[VC Security & Trust Document] Proof of consent?
Issue #2015
wontfix
Re storing end-user data
Giuseppe De Marco
they should store the entire presentation to prove the willing of their presenter … otherwise multiple RP may “share” multiple VC between them without taking into account the requirement of having a proof of consensus of their legitimate owners (users)
national and comunitary data processing laws (such as the GDPR and EPDB) require the user's consent to be managed
Comments (3)
-
reporter -
- changed component to VC Sec&Trust
-
- changed status to wontfix
Moving to new Repo under Digital Credentials Protocols WG
- Log in to comment
Also affects this sentence: “
Verifiers SHOULD NOT store presentations after verification.
"