On Mar 1, 2013, at 5:52 PM, "David Singer" <[email protected]> wrote:
> > The second is the 'prospective harm' question. We all have the instinct that > our private data is something that could be used to our detriment in the > future. There may be no immediate harm in an ad system keeping track of our > browsing visits, purchases, and contributions, and so on. But if that > database 'falls into the wrong hands' there may be harm indeed. > ... and then there is the issue of the combination of two (or more) anonymized data sets that are combined by "the wrong hands". Basic principle should be to exchange the minimum amount of information required to provide service, where minimum is preferably none. _______________________________________________ ietf-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/ietf-privacy
