Loomio

privacy policy

PP
Pirate Praveen Public Seen by 355

Version 0.9 of the privacy policy of poddery.com is as follows.

Definitions:

Server: The computer we use to store our software and data.

Encryption: Keeping data readable only for people with a key (usually a password or a digital key). Anyone without a key will only see junk characters.

End to encryption: End-to-end encryption (E2EE) is a system of communication where only the communicating users can read the messages. In principle, it prevents potential eavesdroppers – including telecom providers, Internet providers, and even the provider of the communication service.

  1. We do not read, share or sell your data. We are hosting poddery.com because we care about privacy on the internet. We are funded by people like you via savepoddery.com
  2. Our server is hosted with Scaleway in France. Their Privacy Policy is at https://www.scaleway.com/terms/privacy/
  3. We use disk encryption on all data to prevent data leak in cases where servers are stolen, confiscated, or in any way physically tempered with.
  4. Applications like Riot, Conversations or services like chat.poddery.com support end to end encryption. If end to end encryption is enabled, no one other than sender and recipients will be able to read the messages. Not even the admins can read your messages. End to end encryption is not enabled by default in all applications. You may have to manually enable encryption for each conversation in some applications. We recommend end to end encryption for all conversations. (Remember to back up your encryption keys, we will not be able to retrieve your messages in case the keys are lost.)
  5. We provide and require SSL/TLS encryption on all provided services.
  6. Federation. Some of the services provided by poddery.com such as Diaspora, Xmpp and Matrix chat are operating based on so called Federation Protocols. This enables users signed up at different service providers to interact with each other. Because of the nature of the protocols (ability to send each other messages, likes, share files, chat) some of the data is naturally shared with other entities. However, sharing data with other service provider is the user's choice and is configured by the users in their settings per service including the decision of with whom and what to share.
  7. You may be shown embedded videos and link previews from other websites while using services provided by poddery.com. This may expose you to web tracking by external services, such as (but not limited to) Facebook, Twitter, and Google.

If you have any doubts on our privacy policy, contact us on poddery@autistici.org

We'll add details about backup when we set it up. We also need to add legal liabilities (how vulnerable are we to take downs and spying).

AS

Anish Sheela Mon 16 Sep 2013

Is this much ok?

PP

Pirate Praveen Mon 16 Sep 2013

  1. We do not read, share or sell your data.
PP

Pirate Praveen Mon 16 Sep 2013

We'll need to add legal liabilities too. We need help from some lawyers.

MKT

Manu Krishnan T V Mon 16 Sep 2013

Knightswarms privacy policy deals more with the data used for account creation. Will contact them to get written details of how they handle client data.

PP

Pirate Praveen Mon 16 Sep 2013

@manukrishnantv what you linked is privacy policy for their website, which not much useful to us.

AS

Anish Sheela Mon 16 Sep 2013

@praveenarimbrathod Need to add fields like limited liability, scope of work done by admins, The case while website is cracked, definition of technical terms used in documentation.

AS

Anish Sheela Mon 16 Sep 2013

@praveenarimbrathod Can you contact SFLC people again ?

PP

Pirate Praveen Wed 18 Sep 2013

@anisha see if more terms need a definition or if it needs to be simplified more. I will contact SFLC people again to get clarity on legal liability.

PP

Pirate Praveen Wed 18 Sep 2013

@anisha what are the possible ways of cracking we can think of? Also please make this group visibility to everyone.

AS

Anish Sheela Wed 18 Sep 2013

@praveenarimbrathod Done. It is a public web application connected to whole world. What do you need extra?

AS

Anish Sheela started a proposal Fri 20 Sep 2013

Keep privicy policy really simple Closed Thu 26 Sep 2013

Keep the privacy policy really simple, stated in less than 10 bullet points, without any legal jargon. This will keep users to understand our policy better.

Alternate is to keep a comprehensive policy that shows all details, including legal jargons. This will protect podadmins, who is responsible in case of a claim or problem also (I think so).

Results
Agree - 3
Abstain - 3
Disagree - 3
Block - 3
5 people have voted (12%)
AS

Anish Sheela
Abstain
Fri 20 Sep 2013

I am happy with either.

MKT

Manu Krishnan T V
Abstain
Fri 20 Sep 2013

PP

Pirate Praveen
Agree
Fri 20 Sep 2013

Just say "we do not read, share or sell your data" as main privay policy and give a "Know more" link.

BC

Balasankar C
Abstain
Sun 22 Sep 2013

Keep 10 bullets as privacy policy to be displayed in website, then give link to a detailed privacy policy.

BC

Balasankar C
Agree
Sun 22 Sep 2013

Keep 10 bullets as privacy policy to be displayed in website, then give link to a detailed privacy policy.

NAJ

Nitesh A Jain
Agree
Tue 24 Sep 2013

PP

Pirate Praveen Tue 26 Nov 2013

@prasanth is reviewing our privacy policy. He will also create a 'terms of use' for us. We met at SFLC office today.

PP

Pirate Praveen Fri 22 Aug 2014

@prasanth this has become very important issue with the recent Islamic State accounts on diaspora. We would really like to get legal advice on our obligations on content we host as per Indian Law. If you can review it soon, that would be very helpful. We are open to asking other organizations like CIS if it is not possible for SFLC to help.

S

Shamil Sun 10 Jun 2018

And we have a matrix service now too.

KVM

Kannan V M Tue 12 Jun 2018

should we add "we do not keep the data which is deleted by the user" and "every data posted by user and user details are removed on deletion of user account"??

KVM

Kannan V M Tue 12 Jun 2018

also use of cookies should be added?

KVM

Kannan V M Tue 12 Jun 2018

also about usage of their emails?

KVM

Kannan V M Tue 12 Jun 2018

also if we are asking for crowdfunding, the use of funding information should be added?

KVM

Kannan V M Tue 12 Jun 2018

also if we are asking for crowdfunding, the use of funding information should be added?

https://disroot.org/en/privacy_policy (we can take this as a good example)

PP

Pirate Praveen Sun 24 Jun 2018

Privacy Policy of scaleway.com https://www.scaleway.com/terms/privacy/