PROPOSED Privacy Working Group Charter
The mission of the Privacy Working Group is to improve privacy on the Web both by advising groups developing standards on how to avoid and mitigate privacy issues with Web technologies and by standardizing mechanisms that improve user privacy on the Web.
This proposed charter is available on GitHub. Feel free to raise issues.
| Charter Status | See the group status page and detailed change history. |
|---|---|
| Start date | [dd monthname yyyy] (date of the "Call for Participation", when the charter is approved) |
| End date | [dd monthname yyyy] (Start date + 2 years) |
| Chairs |
Christine Runnegar (Invited Expert) Pete Snyder (Brave) Nick Doty (Center for Democracy & Technology) |
| Team Contacts | Philippe Le Hegaret (0.05 FTE) |
| Meeting Schedule |
Teleconferences: every 2 weeks, as needed, alternating with PrivacyCG meetings.
Face-to-face: we will meet during the W3C's annual Technical Plenary week; additional face-to-face meetings may be scheduled by consent of the participants, usually no more than 3 per year. |
Motivation and Background
Privacy is a human right that must be protected and it is essential to the success of the Web platform. So many of the features of the Web and its usage involve information about people and their communications that privacy must be considered consistently across the design of the platform. To affirmatively realize the privacy of people using the Web and address privacy threats that have already arisen, some dedicated privacy features must also be developed.
Horizontal review for privacy was previously conducted by the Privacy Interest Group (PING), which also served as a general discussion point for potential new privacy work and had been chartered to include incubation of new work but typically didn't do so. Because incubation is now more directly handled elsewhere, there is a need for a Working Group to adopt and standardize some new privacy mechanisms for the Web and a significant overlap with the privacy expertise needed for horizontal reviews. This proposed Working Group would replace the Interest Group.
Scope
The Privacy Working Group will standardize technical mechanisms that improve privacy on the Web. Privacy is a broad and contested concept, but the Working Group will focus on mechanisms for adoption by user agents, web sites and other actors in order to realize privacy principles for the Web.
The Privacy Working Group will conduct reviews and provide guidance to other groups about ways to improve user privacy through the development of Web standards.
The Privacy Working Group will work on only the normative specifications listed in the deliverables section below. Future revisions to the charter may update the proposed deliverables when there is opportunity for sufficient impact for improving privacy, when privacy-focused deliverables do not fit more specifically within the scope of another Working Group, and when the Working Group has sufficient capacity.
Out of Scope
Incubation is preferred through the Community Group process. The Privacy CG incubates privacy-focused web features for implementation in browsers and similar user agents. Other privacy-focused features may be incubated in WICG or other Community Groups. Features are typically ready to leave incubation for standardization when: there is a basic technical design; there is significant implementer interest and activity; there is willingness from the proponents to cede control to consensus decision-making.
Privacy-focused features that are specific to technical features or vertical areas covered by another Working Group are typically best developed in those Working Groups, alongside related technical features. For example, privacy-focused features specific to online advertising should instead be developed at the Private Advertising Technology Community Group or Working Group.
Policy statements and guidance are out of scope for this Working Group. Community Groups may take on policy-focused outputs and W3C participants may be interested in collaborating on input to policymakers outside of the Working Group.
Deliverables
Updated document status is available on the group publication status page.
Draft state indicates the state of the deliverable at the time of the charter approval. Expected completion indicates when the deliverable is projected to become a Recommendation, or otherwise reach a stable state.
Normative Specifications
The Working Group will deliver the following normative specifications:
- Global Privacy Control (GPC)
-
This specification defines a signal, transmitted over HTTP and through the DOM, that conveys a person's request to websites and services to not sell or share their personal information with third parties. This standard is intended to work with existing and upcoming legal frameworks that render such requests enforceable.
Draft state: Adopted from Privacy CG (anticipated)
Expected completion: Q2 2025
The Working Group may choose to develop the following normative specification:
- Bounce Tracking Mitigation
-
Browsers are working to prevent cross-site tracking, which threatens user privacy. Navigational tracking, including bounce tracking, correlates user identities across sites during navigations between sites. This specification defines mechanisms to mitigate the privacy impact of bounce trackers.
Horizontal Review
The Working Group will regularly produce privacy reviews as part of horizontal review, of proposals and specifications under development by other Working Groups and Community Groups, and of charters for other W3C groups.
