# Agenda & Minutues for the 25 August 2025 17:00 ADT CG Meeting ## Dial in details *Zoom*: https://zoom.us/j/95320945677?pwd=aMBNHYCSujHC1MW6z1V1CjbMfKwE27.1 *When*: Every second Monday from 17:00 to 18:00(Eastern Australia Time - Sydney) *Location*: Zoom: https://zoom.us/j/95320945677?pwd=aMBNHYCSujHC1MW6z1V1CjbMfKwE27.1 *Chair*: DH *Minutes*: VR ## Attendees - John Scullen - Dave Hyland - Linden Dawson - Miki Brotzler - Victoria Richardson - Stefan Charsley - Dima Postnikov - Gareth Narinesingh - Jo Spencer - Brad Carr ## Agenda 1. **The meeting will be recorded for note taking purposes only.** 2. **Antitrust Reminder**: Note latest Refresh of the rules https://openid.net/policies/ DIMA to provide an overview of the Note Well https://openid.net/wp-content/uploads/2025/06/OIDF_Groups-Activities-Events-Note-Well_Final_2025-06-12.pdf 2. **ADT CG Charter** 3. **Administration** - **Participation Agreements**: Reminder to sign the participation agreement if you wish to have your comments and contributions recorded. - **Access to Slack**: Reminder to join the Slack channel for ongoing discussions and updates. You will need to sign the participation agreement to contribute IPR to the Slack channel. - **Access to the Mailing List**: See the signup link in the Readme.md file. 4. **Introductions** - new attendees. 5. **General Discussion** *Previous Actions* * Victoria to draft a response to the Productivity Commission report on data sharing, focusing on the importance of digital identity standards. **DONE** * Linden and Miki to support Victoria in reviewing and providing feedback on the draft response to the Productivity Commission report. **DONE** * Victoria to present the draft response to the Productivity Commission report at the next meeting in two weeks. **DONE** * Olaf to create a Slack channel for discussing the Productivity Commission report response. **OPEN** * Dave to publish the Trust Framework Working Group meeting notes. **DONE** * Sushmita to share the presentations from the UNSW digital credentials workshop with the community. **OPEN** * Sushmita to share the research report on AGDIS with the community once completed. **OPEN** * Brad to send a communication to the mailing list regarding the postponement of the Innovation Day event. **OPEN** * Victoria to provide an update on the Digital Identity New Zealand event in a couple of weeks. **OPEN** * Jacob to lead the Age Assurance subgroup when it becomes active. **DONE** 6. **Local Events**: [see below](#Local-Events) 7. **Previous Actions**: [see below](#Actions) 8. **Subgroup Updates**: [see below](#Subgroups) 9. **AOB** Discussion forming a reponse on productivity commission https://www.pc.gov.au/inquiries/current/data-digital/interim ## Local Events Please insert chronologically ordered _(hopefully)_ ### Event Name, Location, Date | Title | Event Name | |----------|---| | Location | Someplace, STATE | | Date | 2025-01-01 | | Link | https://example.net | This is a template entry. Copy and paste for own events. Please insert chronologically. ### Digital Financial Services Summit NSW 2025, Sydney, 4 September Thursday - September 4, 2025. The Fullerton Hotel Sydney {%preview https://forefrontevents.co/event/digital-financial-services-summit-nsw-2025/ %} ### IDPro September, Brisbane, 9 September IBM Offices - Queen Street, Brisbane. {%preview https://www.trybooking.com/DDBPH %} ### Digital Identity Week, Sydney, 9-10 September 9-10 September, 2025 Swissôtel Sydney {%preview https://www.cshub.com/events-digitalidentityandsecurity %} ### Identity Access Management, Melbourne, 18 September 18 September, 2025 {%preview https://www.clutchevents.co/events/melbourne-identity-authentication-access-management-summit-2025 %} ### ID Match, Sydney, 16-17 September IVS Forum 2025 16 & 17 September 2025 {%preview https://www.ticketebo.com.au/idmatch/ivs-forum-2025/index/r/10 %} ### Biometrics Intitute Showcase Australia, Canberra & Online, 26 November {%preview https://www.biometricsinstitute.org/event/showcase-australia-2025/ %} 26 November, 2025. Hotel Realm, Canberra ### Innovation Day - Identity Through Life, Sydney, ?? September Deloitte Offices - 50 Bridge St, Sydney Focus on age assurance, estate planning, delegation and end of life. ## General updates ### OIDF Polls _none current_ ### Discussion ### Notes - Signature of the participaation agreement is not required to join the ODIF Slack. This is following a decision by OIDF Board that information that contains IP should not be shared in Slack by default. Therefore, signature of the agreement is not a prerequisite. ## Actions _TBC_ ## ADT CG Subgroups The ADT CG will govern and oversee the activites of the subgroups. Subgroups will report back to the CG on activities, progress and broad socialisation/review of any work they undertake. ## Subgroups ### SIDI Trust Framework Analysis **Meets**: Every second Monday @ 5 PM **Slack**: https://oidf.slack.com/archives/C08HWV6BR7X **Overview**: https://github.com/openid/cg-australian-digital-trust/blob/f5c4682e24c7f28b8663cdb697268003728d7f73/TrustFrameworkAnalysis/Readme.md **Discussion**: As per the meeting notes: https://hackmd.io/9rj0nzA8SfaIIWUvFqQ30g **Actions**: As per the meeting notes: https://hackmd.io/9rj0nzA8SfaIIWUvFqQ30g - Dave to obtain the full version of the trust framework analysis tool from Elizabeth. - DONE - Dave to ensure the group has the correct spreadsheet with all characteristics and values for