From 2bda4746e87363ce4447545013a965625deffdcf Mon Sep 17 00:00:00 2001
From: Theresa O'Connor <hober@apple.com>
Date: Wed, 17 Jul 2024 13:41:54 -0700
Subject: [PATCH] New question on hidden metadata. (#138)

New question on hidden metadata. Fixes #130.
---
 index.bs | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)

diff --git a/index.bs b/index.bs
index 4e54151..0992351 100644
--- a/index.bs
+++ b/index.bs
@@ -313,6 +313,35 @@ See also
 
 * [[DESIGN-PRINCIPLES#do-not-expose-use-of-assistive-tech]]
 
+<h3 class=question id=hidden-data>
+  Does data exposed by your specification carry related but distinct
+  information that may not be obvious to users?
+</h3>
+
+Features which enable users
+to share data with origins
+should ensure that such data
+does not carry embedded, possibly hidden, information
+without the user's awareness, understanding, and consent.
+
+Documents
+such as image or video files
+often contain metadata about
+where and when the image, video, or audio was captured
+and
+what kind of device captured or produced the data.
+When uploaded,
+this kind of metadata
+may reveal to origins
+information the user did not intend to reveal,
+such as the user's present or past location
+and socioeconomic status.
+
+User agents should enable users to choose
+whether or not to share such data with sites,
+and the default should be that such data
+is not shared.
+
 <h3 class=question id="persistent-origin-specific-state">
   Do the features in your specification introduce state
   that persists across browsing sessions?