Loomio

privacy policy

Pirate Praveen
Pirate Praveen Public Seen by 294

Version 0.9 of the privacy policy of poddery.com is as follows.

Definitions:

Server: The computer we use to store our software and data.

Encryption: Keeping data readable only for people with a key (usually a password or a digital key). Anyone without a key will only see junk characters.

End to encryption: End-to-end encryption (E2EE) is a system of communication where only the communicating users can read the messages. In principle, it prevents potential eavesdroppers – including telecom providers, Internet providers, and even the provider of the communication service.

  1. We do not read, share or sell your data. We are hosting poddery.com because we care about privacy on the internet. We are funded by people like you via savepoddery.com
  2. Our server is hosted with Scaleway in France. Their Privacy Policy is at https://www.scaleway.com/terms/privacy/
  3. We use disk encryption on all data to prevent data leak in cases where servers are stolen, confiscated, or in any way physically tempered with.
  4. Applications like Riot, Conversations or services like chat.poddery.com support end to end encryption. If end to end encryption is enabled, no one other than sender and recipients will be able to read the messages. Not even the admins can read your messages. End to end encryption is not enabled by default in all applications. You may have to manually enable encryption for each conversation in some applications. We recommend end to end encryption for all conversations. (Remember to back up your encryption keys, we will not be able to retrieve your messages in case the keys are lost.)
  5. We provide and require SSL/TLS encryption on all provided services.
  6. Federation. Some of the services provided by poddery.com such as Diaspora, Xmpp and Matrix chat are operating based on so called Federation Protocols. This enables users signed up at different service providers to interact with each other. Because of the nature of the protocols (ability to send each other messages, likes, share files, chat) some of the data is naturally shared with other entities. However, sharing data with other service provider is the user's choice and is configured by the users in their settings per service including the decision of with whom and what to share.
  7. You may be shown embedded videos and link previews from other websites while using services provided by poddery.com. This may expose you to web tracking by external services, such as (but not limited to) Facebook, Twitter, and Google.

If you have any doubts on our privacy policy, contact us on poddery@autistici.org

We'll add details about backup when we set it up. We also need to add legal liabilities (how vulnerable are we to take downs and spying).

Anish Sheela

Anish Sheela September 16th, 2013 14:14

Is this much ok?

Pirate Praveen

Pirate Praveen September 16th, 2013 14:23

  1. We do not read, share or sell your data.
Pirate Praveen

Pirate Praveen September 16th, 2013 14:27

We'll need to add legal liabilities too. We need help from some lawyers.

Manu Krishnan T V

Manu Krishnan T V September 16th, 2013 15:04

Knightswarms privacy policy deals more with the data used for account creation. Will contact them to get written details of how they handle client data.

Pirate Praveen

Pirate Praveen September 16th, 2013 15:27

@manukrishnantv what you linked is privacy policy for their website, which not much useful to us.

Anish Sheela

Anish Sheela September 16th, 2013 21:41

@praveenarimbrathod Need to add fields like limited liability, scope of work done by admins, The case while website is cracked, definition of technical terms used in documentation.

Anish Sheela

Anish Sheela September 16th, 2013 21:41

@praveenarimbrathod Can you contact SFLC people again ?

Pirate Praveen

Pirate Praveen September 18th, 2013 08:02

@anisha see if more terms need a definition or if it needs to be simplified more. I will contact SFLC people again to get clarity on legal liability.

Pirate Praveen

Pirate Praveen September 18th, 2013 08:06

@anisha what are the possible ways of cracking we can think of? Also please make this group visibility to everyone.

Anish Sheela

Anish Sheela September 18th, 2013 19:03

@praveenarimbrathod Done. It is a public web application connected to whole world. What do you need extra?

Anish Sheela

Anish Sheela started a proposal September 20th, 2013 16:12

Keep privicy policy really simple Closed 12:46am - Thursday 26 Sep 2013

Keep the privacy policy really simple, stated in less than 10 bullet points, without any legal jargon. This will keep users to understand our policy better.

Alternate is to keep a comprehensive policy that shows all details, including legal jargons. This will protect podadmins, who is responsible in case of a claim or problem also (I think so).

Results
Agree - 3
Abstain - 3
Disagree - 3
Block - 3
-31 people have voted (-700%)
Anish Sheela

Anish Sheela
Abstain
September 20th, 2013 16:13

I am happy with either.

Manu Krishnan T V

Manu Krishnan T V
Abstain
September 20th, 2013 16:21

Pirate Praveen

Pirate Praveen
Agree
September 20th, 2013 18:17

Just say "we do not read, share or sell your data" as main privay policy and give a "Know more" link.

Balasankar C

Balasankar C
Abstain
September 22nd, 2013 19:22

Keep 10 bullets as privacy policy to be displayed in website, then give link to a detailed privacy policy.

Balasankar C

Balasankar C
Agree
September 22nd, 2013 19:22

Keep 10 bullets as privacy policy to be displayed in website, then give link to a detailed privacy policy.

Nitesh A Jain

Nitesh A Jain
Agree
September 24th, 2013 13:42

Pirate Praveen

Pirate Praveen November 26th, 2013 14:14

@prasanth is reviewing our privacy policy. He will also create a 'terms of use' for us. We met at SFLC office today.

Pirate Praveen

Pirate Praveen August 22nd, 2014 17:38

@prasanth this has become very important issue with the recent Islamic State accounts on diaspora. We would really like to get legal advice on our obligations on content we host as per Indian Law. If you can review it soon, that would be very helpful. We are open to asking other organizations like CIS if it is not possible for SFLC to help.

Shamil

Shamil June 10th, 2018 07:25

And we have a matrix service now too.

Kannan V M

Kannan V M June 12th, 2018 14:50

should we add "we do not keep the data which is deleted by the user" and "every data posted by user and user details are removed on deletion of user account"??

Kannan V M

Kannan V M June 12th, 2018 15:03

also use of cookies should be added?

Kannan V M

Kannan V M June 12th, 2018 15:15

also about usage of their emails?

Kannan V M

Kannan V M June 12th, 2018 15:19

also if we are asking for crowdfunding, the use of funding information should be added?

Kannan V M

Kannan V M June 12th, 2018 17:50

also if we are asking for crowdfunding, the use of funding information should be added?

https://disroot.org/en/privacy_policy (we can take this as a good example)

Pirate Praveen

Pirate Praveen June 24th, 2018 04:47

Privacy Policy of scaleway.com https://www.scaleway.com/terms/privacy/