Interesting.
"Early next year the government
of British Columbia plans to introduce a virtual ID card for its
citizens. The virtual ID is actually a document that will reside on a
user’s computer and will enable him or her to access any and all
British Columbia government Web sites and use their services.The
virtual ID contains a bare minimum of information about a user; namely,
whether the individual is over the age of 19, a British Columbia
resident, or a student.The virtual ID also protects a user’s
personal information from being stolen as that info is no longer stored
at the various government agencies, but is kept at an online government
service, BCeID. In addition, the virtual ID protects a user’s privacy
as the government can’t track what sites a citizen visits. The
greatest advantage for citizens is "they have control over their
personal information," says Ian Bailey, director of application
architecture, Office of the Chief Information Officer. ‘It’s really
about control. You’re in complete control.’"
Very interesting indeed. A little more poking around regarding BCeID, where we learn a bit more:
"BCeID is an online service that makes it possible for you to use your Login ID and
password to sign in securely to BCeID participating Government online services.
With a BCeID you can:
Sign in to government participating sites using your BCeID and a single password so
you don’t have to remember a different Login ID and password at every website.
With BCeID, you don’t need to enrol for a Login ID and password at each new site
you visit — simply use the Login ID and password that you enrolled as your BCeID
to sign in to any participating government site or service.
There are two
types of BCeID:
Basic BCeID – Allows you to access Online Services that need to
recognize your account when you return, and do not require to know who you are.
To obtain a Basic BCeID there is no verification of your identity and registration
is completed entirely online.
Business BCeID – Allows you to access Online Services that require
that your business organization’s unique identity must be verified and where you are
acting in a business capacity as an authorized representative of the business
(i.e. not as an individual). Business BCeID may be used by representatives of companies,
partnerships, sole proprietorships or organizations including municipalities and
not-for-profit societies. Additional accounts for employees can be created as required. "
I’m especially intrigued by this section of the BCeID Privacy Policy:
"6.1 Customers
[ed.- they called us "customers" – I like this already…] have a right to access their personal information, subject to limited
exceptions.
6.2 A
customer can access their own key identity information and contact information
by utilizing BCeID’s online Profile Management tools.
6.3 It
is unlikely that BCeID would hold additional personal information about a
customer, beyond that stated in policy 6.2. In
the unlikely event that additional personal information has been collected
(where unusual account activity is detected, for example) a request to review
that information may be made in writing under the
Freedom of Information and Protection of Privacy Act
to the Information Management Branch at the Ministry of Finance.
6.4 All
written requests for access to personal information will be responded to within
30 business days, unless grounds exist to extend that time period. Where
grounds exist to extend the time period for responding, the customer will
receive a written notice of the extension and the reasons for the extension.
6.5 If
a request for access to personal information is refused in full or in part, the
customer will be notified in writing. The
written response will provide the reasons for the refusal and the recourse that
is available to the customer.
A clear privacy policy, an ability for customers to control their own information, a stated service level commitment for disputes? Holy cow. We need to learn more about this in the context of VRM, methinks.