Re: [Pearg] draft-irtf-pearg-safe-internet-measurement review, implied consent
Mallory Knodel <mknodel@cdt.org> Tue, 11 July 2023 14:33 UTC
Return-Path: <mknodel@cdt.org>
X-Original-To: pearg@ietfa.amsl.com
Delivered-To: pearg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9CED9C151981 for <pearg@ietfa.amsl.com>; Tue, 11 Jul 2023 07:33:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cdt.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ayxp6CzugJTj for <pearg@ietfa.amsl.com>; Tue, 11 Jul 2023 07:33:31 -0700 (PDT)
Received: from mail-pg1-x534.google.com (mail-pg1-x534.google.com [IPv6:2607:f8b0:4864:20::534]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 23CB7C151980 for <pearg@irtf.org>; Tue, 11 Jul 2023 07:33:31 -0700 (PDT)
Received: by mail-pg1-x534.google.com with SMTP id 41be03b00d2f7-55bac17b442so4385362a12.3 for <pearg@irtf.org>; Tue, 11 Jul 2023 07:33:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cdt.org; s=google; t=1689086010; x=1691678010; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=9AaPc7MpfDoDg6KKu4pp2QqwkbDU2OAlxZNVE8H3Wrk=; b=J7S4JKM3V8ChQSaMnXExOK0pafpycWZcD7t725FpxW/OB/j92BV4iArjE64+kjoNpz S4eJQscBVKtYzD9aAF12tQafkGXMNo8C7N4i4mdxXVxAOLYk72FNnudkvUl1nd4b+15P 4NV/Vrzzt6bzBmPl10byLa/g2wkipB2tgwfuQ=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1689086010; x=1691678010; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=9AaPc7MpfDoDg6KKu4pp2QqwkbDU2OAlxZNVE8H3Wrk=; b=QTCEzY4IQXB3xerP5AtetzZLHZ10zSxTSkelnSrq1hqTKP/JJ/a5RURAu5klSzf2ba gdB/OfdByZ+vK/ZhyGUj6p+Ns8SCwCSgd4gjp1bbTag9JjA5oZ1bRXTSU4J1e1Ezeu5V d9d2nJjhVnpylNOcn3cR5Z9IXqKEMDaQvecwsgdnHCxfJ8fhC7El49yqm6QZW9OXrxAT zUrT9j5xkU+Rc/1cYPsEaDzoG2QqbfYdM9pHfT7Sg4hBKmajQGPf12l/HmtiY7s4MX1b +aCP+hxEoUqDNshh2pz6dwR9y1dy7jgShwVZaPRMNJCP3b4eaC2mt12p+8FAXTmTzs2n 02zQ==
X-Gm-Message-State: ABy/qLbsY1KO7vBGLJeJK409Hd1D2n31VRh+Hd1F3vsyLSFPmUJhH9h7 9b9XqqZHLsWFLADmmyBqRiTp+4mv+siezR0uJNWAm+Ng5qZbk3jb
X-Google-Smtp-Source: APBJJlG02X9oF+Dceze/om87G0FBV85FlgxcyE8gKzLe6f61u9SDYEi3ltCYuxBISiVCixHruYABnnJ8A38mn39eCDc=
X-Received: by 2002:a17:90a:bb84:b0:25b:e07f:4c43 with SMTP id v4-20020a17090abb8400b0025be07f4c43mr15461616pjr.10.1689086010273; Tue, 11 Jul 2023 07:33:30 -0700 (PDT)
MIME-Version: 1.0
References: <CA+tYtvHQF7s3e-740jqjB0XEJp8OKin3xav6kheag00b1p6w1g@mail.gmail.com> <1920190530.13778.1689085092996@appsuite-gw1.open-xchange.com>
In-Reply-To: <1920190530.13778.1689085092996@appsuite-gw1.open-xchange.com>
From: Mallory Knodel <mknodel@cdt.org>
Date: Tue, 11 Jul 2023 10:33:19 -0400
Message-ID: <CAGVFjML-FPwsgY3tvPpstf7K6mBV9nc8-35L62ve1q2XpRq_wg@mail.gmail.com>
To: Vittorio Bertola <vittorio.bertola=40open-xchange.com@dmarc.ietf.org>
Cc: Nick Doty <ndoty=40cdt.org@dmarc.ietf.org>, pearg@irtf.org
Content-Type: multipart/alternative; boundary="000000000000a3443f060036fbb4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/pearg/LLtNwhskHIDxUH162EYUBFdcins>
Subject: Re: [Pearg] draft-irtf-pearg-safe-internet-measurement review, implied consent
X-BeenThere: pearg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Enhancements and Assessment Proposed RG <pearg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/pearg>, <mailto:pearg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pearg/>
List-Post: <mailto:pearg@irtf.org>
List-Help: <mailto:pearg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pearg>, <mailto:pearg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Jul 2023 14:33:35 -0000
