Pushing messages about users over the network via third-party push providers creates a potential privacy risk for users. To help manage this risk, we need to create a policy to identify the kinds of data that may be pushed and that may not, prior to any deployment.
As a way of getting our heads around the problem, we could audit the existing Echo notification messages to create a list of the kinds of data that are currently used, then evaluate them for privacy risks.
AC
- Audit existing Echo Notification messages and create a list or typology of the kinds of data they contain
- Create a policy defining what types of data may or may not be send in push notifications over the network
- That policy is linked from the mw:Push_Notifications_Infrastructure project page or the decisions page.