Re: [93attendees] Network experiment during the meeting

"McDonald, Alex" <> Tue, 14 July 2015 15:34 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id 3E15B1A1A02 for <>; Tue, 14 Jul 2015 08:34:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -5.012
X-Spam-Status: No, score=-5.012 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id qPQ8gWkh9Kfp for <>; Tue, 14 Jul 2015 08:34:35 -0700 (PDT)
Received: from ( []) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 4B0C81A002F for <>; Tue, 14 Jul 2015 08:34:31 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="5.15,472,1432623600"; d="scan'208";a="56638565"
Received: from ([]) by with ESMTP; 14 Jul 2015 08:33:30 -0700
Received: from ( by ( with Microsoft SMTP Server (TLS) id 15.0.1076.9; Tue, 14 Jul 2015 08:33:30 -0700
Received: from ([::1]) by ([fe80::dc1c:7054:32f6:3f6b%21]) with mapi id 15.00.1076.000; Tue, 14 Jul 2015 08:33:30 -0700
From: "McDonald, Alex" <>
To: Rolf Winter <>, "" <>
Thread-Topic: [93attendees] Network experiment during the meeting
Thread-Index: AQHQvahrmasx0wTXiky9rUNb61MX1Z3bEeMQ
Date: Tue, 14 Jul 2015 15:33:30 +0000
Message-ID: <>
References: <>
In-Reply-To: <>
Accept-Language: en-US
Content-Language: en-US
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: []
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <>
X-Mailman-Approved-At: Tue, 14 Jul 2015 09:20:35 -0700
Subject: Re: [93attendees] Network experiment during the meeting
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Mailing list of IETF 93 attendees that have opted in on this list. " <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 14 Jul 2015 15:34:37 -0000

I am not a lawyer, but I have done some research in this area.

Please be aware that (a) the Czech Republic is in the EU (b) according to EU law you are collecting personal identifiable data.

Therefore (from

Under the Data Protection Directive, collecting and processing the personal data of individuals is only legitimate in one of the following circumstances laid down by Article 7 of the Directive:

    Where the individual concerned, (the 'data subject'), has unambiguously given his or her consent, after being adequately informed; or
    if data processing is needed for a contract, for example, for billing, a job application or a loan request; or
    if processing is required by a legal obligation; or
    if processing is necessary in order to protect the vital interest of the data subject, for example, processing of medical data of a victim of a car accident; or
    if processing is necessary to perform tasks of public interests or tasks carried out by government, tax authorities, the police or other public bodies; or
    if the data controller or a third party has a legitimate interest in doing so, as long as this interest does not affect the interests of the data subject, or infringe on his or her fundamental rights, in particular the right to privacy. This provision establishes the need to strike a reasonable balance between the data controllers' business interests and the privacy of data subjects.

The last clause is the only clause under which you can collect and process this data. To that end;

Obligations of data controllers

The Data Protection Directive requires data controllers to observe a number of principles when they process personal data. These principles not only protect the rights of those about whom the data is collected ("data subjects") but also reflect good business practices that contribute to reliable and efficient data processingEach data controller must respect the following rules as set out in the Directive:

    Personal Data must be processed legally and fairly;
    It must be collected for explicit and legitimate purposes and used accordingly;
    It must be adequate, relevant and not excessive in relation to the purposes for which it is collected and/or further processed;
    It must be accurate, and updated where necessary;
    Data controllers must ensure that data subjects can rectify, remove or block incorrect data about themselves;
    Data that identifies individuals (personal data) must not be kept any longer than strictly necessary;
    Data controllers must protect personal data against accidental or unlawful destruction, loss, alteration and disclosure, particularly when processing involves data transmission over networks. They shall implement the appropriate security measures;
    These protection measures must ensure a level of protection appropriate to the data.

If you feel you can meet these criteria, then you may want to make sure that you understand how to register as a data controller in the Czech Republic;

There's a shorter version of this email available here

Alex McDonald
Standards & Industry Associations Group
CTO Office
+44 7795 046686 Mobile Phone
twitter: @alextangent
Follow us: 

> -----Original Message-----
> From: 93attendees [] On Behalf Of
> Rolf Winter
> Sent: 13 July 2015 21:14
> To:
> Subject: [93attendees] Network experiment during the meeting
> Hello everyone,
> during the meeting we plan to conduct an experiment on the IETF wireless
> network. We will record the broadcast traffic sent over the network with the
> goal of analyzing current applications' use of IP broadcasts. We have
> conducted this experiment previously on another large wireless campus
> network with interesting results and will repeat the experiment on the IETF
> wireless network as a second data point. We collect the data and aggregate it
> to statistics which will not reveal data about individual users of the network
> and once that is done, we will delete all packet traces we collected. More
> information on the experiment can be found here:
> If you have questions regarding the experiment, please drop me an Email.
> See you in Prague,
> Rolf
> _______________________________________________
> 93attendees mailing list