How to avoid Privacy Report icon on IE bottom?

Forum Moderators: open

Message Too Old, No Replies

How to avoid Privacy Report icon on IE bottom?

masterpp

3:56 pm on Oct 1, 2004 (gmt 0)

I'm providing a remoted services like live chat, when it places on other websites, it shows the eye with stop sign icon on the IE bottom corner.
When I double-click that icon and see the summary, it says "Could not find a privacy policy for domain.com. To view this site's privacy policy, contact the Web site directly."

I already have SSL certificate installed. Is there some special cerfificate for the privacy report that need to order?

tedster

4:13 pm on Oct 1, 2004 (gmt 0)

I believe this is all about P3P (Platform for Privacy Preferences), not just your SSL cert.

[w3.org...]

Sanenet

4:17 pm on Oct 1, 2004 (gmt 0)

This is because you do not have an appropiate privacy policy installed on your site. The link tedster gave will tell you more about the overall aims of the policy, and their are several online tools you can download to create your own privacy policy, from MS, IBM and several others.

At it's most basic level, all IE is looking for is an XML declaration responding to a number of preset questions (what info you collect, what you do with the info, who to contact should you have questions, legal owner of site, etc).

MozMan

4:20 pm on Oct 1, 2004 (gmt 0)

Yes, you need to provide a P3P privacy policy. There are a couple of ways to go about it.

First, you can create a compact policy header. One way (if you are using ASP, for example) is to add this to the top of each page:

Response.AddHeader "P3P","CP=""CAO PSA OUR"""

or simply do a google search on "compact policy header" and you will find various other ways (probably better ways) to do it. But keep in mind, the compact header will only satisfy browsers with medium security settings.

To satisfy more browsers, you need to create a full policy document. Do a google on "creating privacy policy" and you will get a bunch of great info on how to do that, and some online generators that will do it for you.

masterpp

4:46 pm on Oct 1, 2004 (gmt 0)

thanks. wow that is alot of reading on that site. If I can't solve it, i will come back here and ask for help.

My scripts are in PHP language.

iProgram

4:04 am on Oct 3, 2004 (gmt 0)

hello MozMan, which CP value should I use? Just copy yours or generate my own header according to the privacy info of my website? I noticed that the IBM P3P generator will create a text file like this.

MozMan

5:40 pm on Oct 6, 2004 (gmt 0)

I honestly forget what they specifically mean, but basically the CP says that I'm not collecting personal data for malicious purposes. If you look at:

[w3.org...]

I believe they have the exact definitions of each value...

-Moz

MozMan

8:02 pm on Oct 6, 2004 (gmt 0)

OK- From my example above

[quote]Response.AddHeader "P3P","CP=""CAO PSA OUR"""[\quote]

CP means "Compact Policy"
CAO means "Contact and Other"
PSA means "psuedo-analysis"
OUR means "ours"

There's a whole list of available compact policy statements in the W3C recommendation (http://www.w3.org/TR/P3P/) under the Compact Policy section about halfway down the page. Hope this helps.

-Moz