Great UMA-Legal call.
As mentioned in the call, the CIS WG has a freshly minted, MVCR v0.7 draft, from the CIS WG on GitHub. This is an active working draft, in progress, and can be found here :
There is also a :
- Consent Receipt Generator on display
- Example Implementation for th CIS-Join Form, (also in progress)
The MVCR has just reached (this is the first announcement) v0.7 has been cut to its most minimal, and the plan is to fill in the detail through implementation requirements which we hope UMA can help by providing some use cases. The MVCR wants to be a core consent record format, which can (hypothetically) be extended by UMA (and 3rd part trust frameworks ). We plan to start testing it out as a tool to map information sharing relationships and it can be useful in the context of logging UMA resource access and use from the Authorisation Server.
As it happens, the law provides a great rule set for the consent record format. Consent requirement are the most common privacy requirements across all jurisdictions and cultures, it is what is legitimately authoritative (enforced by law) and we for see using consent to bind terms and logging use of resources with the MVCR format.
Now that we have this new MVCR we really want to play with it. In collaboration with UMA we have a chance to explore the use of the MVCR on aggregate and hopefully get a glimpse of how the MVCR might work on scale and for interoperability.
If you are interested in contributing to the MVCR we are taking issues on the Github repository, everyone is welcome to participate, if you sign the participation agreement.
Kind Regards,
Mark
CO-Chair
Consent & Information Sharing Work Group