Text archives Help


Re: [projectvrm] NY Times article: Personal Data and Privacy - and VRM topics - A European point of view


Chronological Thread 
  • From: "=Drummond Reed" < >
  • To: Brian Behlendorf < >
  • Cc: Johannes Ernst < >, ProjectVRM list < >
  • Subject: Re: [projectvrm] NY Times article: Personal Data and Privacy - and VRM topics - A European point of view
  • Date: Fri, 10 Oct 2014 17:22:39 -0700
Brian, to your queston, "Isn't this something Respect Network can do?", the answer is yes, this is something RN can do. That's why we set up the Respect Trust Framework the way we did, so that every member can be held accountable under it, to RN or to any other member.

=Drummond

On Friday, October 10, 2014, Brian Behlendorf < "> > wrote:
On Fri, 10 Oct 2014, Johannes Ernst wrote:
I only meant to say that many people -- myself included -- would trust a statement by the EFF about some organization's (particularly government's) security and/or privacy practices, while this would not be true about many other org's that typically audit. I would say that there are very few organizations who would have similar credibility on this.

Wouldn't that credibility be challenged by the audit-ee paying the audit-or for the audit?  Audit-or always loves to champion their independence and honesty, and yet someone on audit-or's staff is responsible for getting the audit business the following year.

But to Doc's question - isn't this arguably what the Respect Network will do?  Establish a fierce data management policy, contractually enforced, and get paid to audit - and cancel membership in the network, no refund, if the audit fails?

Archive powered by MHonArc 2.6.19.

§