All legal requirements MUST be satisfied. Members MUST operate within the law.
All normative requirements of [TAS3PROTO] MUST be satisfied.
Each member MUST be registered on the file at the Trust Guarantor. The filing MUST include details appropriate for the jurisdiction to identify the entity to the extent needed to raise a law suit and/or coordinate investigation with the tax authorities. Typically this means at least
Entity name
Address
Company registration or VAT number
Version of Governance Agreement signed and date signed (Req. D1.2-6.13-Contract)
Whenever this information changes, the member MUST prompty inform the Trust Guarantor.
Each member MUST conspiciously publish a Privacy Policy and Terms of Use for their services on the internet. Member must make available a registry description and offer consultation, rectification, and/or removal of PII.
The Policy and the Terms MUST address at least
Entity name and contact for inquiries
Data retention policy
How is User identified (database keys, properties, such as pseudonymity, of identifier, etc.)
With whom data is exchanged and why
Whether the policy may change and how existing customers are handled upon the change.
A member MUST adhere to its own Policy and Terms.