All I mean to say is that, if a privacy-tag is implemented to be used by the sites, the entire process of enforcing better privacy practice becomes hell lot easier. I don't say it'll reduce people mal-practicing with user data, but in case they would, it'll be easier to detect those spots (how? Well, when there's a will, there's a way!).
The <privacy leaktype="hexval" persistence="timespan" exposure="scope" /> can also very well be a sub-tag of <footer> tag - or, I'd better leave that decision for the experts to handle. I kept mentioning that there was a plan behind the hex-values of the parameters; they are actually designed to be used as the values/properties of privacy-tag's attributes (if it gets included into the next HTML specification - and the 'next' is version 5).