Professional Documents
Culture Documents
Copyright © 2012 W3C® (MIT, ERCIM, Keio), All Rights Reserved. W3C liability, trademark and document
use rules apply.
Abstract
This document describes privacy best practices for web applications, including those that
might use device APIs.
This document outlines privacy best practices for web applications that may rely upon
device APIs. These web application practices impact the user of the web application but
are not directly related to the API definition itself, but rather the context of the use of
those APIs by the web application.
Since the last publication of this document, a new best practice related to "active
consent" has been added (best practice 6), "informed consent" is noted in an existing
practice (best practice 3), various editorial wording changes have been made, and the
practices have also been renumbered to accomodate the addition of the new practice. A
red-line showing the changes since the previous publication is available.
This document was published by the Device APIs Working Group as a Working Group
Note. If you wish to make comments regarding this document, please send them to
public-device-apis@w3.org (subscribe, archives). All feedback is welcome.
Publication as a Working Group Note does not imply endorsement by the W3C
Membership. This is a draft document and may be updated, replaced or obsoleted by
https://www.w3.org/TR/2012/NOTE-app-privacy-bp-20120703/ 1/6
06/05/2021 Web Application Privacy Best Practices
other documents at any time. It is inappropriate to cite this document as other than work
in progress.
This document was produced by a group operating under the 5 February 2004 W3C
Patent Policy. W3C maintains a public list of any patent disclosures made in connection
with the deliverables of the group; that page also includes instructions for disclosing a
patent. An individual who has actual knowledge of a patent which the individual believes
contains Essential Claim(s) must disclose the information in accordance with section 6 of
the W3C Patent Policy.
Table of Contents
1. Introduction
2. Privacy By Design
3. User Centric Design
4. Minimize collection and transmission of personal data
5. Maintain the confidentiality of personal data
6. Control and log access
7. Best Practices Summary
A. References
A.1 Normative references
A.2 Informative references
1. Introduction
This document outlines good privacy practices for web applications, including those that
might use device APIs. This continues the work on privacy best practices in section 3.3.1
on "User Awareness and Control" Mobile Web Application Best Practices [MWABP]. It
does not repeat the privacy principles and requirements documented in the Device API
Privacy Requirements Note [DAP-PRIVACY-REQS] which should also be consulted.
2. Privacy By Design
The principles of "Privacy by Design" should be reflected in the web application design
and implementation, including the use of device APIs. These are enumerated below and
in more detail in the reference [PRIVACY-BY-DESIGN].
https://www.w3.org/TR/2012/NOTE-app-privacy-bp-20120703/ 2/6
06/05/2021 Web Application Privacy Best Practices
The end user should have enough information about a service and how it will
use their personal information to make an informed decision on whether to
share information with that service. This should include understanding of the
data to be shared, clarity about how long data will be kept and information with
whom it will be shared (and for what purpose).
The user should have the opportunity to decide whether to share information
(and what to share) at the time it is needed. This is necessary as the decision
can depend on the context, including the details of what the user is trying to
accomplish, the details of that task, and differences in how the service will
operate, use and share data.
The Web Application should make sure that consent is "informed consent" and
provide necessary privacy notice and other information at the time user consent is
required, either through action or other means.
A service may learn and remember personal information of the user in order to
improve a service. One example is remembering a billing address; another
example might be remembering payment information. When doing so the
service should make it clear to the user which information is retained and how
it is used. It should give the user an opportunity to correct or remove the
information.
Best Practice 6: Active consent should be freely given for specific data
https://www.w3.org/TR/2012/NOTE-app-privacy-bp-20120703/ 3/6
06/05/2021 Web Application Privacy Best Practices
Best Practice 6: Active consent should be freely given, for specific data,
and be informed.
Active consent is where user action is taken to also give permission, avoiding
the need for consent dialogs. Such active consent should be freely given, for
specific data, and be informed. Thus the user should be able to cancel the
operation, know which data is shared, and have adequate information at the
time of the action regarding the intended use of the data [CONSENT-EU-
WP187]. The web application should provide the user with information on
intended use in conjunction with device API usage.
The end user should understand if information is being used by the service
itself or being shared with a third party, especially when third party services
are involved in a "mashup".
The end user should understand whether information collected is for a single
use or will be retained and have an impact over time.
Best Practice 10: Retain the minimum amount of data at the minimum
https://www.w3.org/TR/2012/NOTE-app-privacy-bp-20120703/ 4/6
06/05/2021 Web Application Privacy Best Practices
Best Practice 10: Retain the minimum amount of data at the minimum
level of detail for the minimum amount of time needed. Consider potential
misuses of retained data and possible countermeasures.
https://www.w3.org/TR/2012/NOTE-app-privacy-bp-20120703/ 5/6
06/05/2021 Web Application Privacy Best Practices
A. References
A.1 Normative references
No normative references.
[DAP-PRIVACY-REQS]
Alissa Cooper, Frederick Hirsch, John Morris. Device API Privacy Requirements 29
June 2010. W3C Note URL: http://www.w3.org/TR/2010/NOTE-dap-privacy-reqs-
20100629/
[GEOLOCATION-PRIVACY]
Marcos Cáceres Privacy of Geolocation Implementations, "W3C Workshop on
Privacy for Advanced Web APIs" paper, 12/13 July 2010. URL:
http://www.w3.org/2010/api-privacy-ws/papers/privacy-ws-21.pdf
[MWABP]
Adam Connors; Bryan Sullivan. Mobile Web Application Best Practices. 14
December 2010. W3C Recommendation. URL: http://www.w3.org/TR/2010/REC-
mwabp-20101214/
[PRIVACY-BY-DESIGN]
Ann Cavoukian, PhD. Privacy By Design: The 7 Foundational Principles. August
2009, revised January 2011. URL:
http://www.ipc.on.ca/images/Resources/7foundationalprinciples.pdf
https://www.w3.org/TR/2012/NOTE-app-privacy-bp-20120703/ 6/6