capturing information. - DONE - Dave and the group to decide on the appropriate level (use case, sector, or scheme) at which to conduct their analysis. - Dave to create a layered picture of the different frameworks and implementations being analyzed. - Victoria to review the full version of the trust framework analysis tool once received. - The group to consider using Slack for more frequent communication between meetings to develop and refine their work. ### DADE AU **Meets**: Disbanded in favor of global [OpenID "DADE" group](https://github.com/openid/death-and-the-digital-estate) **Slack**: [OpenID #cg-dade](https://oidf.slack.com/archives/C07KQP3DMR7) **Overview**: Will align with the global group (next meeting 21 Aug 8am AEST) **Actions**: **Discussion** - Call for Contributions to [Digital Estate Planning Guide](https://docs.google.com/document/d/1gjM82jsF242ag99-pDaQF00i5YK3Lpwr/edit) ### Age Assurance **Meets**: TBC. **Slack**: https://oidf.slack.com/archives/C08HZ95GGKC **Overview**: https://github.com/openid/cg-australian-digital-trust/blob/f5c4682e24c7f28b8663cdb697268003728d7f73/InnovationDay-1/Readme.md **Discussion**: **Actions**: No Actions - This will remain open as an Active Slack channel while the Innovation Days activites are underway. ## Other Items **Discussion forming a reponse on [productivity commission](https://www.pc.gov.au/inquiries/current/data-digital/interim)** {%preview https://www.pc.gov.au/inquiries/current/data-digital/interim %} Discussion around the consideration of digital identity in the recommendations. # Next meeting Date: 25 August 2025 ## Dial in details *Zoom*: https://zoom.us/j/95320945677?pwd=aMBNHYCSujHC1MW6z1V1CjbMfKwE27.1 *When*: Bi-weekly from 17:00 to 18:00 on Monday (Eastern Australia Time - Sydney) *Location*: Zoom: https://zoom.us/j/95320945677?pwd=aMBNHYCSujHC1MW6z1V1CjbMfKwE27.1 *Chair*: Dave Hyland *Minutes*: Victoria Richardson **Discussion about the scope of the proposed response to the PC report** https://www.pc.gov.au/inquiries/current/data-digital/interim/data-digital-interim.pdf 4 points were discussed: 1. **Digital identity framing** (Executive Summary, pp. 6–7):  The report references “initiatives to expand the Digital ID system” (Executive Summary, pp. 6–7). The Australian Government Digital Identity System (AGDIS) is only one of several digital identity services operating in Australia. The PC should acknowledge the broader ecosystem and frame digital identity as enabling privacy, security, and convenience. Data sharing ecosystems should be designed to allow consumers to choose their identity service provider, not be locked into a single system. Policy recommendations should focus on enabling identity service providers that adhere to open standards rather than referencing/preferencing one system. A standards-based approach ensures interoperability across sectors and borders, avoids fragmentation, and supports competition and innovation. 2. **Alternative pathways** (Draft Rec. 2.1, Ch. 2, pp. 29–50): Introduce a data minimisation principle so where appropriate people can share assertions about themselves (e.g. “over 18”, “income above $X”, “rent paid on time”) rather than requiring sharing of raw data. Add assertion-based sharing as an alternative pathway. Highlight benefits of this approach - accelerates consumer access to new services,  increases competition without exposing unnecessary data and increasing risk of data breaches, addresses consent fatigue (Ch. 3, pp. 53–64) by reducing the complexity of consent prompts. Encourage government to base such an approach on global standards that enable trusted, privacy-preserving assertions. Note that live services in the Australian market already support this approach, and should be actively considered as part of alternative pathways. Ensure intermediaries accredited under proposed trust frameworks can manage assertion-based consent and liability, not just raw data transfers. 3. **Incentives** - how are participants incentivised to follow voluntary regimes? Need to create the ability to exchange value. Need to include this in the rules so that people can build a business case to participate. 4. **Cross border data privacy** - what are the constraints of global data privacy regimes and how should these be taken into consideration. 5. **More holistic approach to data sharing in the long term** - set of standards based rails that all sectors follow. Different tech for different industries. We should have a cross economy framework. Discuss principles based regulation first, then consider the tech and implementation choices. It should be a layered approach. If we dont have a goevrnance framework we will have private frameworks. 6. **Right to be forgotten.** If you dont need the data - dont collect or keep it. OIDF key principle is privacy preserving. And if you can implement you should. SO it's a must rather than a should and wont make sense for every use case. Ref PCIDSS - data had to be obfiscated if you wanted to keep it. Ideally dont collect. 7. **Data with provenance** - to improve security and non repudiation. 8. **Role definition** - which helps with data breah obligations. 9. **Need to articulate how the recs will benefit the productivity agenda.** - here's what is missing - here's how it enhance the productivity agenda <u>**Next Steps**</u> Dima to share with Gail and provide context. After that we will build out the response (assuming positive response)