After years of work, the Kantara Initiative Anchored Notice and Consent Work Group has published as Kantara Recommendation “Transparency Performance Indicators”. The indicators — TPIs — measure the transparency of PII Controllers (as required by the Council of Europe 108+, GDPR, Quebec Law 25, and others) and map them to open international standards including the ISO/IEC 29100 Privacy framework, ISO/IEC Consent record information structure, and the Kantara Consent Receipt v 1.1.
Importantly TPIs DO NOT CREATE a PII Principal identifier. Rather, TPIs are used by the PII Principal (i.e., the individudal) to control their personal data, and use the law to do it.
TPIs can be used by anyone to measure PII Controller Transparency with regards to notice, consent, privacy, and security.
Read the Kantara Recommendations