Hello - I posted this question 2 1/2 years ago about delegated authority - Delegated Managing of permissions - would this work? . There seems to have been huge & impressive progress since then, and lots more resources. I still have a central question about delegating authority over data. I wonder if you can point me to what I should be reading about this?
A bit more detail to the question
There is this sentence in an intro to Solid: “The premise behind Solid is a simple one: for every single piece of data you create online, you can choose where you store it” seems to me to be very clear and very important. The fact that you can choose should impose real discipline over app providers, which the walled gardens do not have.
But does “can” entail “must”?
Specifically, my online life generates vast amounts of data and I do not want, for most of it, to be handling questions of where to store, and what access permissions are, myself. Ideally, I’d like to delegate all those choices to an institution (a company or a charity or an AI) that I trust. Does the Solid architecture allow this? Does it envisage this as a standard use case? Is anyone working on the apps that would make Solid work for delegated authorities? Is there discussion about this feature that anyone can point me to?
By visiting https://forum.solidproject.org/, i have created the data that “I am interested in Solid solutions”. Maybe someone finds that data useful. For example, Inrupt might want to get in touch to see if one of their solutions could work for me. And I’d probably welcome that approach. Imagine that I don’t know that Inrupt is out there as a SOLID solution provider. However, I’m not going to spend the time setting up permissions to that piece of information that I’ve just created. However, let’s say that information ends up in one of my pods, and my pod is run by the Data Steward that I have authorised. They are professionals who do data permission management at industrial scale through their automated tools. I have signed up to one of their products which includes a term that says: “make my browsing data available to companies on your whitelist for use in advertising targeting, and if our algorithms find a very high degree of match between a company and your interests, we will give them access to a direct channel of contact for a 1-off approach”. Under these terms, in this example, Inrupt keeps a scan on people visiting https://forum.solidproject.org/, it is a whitelisted and trustworthy counterpart according to my Data Steward, and my Data Steward’s algorithm has flagged my strong interest in Solid solutions. Therefore, it gives Inrupt a 1-time access to email, so they have a chance at forming a longer term relationship with me.
So here is another version of my question - how easy is it for SOLID to accommodate the Data Stewart in the example given? And is it part of the “SOLID philosophy” that this is a good solution, or would it always be kludgey and in risk of being made impossible as the protocols develop?
Thank you for any pointers and help.