2020-11-12 Meeting
Meeting Notes
Roll Call
@Mark Lizar / Toronto, Canada / EDT / Open Consent Group
@Salvatore D'Agostino / Boston, MA, USA / EDT / Open Consent Group
@Ken Adler (Deactivated) / Oakland, CA, USA / PDT / ThoughtWorks
@Paul Knowles / Basel, Switzerland / CET / Human Colossus Foundation
@Jim StClair / Biloxi, MS, USA / CDT / Lumedic
@Former user (Deleted) / Stockholm, Sweden /CET / Linaltec
@Ken Adler (Deactivated) / Oakland, CA, USA / PST / ThoughtWorks
@John Walker / Bay Area, CA, USA / PST / SemanticClarity, CCI
@Scott Whitmire / Scottsdale, AZ, USA / MST / Mayo Clinic
Topics
Verified Credential Mapping
AdvCIS 1.2 Update (focussed specifically on GDPR)
Consent Notice
Types of Notice Receipt (each type is tied to a GDPR Legal Justification)
Directed Explicit Consent Notice Receipt
pre-defined consent
Explicit Consent Notice Receipt
opt-in
Implicit Consent Notice Receipt
consent based on action like walking through a door or filling a form
Initial Consent Notice Receipt
based on PII principals and consent to use and automated decision making
include risks
Legitimate Interest Notice Receipt
regular legitimate interest
Not a Legal Notice
lack information for a legitimate notice receipt
Contract Notice Receipt
needed for legal compliance to data subject
Legal Notice Receipt
legal obligations to government
Emergency Notice Receipt
vital interest of a data subject
Public Notice Receipt
public interest for official authority
Code of Conduct
operational risks
Use Case Form - iterate -
List of Cases
Non-Use Case TF Planning -Tasks
Planning Roadmap
OCA- Generic Notice Schema
Base PII - Overlay as default -
Flows
Profile Types -
GDPR Notice to Base PII to (another Legal Jursidiction - CCPA)
CoE 108+
Topics
Ontology / Legal Semantic Vocab Types
Data subject rights
profiling them
Chat from the call
From Me to Everyone: (5:35 PM)
Hello
From Mark Lizar to Everyone: (5:35 PM)
https://lf-toip.atlassian.net/wiki/pages/viewpage.action?pageId=22972053
From Me to Everyone: (5:36 PM)
https://lf-toip.atlassian.net/wiki/pages/viewpage.action?pageId=22972053
From Jim StClair to Everyone: (5:40 PM)
"catastrophic consent" :)
From Scott Whitmire to Everyone: (5:43 PM)
@Jim: That sounds ominous :-)
From Jim StClair to Everyone: (5:44 PM)
LOL +1
Sorry, which Confluence site is this?
From Mark Lizar to Everyone: (5:47 PM)
This is the AdvCIS - Wiki - which is the OpenConsent Workgroup — focused just on this spec work — this specification is contributed to Kantara
We are working n this wiki to become a resource
From Jim StClair to Everyone: (5:48 PM)
Thanks Mark! Open to join?
From Mark Lizar to Everyone: (5:48 PM)
Yep -
From Sal D'Agostino to Everyone: (5:50 PM)
transparency enabling as well
From Jim StClair to Everyone: (5:50 PM)
Could you throw the link in chat? Google took me to the Kantara wiki
From Mark Lizar to Everyone: (5:50 PM)
Sure.
From Scott Whitmire to Everyone: (5:51 PM)
We’re just a tiny step away from generic virtual contracts, with all of the legal frameworks that come with them.
From Jim StClair to Everyone: (5:59 PM)
Hey, we're not recording :(
From Mark Lizar to Everyone: (6:00 PM)
https://openconsent.atlassian.net/wiki/spaces/AD/overview?homepageId=791150670
From Jim StClair to Everyone: (6:08 PM)
Would the receipt ID have a DID?
From Mark Lizar to Everyone: (6:13 PM)
Yes this is what we are specifiying here
From Jim StClair to Everyone: (6:15 PM)
+1
This could support a TSS I think
From Me to Everyone: (6:33 PM)
https://lf-toip.atlassian.net/wiki/display/HOME/Identity+and+Verifiable+Credential+Risks
From Jim StClair to Everyone: (6:35 PM)
Is anybody else here besides me in the Governance WG or Trust Assurance TFs
From Sal D'Agostino to Everyone: (6:36 PM)
no here
From Me to Everyone: (6:36 PM)
Not me
From Scott Whitmire to Everyone: (6:36 PM)
I am in the Governance WG.
From Jim StClair to Everyone: (6:37 PM)
yes you are!
Scott, this is good input/guidance to coordinate with "other" Scott
From Scott Whitmire to Everyone: (6:38 PM)
Yes, it is.
From Jim StClair to Everyone: (6:43 PM)
Love this, but gotta drop