)
- Robin Berjon (Invited Expert, formerly The New York Times, TAG alum)
- Nick Doty (Center for Democracy & Technology, PING)
- Amy Guy (Digital Bazaar, TAG)
- Don Marti (CafeMedia, PING)
- Jonathan Kingston (DuckDuckGo)
- Theresa O'Connor (Apple, TAG, PrivacyCG)
- Christine Runnegar (W3C Invited Expert, PING)
- Pete Snyder (Brave, PING)
- Jeffrey Yasskin (Google, PING)
…with support from W3C Team.
Constituencies we want to represent
- Browsers
- Publishers / Web Sites
- Civil society
- Adtech intermediaries
- Advertising buyers
- People fighting abuse and fraud
- Web developers
- Members of marginalized communities who use the web
- Other people who use the web
Experts we need input and review from:
- Privacy advocates
- Privacy theorists and legal scholars
- Behavioral economists
- Those working on emerging Web tech such as WebXR and new device APIs
- User researchers
- TAG and PING chairs and team contacts
- WhatWG steering board
- https://w3ctag.github.io/ethical-web-principles/
- https://w3ctag.github.io/design-principles/
- https://w3ctag.github.io/security-questionnaire/
- Definition of origin: https://html.spec.whatwg.org/multipage/origin.html#origin
- https://www.w3.org/Consortium/cepc/
- https://datatracker.ietf.org/doc/html/rfc6973