Date: prev next · Thread: first prev next last
2010 Archives by date, by thread · List index

Hi Wolf, *,

On Tue, Dec 21, 2010 at 6:10 PM, Wolf Halton <> wrote:
Here is a little love for the privace policy statement.

How long is the raw data kept?

The data while in the tracking process? only until it is flushed to
the database.
The collected data itself will not expire.

How do we know it has been permanently removed?

There are no plans to dump the data - as it would be nice to tell how
the number of visitors distribute/evolve over the months of last year,
wouldn't it?

Who has access to the raw data?

only admins with shell access.

How securely are log files treated?

If you get access to the raw data, you got shell access and either
broke into our server, or are a trustworthy person :-) See also the
answer to Christroph.
Number of people with access to that data is limited. But of course
the resulting charts/diagrams, numbers will be published to the
mailinglist and/or website to show growth, where to focus on/what
interests the users.

Anonymizers are not always perfect at protecting personal info, and log
files are where piwik got its data originally.

piwik doesn't use logfiles, but tracking is done using an embedded javascript.

Piwik does not use apache's access logs or similar. piwik can be on a
completely different server.

Is there a defined security team, unconnected to the development team or the
sysad team?

There's no dedicated security team wrt piwik, that is covered by the
general infrastructure administration group.

What is written in the privacy statement must be true, however if it is not
backed up with strong internal policy it saves time just to say, "we will
try to keep your info safe but since we have no policy related to security
breeches, in the event of an actual breech, ' every man for himself! ' "

Well, in the event of an actual breech, everything is lost anyway. So
to say: We rely on the ssh being secure, and piwik authentication to
work. But we rely on this for  all the stuff that runs on our servers,
so I don't really get your point.

But the data is not personal data anyway (unless you regard the
combination of IP, used Browser/operating system and time of the visit
as personal data)


Unsubscribe instructions: E-mail to
List archive:
*** All posts to this list are publicly archived for eternity ***


Privacy Policy | Impressum (Legal Info) | Copyright information: Unless otherwise specified, all text and images on this website are licensed under the Creative Commons Attribution-Share Alike 3.0 License. This does not include the source code of LibreOffice, which is licensed under the Mozilla Public License (MPLv2). "LibreOffice" and "The Document Foundation" are registered trademarks of their corresponding registered owners or are in actual use as trademarks in one or more countries. Their respective logos and icons are also subject to international copyright laws. Use thereof is explained in our trademark policy.