W3C unveils standards to improve Web privacy

W3C unveils standards to improve Web privacy

Summary: New proposed standards aim to protect and warn users of cookies and sites tracking personal data, as part of efforts to establish better consumer protection in light of expanding Web and rising privacy concerns.

SHARE:

In a bid to address rising concerns about online privacy, the World Wide Web Consortium (W3C) has published two first drafts outlining standards that will allow users to express preferences related to online tracking. 

To help users control how they want their personal data managed, W3C on Monday unveiled the Tracking Preference Expression (DNT) which defines mechanisms for the online user community to express cross-site tracking preferences and for sites to indicate whether they honor these preferences. The consortium also released the Tracking Compliance and Scope Specification which defines the meaning of a "Do Not Track" preference and sets out practices for Web sites to comply with these guidelines. 

These documents are early works of a broad set of stakeholders in the W3C Tracking Protection Working Group which includes browser vendors, content providers, advertisers, search engines and experts in policy, privacy and consumer protection. Participants in this group currently include Apple, Facebook, Google, IBM, Mozilla Foundation, Microsoft, Yahoo and Stanford University. Invited experts include representatives from the Electronic Frontier Foundation (EFF) and the U.S. Federal Trade Commission (FTC).

The Tracking Protection Working Group was chartered to address privacy concerns of users and regulators, as well as offer recommended Web business models which rely heavily on advertising revenue.

"Smarter commerce and marketing strategies can and must coexist with respect for individual privacy," Matthias Schunter, a member of IBM Research and co-chair of the Working Group, said in a statement. "Open standards that help design privacy into the fabric of how busines and society use the Web can ebale trust in a sustaible method."

These new standards will also enable users to express their preferences regarding how data about them should be collected for tracking purposes, establishing a new communication channel between users and services to prevent surprises, and re-establishing trust in the marketplace.

Additionally, the proposed standards will define mechanisms for sites to signal whether, and how, they honor these user preferences and provide a mechanism for allowing the user to grant site-specific exceptions to DNT.

"We know there are many types of users--some eagerly welcome the benefits of personalized Web services, while others value their privacy above all else," Aleecia McDonald, Mozilla Foundation and co-chair of the Tracking Protection Working Group, noted in the statement. "'Do Not Track' puts users in control so they can choose the tradeoffs that are right for them."

Privacy challenges with expanding platforms
According to W3C, the expanding Web of connected devices and services has also created powerful applications that users desire, but with privacy implications they may not always recognize.

Advertisers that play an important role in Web business models want to customize ads based on user behavior--similar to how market data is used for placing ads in print media and TV commercials. Web site owners also want to understand traffic and purchasing patterns accordingly and social networking widgets gather personal data that users volunteers, the consortium added.

On the other hand, powerful search engines make it easy to aggregate information and identify potentially sensitive data. Hence, various organizations routinely collect data from such content and from user visits to a site.

Many users appreciate the personalization made possible through such data collection, such as improved user experience, reduction in irrelevant or repetitive ads, and avoidance of "pay-walls" or subscription-only services. However, others perceive such user-targeted messages as intrusive, incorrect or amounting to junk mail, and reflect strong negative feelings when data collected at a trusted site is used or shared without user's consent.

Topics: IT Employment, Browser, CXO, Data Management, Legal, Mobility, Networking, Privacy, Security

Ellyne Phneah

About Ellyne Phneah

Elly grew up on the adrenaline of crime fiction and it spurred her interest in cybercrime, privacy and the terror on the dark side of IT. At ZDNet Asia, she has made it her mission to warn readers of upcoming security threats, while also covering other tech issues.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

0 comments
Log in or register to start the discussion