Group Properties Help
This panel is used to set properties for a data group.
Recipient
Indicate who will receive the data that is collected.
To comply with the P3P specifications, check all options that apply.
For each option that you select, you can also
indicate if the information is required to use the services of the
Web site (default setting) or if users can opt-in or
opt-out of having their data used.
- Select opt-in if users must take some affirmative
action to allow their data to be provided to the recipient.
- Select opt-out if users must take some affirmative
action to prevent their data from being provided to the recipient.
For example, if a user is providing a shipping address,
opt-in
requires that the user check an additional box to permit
this information to be provided to Delivery services.
If the form already has the box checked,
then the user must uncheck it to
opt-out.
If opt-in or opt-out
is selected, you must provide the
Opt-in/opt-out URL
which includes clear instructions to allow users the
option of changing their minds.
- Ourselves and/or our agents
-
An agent in this instance is defined as a third party that processes data
only on behalf of the service provider
for the completion of the stated purposes.
The agent also includes your own organization if you
are acting as
the agent processing data on behalf of a service provider.
For example, a service provider and its printing bureau which
prints address labels and does nothing further with the information.
If the agent makes use of the information beyond its relationship with your
organization, then it is no longer considered simply an agent; one of the
additional recipients listed below must be given as well.
- Delivery services
- Organizations performing delivery services that may use data for purposes
other than completion of the stated purpose. This should also be used for
delivery services whose data practices are unknown.
- Other organizations following our practices
- Legal entities who use the data on their own behalf under
equable
practices. For example, consider a service provider that grants the user access
to collected personal information, and also provides it to a partner who uses it
once but discards it. Since the recipient, who has otherwise similar practices,
cannot grant the user access to information that it discarded, they are considered
to have equable practices.
- Other organizations following different practices
- Legal entities that are constrained by and accountable to the original
service provider, but may use the data in a way not specified in the service
provider's practices. For example, a service provider collects data that is shared
with a partner who may use it for other purposes. In this example, however, it is
in the service provider's interest to ensure that the data is not used in a way
that would be considered abusive to the users' and its own interests.
- Unrelated third parties
- Organizations whose data usage practices are not known by the original service
provider.
- General public
- The data will be made publicly available.
Examples include bulletin boards, public directories, or commercial CD-ROM
directories.