Read the "perm'd data diaries": https://dholms.leaflet.pub/3mhj6bcqats2o - It sounds like they have already picked this rough sketch as the basis.

My take is that (1) public vs private will be an app level choice, and user if the app passes that choice through and (2) this sketch is insufficient for many applications, being on the simpler side of the design spectrum.