From 5d1da868481512874c346c9528ffc4dcb64a80bd Mon Sep 17 00:00:00 2001
From: Don Marti <dmarti@cafemedia.com>
Date: Thu, 13 Jan 2022 13:15:43 -0800
Subject: [PATCH 1/2] Checking user understanding of shared identity

Add IEE role in surveys of users to check that they understand
common identity.

(It would be impractical to leave this to the browser and site
author, especially in cases where the browser and site author
have a business relationship that would be influenced by FPS
validity or invalidity.)

Refs #43 #48 #64 #76
---
 ua_policy_proposal.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ua_policy_proposal.md b/ua_policy_proposal.md
index 71bc21d..297654e 100644
--- a/ua_policy_proposal.md
+++ b/ua_policy_proposal.md
@@ -59,7 +59,7 @@ For each element of the First Party Set policy, we propose an enforcement method
 <tr>
 <td>A group identity that is easily discoverable by a users </td>
 <td>UI treatment (and co-branding in some cases)<sup>2</sup> </td>
-<td>None (solely the browser's and site author's responsibility)</td>
+<td>Conduct user surveys to determine if common identity is understandable to users</td>
 </tr>
 <tr>
 <td>Common Privacy Policy </td>

From 0c734b1f9a891256e2ec118012bd2829c55e6704 Mon Sep 17 00:00:00 2001
From: Don Marti <dmarti@cafemedia.com>
Date: Tue, 25 Jan 2022 10:13:13 -0800
Subject: [PATCH 2/2] note on user testing by IEE

---
 ua_policy_proposal.md | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/ua_policy_proposal.md b/ua_policy_proposal.md
index 297654e..9da0ec9 100644
--- a/ua_policy_proposal.md
+++ b/ua_policy_proposal.md
@@ -59,11 +59,11 @@ For each element of the First Party Set policy, we propose an enforcement method
 <tr>
 <td>A group identity that is easily discoverable by a users </td>
 <td>UI treatment (and co-branding in some cases)<sup>2</sup> </td>
-<td>Conduct user surveys to determine if common identity is understandable to users</td>
+<td>Conduct user surveys to determine if common identity is understandable to users<sup>3</sup></td>
 </tr>
 <tr>
 <td>Common Privacy Policy </td>
-<td>Technical checks<sup>3</sup> </td>
+<td>Technical checks<sup>4</sup> </td>
 <td>Performs technical check to ensure Privacy Policy is the same across all sites in the same set </td>
 </tr>
 </tbody>
@@ -78,7 +78,9 @@ For each element of the First Party Set policy, we propose an enforcement method
 +   sites within the set are prominently co-branded 
 +   sites within the set prominently disclose to users the parent company owner/operator (via a notice one click away from the home page, pop-up, or other method)
 
-<sup>3</sup> Site authors must ensure that a hyperlink to the common group privacy policy is placed on the default page of each domain listed on their proposed set; such that an automated technical check can be used to verify its presence.
+<sup>3</sup> The IEE will conduct some user surveys on randomly selected sets, for calibration, along with surveys as needed in order to handle reports of invalid sets.
+
+<sup>4</sup> Site authors must ensure that a hyperlink to the common group privacy policy is placed on the default page of each domain listed on their proposed set; such that an automated technical check can be used to verify its presence.
 
 Additional roles of enforcement entity: