I will be giving a talk on Identiverse titled "So You Want to Base on Consent?" on July 7th at 28:3 AM Japan time.
The title was inspired by the song "So You Want to Write a Fugue?" by Glenn Gould. Although it is a somewhat reckless thing to do, I will explain what we should do by extracting information from ISO/IEC 29184.
The opening lyrics of the song "So You Want to Write a Fugue?" are as follows:
So you want to write a fugue?
Glenn Gould: So you want to write a fugue (1963)
You've got the Urge to write a fugue,
You've got the nerve to write a fugue,
So go ahead.
Oh, so you want to write a fugue?
Above: My translation
I had the urge to write a fugue.
If you have the guts to write a fugue
If you say so, go ahead and try it.
This is the opening line, and various fugue techniques are introduced throughout the song.
This lecture replaces "I want to write a fugue" with "I want to treat it with consent."
Oh, so you want to do it with consent?
There is an urge to do it with consent,
If you have the guts to agree and see it through
If you say so, go ahead and try it.
The content is... the English version of almost the same thing that was done at PWS on July 7st. If you're interested, please take a look.
Monday, July 27, 12:30 – 12:55 (Mountain Time)
So You Want to Base on Consent?
Many people seem to believe that having their customers pressing “Agree” button is good enough to collect their “consent”. That's actually not the case. Obtaining privacy consent has very high bar partially because that is the exception mechanism that you can resort to only when other lawful bases for the processing of personal data does not work.
This session will briefly touch on other lawful bases and what is needed for potentially valid consent, then goes on to explain the requirements for privacy notice and consent process set out in “ISO/IEC 29184 Online privacy notices and consent”.
ISO/IEC 29184 is an international standard that has been in making for the last 5 years. Stakeholders involved in the discussion included data protection authorities around the globe, technical community, lawyers, and businesses. It sets out the requirements for 1) What are needed to be in a privacy notice, 2) What are needed to be done in obtaining the consent, 3) What are needed to be done in the maintenance of privacy notices. For any business that wants to respect customer privacy, this document provides excellent guidance on what needs to be followed.
Speaker/s: Nat Sakimura
Topic: Privacy
Sub Topic: Standards, Architecture & Deployment, Consumer Identity, User Experience, Vision & Strategy