Enterprise Privacy Authorization Language (EPAL) is a formal language for writing enterprise privacy policies to govern data handling practices in IT systems according to fine-grained positive and negative authorization rights. It was submitted by IBM to the World Wide Web Consortium (W3C) in 2003 to be considered for recommendation.
Lawsuit
In 2004, a lawsuit was filed by Zero-Knowledge Systems claiming that IBM breached a copyright agreement from when they worked together in 2001 - 2002 to create Privacy Rights Markup Language (PRML). EPAL is based on PRML, which means Zero-Knowledge argued they should be a co-owner of the standard.1
References
References
- Paul F. Roberts (June 10, 2004). "Lawsuit questions IBM's ownership of EPAL standard". networkworld.com. Retrieved February 12, 2018.
- EPAL 1.2 submission to the W3C 10 Nov 2003
- Technology Report on EPAL from OASIS
- A Comparison of Two Privacy Policy Languages:EPAL and XACML by Anne Anderson, Sun Microsystem Laboratories