The Working Group will maintain documentation on its general practices for conducting privacy reviews, including: How to Conduct a Privacy Review.
The Working Group may decide to publish additional guidance as needed to facilitate privacy-protective design across Web standards.
Other Deliverables
The Working Group will maintain and update the Mitigating Browser Fingerprinting in Web Specifications.
The Working Group will contribute to privacy-focused documents maintained by the W3C TAG:
Other non-normative documents may be created such as:
- Use case and requirement documents;
- Test suites and implementation reports for normative specifications;
- Best Practice documents to support web developers when designing applications;
- Guidance for privacy-protective design in particular areas of Web standards.
Timeline
- February 2024: First teleconference
- March 2024: Global Privacy Control, First Public Working Draft
- July 2024: User considerations for credential presentation on the Web, draft Note
- September 2024: Face-to-face meeting, at TPAC
- December 2024: Mitigating browser fingerprinting, updated Note
- February 2025: Global Privacy Control, Candidate Recommendation
Success Criteria
This Working Group develops both Recommendation-track normative specifications and non-Recommendation-track guidance, include Notes and privacy reviews.
In order to advance to Proposed Recommendation, each normative specification is expected to have at least two independent interoperable implementations of every feature defined in the specification, where interoperability can be verified by passing open test suites, and two or more implementations interoperating with each other. In order to advance to Proposed Recommendation, each normative specification must have an open test suite of every feature defined in the specification.
To promote interoperability, there should be testing plans for each normative specification, starting from the earliest drafts. Testing efforts should be conducted via the Web Platform Tests project. Normative changes to specifications in Candidate Recommendation or subsequent maturity levels, or to features that have widely deployed implementations, should have accompanying tests, as described in the Testing Policy.
Each specification should contain sections detailing all known security and privacy implications for implementers, Web authors, and end users, as well as recommendations for mitigations. There should be a clear description of the residual risk to the user or operator of that protocol after threat mitigation has been deployed.
Each specification should contain a section on accessibility that describes the benefits and impacts, including ways specification features can be used to address them, and recommendations for maximising accessibility in implementations.
Guidance documents and reviews should be useful to the Privacy Working Group and to other groups in identifying and addressing privacy in specifications. Generalized principles derived from reviews should be incorporated into the Privacy Principles, Questionnaire and other guidance documents. Guidance should be interpreted consistently. Reviewed specifications should show better support for user privacy on the Web.
In order to be most helpful and have the greatest success in encouraging privacy-supportive designs, privacy reviews should be conducted regularly and promptly.
This Working Group expects to follow the Web Platform Design Principles, W3C TAG Ethical Web Principles, and Privacy Principles.
Coordination
For all specifications, this Working Group will seek horizontal review for accessibility, internationalization, privacy, and security with the relevant Working and Interest Groups, and with the TAG. Invitation for review must be issued during each major standards-track document transition, including FPWD. The Working Group is encouraged to engage collaboratively with the horizontal review groups throughout development of each specification. The Working Group is advised to seek a review at least 3 months before first entering CR and is encouraged to proactively notify the horizontal review groups when major changes occur in a specification following a review.
Additional technical coordination with the following Groups will be made, per the W3C Process Document:
W3C Groups
- Private Advertising Technology Community Group
- The mission of the Private Advertising Technology Community Group is to incubate web features and APIs that support advertising while acting in the interests of users, in particular providing strong privacy assurances. The Working Group may provide input to designing for privacy on advertising-specific features.
- Privacy Community Group
- The mission of the Privacy Community Group is to develop privacy-focused web standards and APIs to improve user privacy on the web through enhanced browser behavior. Some work incubated in the Privacy Community Group may be adopted by the Working Group, including Global Privacy Control.
- Web Application Security Working Group
- The mission of the Web Application Security Working Group is to develop security and policy mechanisms to improve the security of Web applications, and enable secure cross-site communication. Guidance related to permissions and the security and privacy models of the Web may be coordinated with WebAppSec.
- Web Authentication Working Group
- The mission of the Web Authentication Working Group is to define a client-side API providing strong authentication functionality to Web applications. The Privacy Working Group may coordinate with WebAuthn on authentication-related topics.
