I hope that readers or anyone wanting to pursue this idea disregard the last sentence, or at least the "confirmed site logo" bit. How on earth could these things be confirmed by a third party and what information would a "confirmed site" badget convey? Sounds even flimsier than the "secured by <random antivirus>" or "secure SSL guaranteed" nonsense.
Given the legal concerns and the skew that attempting profitability would have, I'd rather just see this adopted by projects voluntarily. But even then, if it becomes mainstream to expect a "privacy ticker", there's still nothing to keep companies from selectively disclosing or straight up lying.
Given the legal concerns and the skew that attempting profitability would have, I'd rather just see this adopted by projects voluntarily. But even then, if it becomes mainstream to expect a "privacy ticker", there's still nothing to keep companies from selectively disclosing or straight up lying.