[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [security-services] SAML deployments that use consent step?
Albeit outdated, this paper from the UK ICO would seem to support the consent model described by Josh http://www.ico.gov.uk/upload/documents/library/data_protection/practical_application/sharing_personal_information_v1.1.pdf Josh Howlett wrote: > I previously wrote that: >> There is certainly a place for consent, but it needs to be used >> judiciously. It is certainly not (in the EU context, at least) the >> silver bullet or "best practice" that proponents of "user centric" >> approaches sometimes suggest. > > One of my colleagues who specialises in DP law (and understands this > stuff, unlike me) informed me today that the UK Information > Commissioner's Office (the body charged with "upholding information > rights in the public interest") has issued a statement to the effect > that consent should be considered the cause-of-last-resort for > releasing PII. > > josh. > > --------------------------------------------------------------------- > To unsubscribe from this mail list, you must leave the OASIS TC that > generates this mail. Follow this link to all your TCs in OASIS at: > https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]