Attendees
- Abdul Sattar
- Ann Cavoukian
- Daryl Thomas
- Drummond Reed
- Jan Lindquist
- Jim St.Clair
- Juan Carlos Gonzalez
- Kaliya Young, WG Co-chair
- Pagona Tsormpatzoudi, Chair
- Robin Renwick
- Scott Perry
- Tony Rose
- Trev Harmon, PM
- Tricia Loveland
- Xavier Vila
Agenda Items
Time | Item | Who |
---|---|---|
5 min | Introductions | New group members |
2 min | Welcome & antitrust policy notice | TBC |
Review of group's Google Doc and next steps | Everyone | |
3 min | Wrap up | Chair |
Recording - Link
Notes
- Notification of IP and antitrust notice.
- Review of the updates to the group’s working Google Doc.
- We shouldn’t need to go into each and every regulation, as they will vary from location and location.
- Pagona suggested a number of principles that can be used. She would like a global reaction, and would like responses.
- Pagona would like someone with a standards background to review which of the standards listed in question #1 should apply.
- Drummond noted that the question is about whether or not specific standards should be required or suggested as part of the GHPC output.
- Pagona brought up the application of “zones” to the questions. We discussed this approach.
- Ann brought up the question of how consent works with the requirement for health passports where there are people who do not want to consent. This is a difficult question.
- Pagona suggests that we provide a list of assessment criteria. Drummond noted that this is something that would likely be something that would be part of the governance framework. He likes the approach of providing recommendations to those who are doing the evaluations.
- We discussed the importance of data security (e.g., encryption, privacy, etc.).
- Tony brought up a discussion in yesterday’s Credential Schema group regarding consent wherein the use policy would be presented to the holder as part of the request.
- Abdul Sattar wondered if there would be a need for a revocation as part of the consent. Drummond asked how that would relate in the case where sharing is a one-time consent. This is based on whether or not data is being retained beyond the bare minimum required by law.
- This led to a conversation on the importance of restriction of use on the Verifiers.
- We discussed the potential of unintended consequences of expansion of use.
- We discussed the use of zero-knowledge proofs.
- Trev brought up the possibility of data sunsetting.
- Jim noted that we should also look at ISO 29100.
Chat Log
Action Items
- The group needs to provide contributions to the documents. Please look at it and provide comments before our next meeting on Thursday.
- Trev to add information from the Digital Green Certificate.