How about if we ONLY had a privacy policy which pertained to the data we have to collect in order to register people for our meetings? It seems reasonable to have a statement that says we (the secretariat or its agents) will only use the info as needed to process payments etc, will not use the data to make, sell or otherwise create lists for purposes other than the meetings? Ole Ole J. Jacobsen Editor and Publisher, The Internet Protocol Journal Cisco Systems Tel: +1 408-527-8972 Mobile: +1 415-370-4628 E-mail: ole@xxxxxxxxx URL: http://www.cisco.com/ipj _______________________________________________ Ietf mailing list Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf