canmove, Confirmed users
1,537
edits
Privacy/Reviews/BrowserID.org: Difference between revisions
Jump to navigation
Jump to search
→Alignment with Privacy Operating Principles
| Line 355: | Line 355: | ||
====Principle: Transparency / No Surprises==== | ====Principle: Transparency / No Surprises==== | ||
( | The user clicks a browser ID button to sign into sites, he interacts with a browser ID pop-up window (clearly at a browserid.org URL), and chooses what email addresses to use with browser ID. This all seems pretty straightforward and unsurprising. | ||
''Recommendations'': none. | |||
====Principle: Real Choice==== | ====Principle: Real Choice==== | ||
Users are not required to participate in browserid.org. Some sites may require use of browserid.org for authentication, but the user still controls which email addresses are used for authentication. Users can add/remove email addresses from their account as desired. | |||
''Recommendations'': | ''Recommendations'': none. | ||
====Principle: Sensible Defaults==== | ====Principle: Sensible Defaults==== | ||
There's no automatic enrolment of addresses into Browser ID. Users choose which identities to use and on which sites. | |||
''Recommendations'': | ''Recommendations'': none. | ||
====Principle: Limited Data==== | ====Principle: Limited Data==== | ||
By nature, browserid.org only collects and retains data necessary for connecting email addresses to third parties. Most of the mapping of email address to relying party is done in the browser's local storage (not on the server). While browserid.org may learn which sites deploy the Browser ID authentication mechanism (and which email addresses are used for the authentication), it does not know which email addresses are used with each RP site. | |||
''Recommendations'': Minimize retention of log data to what's necessary to operate and grow the site. Encourage email providers to act as primaries. | |||
{{ResolutionBox|{{new|document and make accessible what data is logged and for how long the data is kept}}}} | |||
= Follow-up Tasks and tracking = | = Follow-up Tasks and tracking = | ||