External Organizations
- WHATWG
- The Global Privacy Control (GPC) specification augments the
Navigatorinterface defined in the DOM specification. - IETF HTTP (httpbis) Working Group
- The Global Privacy Control (GPC) specification provides a new HTTP header field for expressing a person's preference for a do-not-sell-or-share interaction in an HTTP request.
Participation
To be successful, this Working Group is expected to have 6 or more active participants for its duration, including representatives from the key implementors of each specification, and active Editors and Test Leads for each specification. The Chairs, specification Editors, and Test Leads are expected to contribute half of a working day per week towards the Working Group. There is no minimum requirement for other Participants.
The group encourages questions, comments and issues on its public mailing lists and document repositories, as described in Communication.
The group also welcomes non-Members to contribute technical submissions for consideration upon their agreement to the terms of the W3C Patent Policy.
Individuals not employed by a W3C Member who wish to contribute to both privacy reviews and standardization of privacy mechanisms may apply to be considered as Invited Experts; those individuals should contact the chairs and Team Contact. Although the Working Group will typically conduct its work in public, Invited Experts will by default be granted access to W3C Member-only content.
Participants in the group are required (by the W3C Process) to follow the W3C Code of Ethics and Professional Conduct.
Communication
Technical discussions for this Working Group are conducted in public: the meeting minutes from teleconference and face-to-face meetings will be archived for public review, and technical discussions and issue tracking will be conducted in a manner that can be both read and written to by the general public. Working Drafts and Editor's Drafts of specifications will be developed in public repositories and may permit direct public contribution requests. The meetings themselves are not open to public participation, however.
Information about the group (including details about deliverables, issues, actions, status, participants, and meetings) will be available from the Privacy Working Group home page.
Working Group teleconferences will focus on discussion of particular specifications or privacy review of specifications from other groups. Teleconferences will be conducted on an as-needed basis but typically with a frequency of every two weeks.
This group primarily conducts its technical work on GitHub repositories, but will also use the public mailing list public-privacy@w3.org (archive) and archived asynchronous chat. The public is invited to review, discuss and contribute to this work.
The group may use a Member-confidential mailing list for administrative purposes and, at the discretion of the Chairs and members of the group, for member-only discussions in special cases when a participant requests such a discussion.
Decision Policy
This group will seek to make decisions through consensus and due process, per the W3C Process Document (section 5.2.1, Consensus). Typically, an editor or other participant makes an initial proposal, which is then refined in discussion with members of the group and other reviewers, and consensus emerges with little formal voting being required.
However, if a decision is necessary for timely progress and consensus is not achieved after careful consideration of the range of views presented, the Chairs may call for a group vote and record a decision along with any objections.
To afford asynchronous decisions and organizational deliberation, any resolution (including publication decisions) taken in a face-to-face meeting or teleconference will be considered provisional. A call for consensus (CfC) will be issued for all resolutions (for example, via email, GitHub issue or web-based survey), with a response period of at least one week, depending on the chair's evaluation of the group consensus on the issue. If no objections are raised by the end of the response period, the resolution will be considered to have consensus as a resolution of the Working Group.
All decisions made by the group should be considered resolved unless and until new information becomes available or unless reopened at the discretion of the Chairs.
This charter is written in accordance with the W3C Process Document (Section 5.2.3, Deciding by Vote) and includes no voting procedures beyond what the Process Document requires.
Patent Policy
This Working Group operates under the W3C Patent Policy (Version of 15 September 2020). To promote the widest adoption of Web standards, W3C seeks to issue Web specifications that can be implemented, according to this policy, on a Royalty-Free basis. For more information about disclosure obligations for this group, please see the licensing information.
Licensing
This Working Group will use the W3C Software and Document license for all its deliverables.
About this Charter
This charter has been created according to section 3.4 of the Process Document. In the event of a conflict between this document or the provisions of any charter and the W3C Process, the W3C Process shall take precedence.
The Privacy Working Group was preceded by the Privacy Interest Group (PING), which primarily conducted horizontal reviews for privacy, from 2011 through 2023.
Charter History
The following table lists details of all changes from the initial charter, per the W3C Process Document (section 4.3, Advisory Committee Review of a Charter):
| Charter Period | Start Date | End Date | Changes |
|---|---|---|---|
| Initial Charter | [dd monthname yyyy] | [dd monthname yyyy] | Initial charter for the Privacy Working Group, taking over from previous Privacy Interest Group (PING). |
Change log
Changes to this document are documented in this section.