Presenters: Eve Maler, Forgerock; Sal D'Agnostino, OpenConsent; Mike Lizar, OpenConsent.
The privacy notices and rights information, or lack of it, comprise what is becoming the public profile of an organization's privacy transparency or Public Privacy 1.0. The GDPR, coming into force on May 25th 2018, is the Y2K of privacy transparency, as services ‘data controllers and processors’ need to be transparent over data processing or risk being liable for non compliance, less trustworthy and less competitive. This presentation proposed to cover Privacy Transparency & Consent. It will cover how IdM systems need to be transparent. Delving into the standards and data sources that are used to make privacy and notice systematically, usable, transparent and public. Privacy notices and rights information, or lack of it, by default comprises an organization’s public privacy profile. How to build, measure and leverage organizational privacy transparency is the goal and critical outcome of Public Privacy 2.0. Privacy 1.0 is self regulation based on privacy policies. Privacy 2.0 is transparency at a machine readable and granular level, along with options for control. The GDPR (New EU LAW) sets the stage for the ongoing performance of privacy transparency. As services ‘data controllers and processors’ need to be transparent about data processing. The risk is that their privacy transparency and organizational performance is deemed non compliant, untrustworthy and less competitive, translating into fines, lost customer and revenue and brand equity. Join this session to learn about privacy, transparency, consent, and control as they relate to identity systems, standards, and interoperability. We will discuss how the Consent Receipts and User- Managed Access (UMA) standards from the Kantara Initiative and the Open Notice project from MIT can play a role in solving these key challenges.
Join us June 25-28 in Washington D.C, 2019! http://bit.ly/2tGo8NH