privacy-model

privacy-model copied to clipboard

Hi @michaelkleber , Following some of our previous discussions, I went back to your "privacy model" explainer, which I believe to be the most representative definition of "privacy" used to...

jdelhommeau

Why is 1P identity implied to be essential for analytics and ad servers?

2

Section "Third Parties can be allowed access to a first-party identity" says: > This recognizes that composability is central to the Web — for example, it is unreasonable to expect...

arvind-m

Discussion thread is here: https://github.com/bslassey/privacy-budget/issues/2

gitcnd

Request for definition: first party/third party

9

The text uses these terms loosely and it is unclear what is meant by them. It refers to the Mozilla and WebKit anti-tracking policies which for example use slightly different...

ehsan

Request for definition: "key needs of publishers and advertisers"

5

From the text: "This document offers one possible answer to these questions. The goal is a balanced way forward, dramatically improving web privacy while allowing enough information flow to carefully...

ehsan

Identity sharding and URL parameter tracking

1

Let's consider the following attack scenario: * The user goes to site.example and login using a third-party login.adtech.example frame. * site.example has a first-party script from analytics.adtech.example/analytics.js. * After the...

ehsan

Why the special treatment to targeted advertising?

8

> "This document describes a way the web could potentially work that would not require cross-site tracking, but would still let publishers support themselves with effective advertising." Why is advertising...

ehsan

After sharding is applied, I believe there are three distinct contexts a third party can operate in. Perhaps it's easier to think about changes when they're grouped in these buckets?...

colinclerk

Clarify that 1p's are just delegating the right to recognize a user, not anything about that user

3

The "Third Parties can be allowed access to a first-party identity" section is confusing. In https://twitter.com/Chronotope/status/1164574958061797378 et seq. Aram Zucker-Scharff read it as implying that the 1p tells its 3p's...

michaelkleber

Request for definition: "effective advertising"

2

What is "effective advertising" as is referred to in the text? > This document describes a way the web could potentially work that would not require cross-site tracking, but would...

ehsan