Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MERS for web properties #49

Open
dmarti opened this issue Aug 12, 2021 · 1 comment
Open

MERS for web properties #49

dmarti opened this issue Aug 12, 2021 · 1 comment

Comments

@dmarti
Copy link

dmarti commented Aug 12, 2021
edited
Loading

In the USA, mortgage-backed securities trading is made practical by a corporation called MERS: Mortgage Electronic Registration Systems, Inc.. MERS is registered with county records offices as the mortgage holder, so that no public records actually change when a mortgage-backed security is traded. The obligations of the property owner to make mortgage payments, and the interests of the securities owner, are covered in confidential documents that are not filed with the county.

A common ownership requirement for First-Party Sets would likely result in the formation of a MERS-like entity for web properties, call it "WERS". This organization would be able to afford to meet the requirements of UA Policy, publicly register and represent a valid First Party Set owner as the owner of each domain in the set, and enter into confidential agreements with the individuals or entities that actually make decisions about handling of user data collected on each participating site. Thanks to scale and connections, WERS will be better at complying with UA Policy than small multi-domain publishers and brands that do not use WERS, especially those located in countries where a browser has users but not lawyers who understand how to obtain and check corporate ownership records.

First-Party Sets would clearly require common privacy policy, data stewardship policies, and user-understandable brand identity. An ownership requirement would add additional record-keeping and legal expenses for sites and user agents without improving anything for users.

Related: #48 #75
@jwrosewell
Copy link

Related: #51, #50

@martinthomson martinthomson mentioned this issue Aug 17, 2021
Open
dmarti added a commit to dmarti/first-party-sets that referenced this issue Aug 23, 2021
@dmarti
Update ua_policy_proposal.md
bf24c0b 
 * Remove reference to Do Not Track

 * Add a source and definition of "controller"

 * Remove language on ownership, replace with more consistent mentions of "controller"

 * Mention that common branding should apply to users of assistive technologies

Ownership verification is complex, does not add enforceable protections for users beyond the common controller requirement, and is likely to create costs and risks for some sites that would make it hard to use this feature.

Refs: WICG#14 WICG#18 WICG#20 WICG#49 WICG#55
@dmarti dmarti mentioned this issue Aug 23, 2021
Closed
@dmarti dmarti mentioned this issue Sep 22, 2021
Open
@dmarti dmarti mentioned this issue Oct 27, 2022
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dmarti @jwrosewell