M3P:Privacy policy

From M3P
Jump to navigation Jump to search

The M3P Privacy Policy is in the process of being approved by the Board of Directors at the next AGM. Discussion and proposed changes are welcome on the talk page.

This policy covers personally identifiable information collected or stored by M3P on its servers, both online and offline.

M3P's basic Data Retention Policy is to collects and retain the least amount of personally identifiable information needed to fulfill the project's operational needs.

This version of the M3P Privacy Policy is modeled in part on that of the Wikimedia Foundation [1], the official developer of the MediaWiki software used on this website.

Details of Data Retention

IP and other technical information

When a visitor requests or reads a page, or sends email to an M3P server, no more information is collected than is typically collected by websites. The M3P Foundation may keep raw logs of such transactions, but these will not be published or used to track legitimate users.

When a page is edited by a logged-in editor, the server confidentially stores related IP information for a limited period of time. This information is automatically deleted after a set period. Logging in with a registered username allows for better preservation of privacy as this masks IP addresses from public view. The IP address is only displayed on the visitors' individual pages until they log in.

Cookies

The M3P website sets a temporary session cookie on a visitor's computer whenever a page is visited. Readers who do not intend to log in or edit may deny this cookie; it will be deleted at the end of the browser's session. More cookies may be set when one logs in to maintain logged-in status. If one saves a user name or password in one's browser, that information will be saved for up to 30 days, and this information will be resent to the server on every visit to the same Project. Contributors using a public machine who do not wish to show their username to future users of the machine should clear these cookies after use.

Page history

Edits or other contributions to articles, user pages and talk pages are generally retained forever. Removing text from a project does not permanently delete it. Normally, in projects, anyone can look at a previous version of an article and see what was there. Even if an article is "deleted", a user entrusted with higher level of access may still see what was removed from public view. Information can be permanently deleted by individuals with access to M3P servers, but aside from the rare circumstance when the Foundation is required to delete editing-history material in response to a court order or equivalent legal process, there is no guarantee any permanent deletion will happen.

User contribution

User contributions are also aggregated and publicly available. User contributions are aggregated according to their registration and login status. Data on user contributions, such as the times at which users edited and the number of edits they have made, are publicly available via user contributions lists, and in aggregated forms published by other users.

Reading projects

No more information on users and other visitors reading pages is collected than is typically collected in server logs by websites. Aside from the above raw log data collected for general purposes, page visits do not expose a visitor's identity publicly. Sampled raw log data may include the IP address of any user, but it is not reproduced publicly.

Editing projects

Edits to M3P pages are identified with the username of the editor, and editing history is aggregated by author in a contribution list. Such information will be available permanently on the projects. Logged in registered users: Logged in users do not expose their IP address to the public except in cases of abuse, including vandalism of a wiki page by the user or by another user with the same IP address. A user's IP address is stored on the wiki servers for a period of time, during which it can be seen by server administrators and by users who have been granted CheckUser access. IP address information, and its connection to any usernames that share it, may be released under certain circumstances (see below). Editors using a company mail server from home or telecommuting over a DSL or cable Internet connection, are likely to be easy to identify by their IP address; in which case it may be easy to cross-identify all contributions made by that IP. Using a username is a better way of preserving privacy in this situation. Unlogged-in registered users and unregistered users: Editors who have not logged in may be identified by network IP address. Depending on one's connection, this IP address may be traceable to a large Internet service provider or more specifically to a school, place of business or home. It may be possible to use this information in combination with other information, including editing style and preferences, to identify an author completely.

Discussions

On wiki discussion pages: Any editable page can theoretically be the location of a discussion. In general, discussions on Foundation projects occur on user talk pages (associated with particular users), on article talk pages (associated with particular articles) or in pages specially designated to function as forums for users. Privacy expectations apply to discussion pages in the same way as they do elsewhere.

Via email: Users are required to list an email address when registering. Users who provide a valid email address can enable other logged-in users to send email to them through the wiki. When receiving an email from other users through this system, one's email address is not revealed to them. When choosing to send an email to other users, one's email is displayed as the sender. The email address put into one's user preferences may be used by the M3P Foundation for communication. Users whose accounts do not have a valid email address will not be able to reset their password if it is lost. In such a situation, however, users may be able to contact one of the M3P server administrators to enter a new e-mail address. A user can change/remove the account's email address from his/her preferences at any time to prevent it from being used. Private correspondence between users may be saved at those users' discretion and is not subject to M3P Foundation policy.