diff --git a/wip-conditional-policy.md b/wip-conditional-policy.md
new file mode 100644
index 0000000..c4f1cf4
--- /dev/null
+++ b/wip-conditional-policy.md
@@ -0,0 +1,31 @@
+Ideas around how to structure policy to make it easy to conditionally enable/disable via a GUI.
+
+```
+profile example {
+
+  include <conditional_camera>
+  include <conditional_microphone>
+
+}
+```
+
+conditional_camera
+```
+# ??? some syntax to declare a dependency on $allow_camera, making it a user defined var ...
+
+if $allow_camera {
+    include <camera>
+}
+```
+
+
+camera
+```
+# set meta data for the rules
+tag=camera {
+   # regular rules
+}
+```
+
+
+??? hrmmm how to handle hot plug udev devices better