Hi, On Tue, 11 Jul 2023 at 10:18, Vittorio Bertola <vittorio.bertola= 40open-xchange.com@dmarc.ietf.org> wrote: > > > > Il 10/07/2023 21:58 CEST Nick Doty <ndoty=40cdt.org@dmarc.ietf.org> ha > scritto: > > > > Similarly, under European and similar data protection law, consent > > isn't universal, it's not that every data processing takes place with > > some kind of consent, but rather that you need informed consent when > > something of a particular weight is happening and there isn't another > > justification and in other cases it's reasonable for you to do the > > processing without getting consent (because it's not personal data, > > say), not that you did have some implied consent. > > Well, if you get a direct connection from the host that you are gathering > data from, so that you can see the IP address, then it's already personal > data - the IP address certainly is, as it's often a pretty precise > identifier at least of a household. And if you have personal data, in > Europe you need consent unless you have a clear "legitimate interest" which > is not just about making more money. (Whether getting consent is > "practical" or not is legally irrelevant.) > > The draft should possibly include some recommendations about this; if you > only aggregate the information, then you have no personal data any more, > but still you got them at the start of your processing and so you needed > legal grounds for that anyway. > > (This is a current, ongoing discussion in Italy: the government's official > web analytics platform was recently moved onto AWS servers and so became > incompliant with GDPR, at least until the new EU-US data privacy framework > comes into effect and survives the upcoming legal challenges.) > > The above problem could be addressed by adopting the "oblivious" > connection model, i.e. having a proxy in the middle that gets the IP > address but cannot see the content, while the actual telemetry server only > gets the content but not the IP address, and the two parties are mutually > independent and do not exchange data. This is also something that could be > mentioned as an option, but you could rather ask for help to the people > championing that kind of model. > The draft is meant to be thorough and at the guidance level. Seems that this suggestion would fall under the aggregate guidance. Since there are so many methods I’m not sure whether we should elaborate the current practices, also assuming additional techniques might be developed over time. It’s a RG draft so if folks want to include an elaborated list, let’s do that. This doesn’t entirely address the incomplete implied consent subsection. -Mallory > > -- > Vittorio Bertola | Head of Policy & Innovation, Open-Xchange > vittorio.bertola@open-xchange.com > Office @ Via Treviso 12, 10144 Torino, Italy > > -- > Pearg mailing list > Pearg@irtf.org > https://www.irtf.org/mailman/listinfo/pearg > -- Mallory Knodel CTO, Center for Democracy and Technology gpg fingerprint :: E3EB 63E0 65A3 B240 BCD9 B071 0C32 A271 BD3C C780
- [Pearg] draft-irtf-pearg-safe-internet-measuremen… Nick Doty
- Re: [Pearg] draft-irtf-pearg-safe-internet-measur… Antoine FRESSANCOURT
- Re: [Pearg] draft-irtf-pearg-safe-internet-measur… Mallory Knodel
- Re: [Pearg] draft-irtf-pearg-safe-internet-measur… Vittorio Bertola
- Re: [Pearg] draft-irtf-pearg-safe-internet-measur… Mallory Knodel