Difference between revisions of "First Party Sets"
Jump to navigation
Jump to search
m |
m (→Open Questions) |
||
| Line 8: | Line 8: | ||
* How much ownership is required for different domains to be allowed to share personal data? | * How much ownership is required for different domains to be allowed to share personal data? | ||
* How much awareness among the general public is required for different domains to be allowed to share personal data? | * How much awareness among the general public is required for different domains to be allowed to share personal data? | ||
| − | * How much control should people have to keep their identity distinct from the various sites within such a "first party set"? | + | * Must users be made aware of the ownership linkages prior to any personal data sharing? |
| + | * How much control should people have to keep their identity distinct from the various sites within such a "first party set"? | ||
== References == | == References == | ||
Revision as of 15:40, 27 May 2021
Google's First Party Sets proposal enables different sites (or origins) owned by the same organization to declare themselves to people as being allowed to share personal data.[1]
Impact
By relying on organizational ownership as the sole mechanism of trust, this advantages vertically-integrated organizations over those that rely on supply-chain partners. This runs counter to the general goal on the web of supporting decentralization.
Open Questions
- How much ownership is required for different domains to be allowed to share personal data?
- How much awareness among the general public is required for different domains to be allowed to share personal data?
- Must users be made aware of the ownership linkages prior to any personal data sharing?
- How much control should people have to keep their identity distinct from the various sites within such a "first party set"?