The Platform for Privacy Preferences 1.0 (P3P1.0) Specification. W3C Recommendation 16-April -2002. Version URL: http://www.w3.org/TR/2002/REC-P3P-20020416/. Latest Version URL: http://www.w3.org/TR/P3P/. Previous Version URL: http://www.w3.org/TR/2002/PR-P3P-20020128/. Edited by Massimo Marchiori (W3C / MIT / University of Venice) Authors: Lorrie Cranor (AT&T), Marc Langheinrich (ETH Zurich), Massimo Marchiori (W3C / MIT / University of Venice), Martin Presler-Marshall (IBM), and Joseph Reagle (W3C/MIT).
A P3P Preference Exchange Language 1.0 (APPEL1.0). W3C Working Draft 15-April-2002. Version URL: http://www.w3.org/TR/2002/WD-P3P-preferences-20020415. Latest Version URL: http://www.w3.org/TR/P3P-preferences. Previous Version URL: http://www.w3.org/TR/2001/WD-P3P-preferences-20010226. Edited by Marc Langheinrich (ETH Zurich). Authors: Lorrie Cranor (AT&T Labs-Research), Marc Langheinrich (ETH Zurich) and Massimo Marchiori (W3C/MIT).
From the P3P1.0 Introduction:
The Platform for Privacy Preferences Project (P3P) enables Web sites to express their privacy practices in a standard format that can be retrieved automatically and interpreted easily by user agents. P3P user agents will allow users to be informed of site practices (in both machine- and human-readable formats) and to automate decision-making based on these practices when appropriate. Thus users need not read the privacy policies at every site they visit.
Although P3P provides a technical mechanism for ensuring that users can be informed about privacy policies before they release personal information, it does not provide a technical mechanism for making sure sites act according to their policies. Products implementing this specification may provide some assistance in that regard, but that is up to specific implementations and outside the scope of this specification. However, P3P is complementary to laws and self-regulatory programs that can provide enforcement mechanisms. In addition, P3P does not include mechanisms for transferring data or for securing personal data in transit or storage. P3P may be built into tools designed to facilitate data transfer. These tools should include appropriate security safeguards.
The P3P1.0 specification defines the syntax and semantics of P3P privacy policies, and the mechanisms for associating policies with Web resources. P3P policies consist of statements made using the P3P vocabulary for expressing privacy practices. P3P policies also reference elements of the P3P base data schema -- a standard set of data elements that all P3P user agents should be aware of. The P3P specification includes a mechanism for defining new data elements and data sets, and a simple mechanism that allows for extensions to the P3P vocabulary.
From the announcement, 'Next Steps for P3P Focus on Implementation:' "W3C's lists of P3P-enabled Web sites and P3P software continue to grow, including both plug-ins and browser-based implementations, P3P policy generators, and a P3P validator. W3C's P3P Working Group plans to continue to provide resources and assistance to implementers who wish to make their sites P3P compliant. In addition to the P3P homepage, other useful resources include p3ptoolbox.org in cooperation with the Internet Education Foundation, and the JRC P3P demonstration and research platform. W3C continues to maintain discussion fora for implementers and those interested in P3P."
Testimonials for the W3C P3P 1.0 Recommendation have been provided by America Online Inc., AT&T, Carnegie Mellon University, Center for Democracy and Technology, USA, Unabhängiges Landeszentrum, Datenschutz Schleswig-Holstein, DoubleClick, Ericsson, Hewlett Packard Company, Information Commissioner for the United Kingdom, Information and Privacy Commissioner, Ontario, Canada, INRIA, Joint Research Centre of the European Commission, IBM, Microsoft, NEC, Privacy Council, Proctor & Gamble, Independent Centre for Privacy Protection, Schleswig-Holstein, Germany, Commissioner for Data Protection, Brandenburg, Germany, University of Kassel, and Vanderbilt University.
- Announcement 2002-04-16: "World Wide Web Consortium Issues P3P 1.0 as a W3C Recommendation. P3P Gives People More Control Over Use of Personal Information on the Web."
- The Platform for Privacy Preferences 1.0 (P3P1.0) Specification. W3C Recommendation 16-April -2002.
- W3C press release
- Testimonials for W3C P3P 1.0 Recommendation.
- Errata of the P3P1.0 Specification
- P3P1.0 Patent Statements [None as of 2002/04/16 05:05:56 GMT]
- A P3P Preference Exchange Language 1.0 (APPEL1.0). W3C Working Draft 15-April-2002.
- W3C Privacy Activity Statement
- Mailing list archives for 'www-p3p-public-comments'
- P3PToolbox. P3P resource developed by the Internet Education Foundation and W3C.
- IBM Tivoli Privacy Wizard
- "Platform for Privacy Preferences (P3P) Project" - Main reference page.