Hi Wolf, *,
On Tue, Dec 21, 2010 at 6:10 PM, Wolf Halton <email@example.com> wrote:
Here is a little love for the privace policy statement.
How long is the raw data kept?
The data while in the tracking process? only until it is flushed to
The collected data itself will not expire.
How do we know it has been permanently removed?
There are no plans to dump the data - as it would be nice to tell how
the number of visitors distribute/evolve over the months of last year,
Who has access to the raw data?
only admins with shell access.
How securely are log files treated?
If you get access to the raw data, you got shell access and either
broke into our server, or are a trustworthy person :-) See also the
answer to Christroph.
Number of people with access to that data is limited. But of course
the resulting charts/diagrams, numbers will be published to the
mailinglist and/or website to show growth, where to focus on/what
interests the users.
Anonymizers are not always perfect at protecting personal info, and log
files are where piwik got its data originally.
Piwik does not use apache's access logs or similar. piwik can be on a
completely different server.
Is there a defined security team, unconnected to the development team or the
There's no dedicated security team wrt piwik, that is covered by the
general infrastructure administration group.
What is written in the privacy statement must be true, however if it is not
backed up with strong internal policy it saves time just to say, "we will
try to keep your info safe but since we have no policy related to security
breeches, in the event of an actual breech, ' every man for himself! ' "
Well, in the event of an actual breech, everything is lost anyway. So
to say: We rely on the ssh being secure, and piwik authentication to
work. But we rely on this for all the stuff that runs on our servers,
so I don't really get your point.
But the data is not personal data anyway (unless you regard the
combination of IP, used Browser/operating system and time of the visit
as personal data)
Unsubscribe instructions: E-mail to firstname.lastname@example.org
List archive: http://www.libreoffice.org/lists/website/
*** All posts to this list are publicly archived for eternity ***
Impressum (Legal Info)
: Unless otherwise specified, all text and images
on this website are licensed under the
Creative Commons Attribution-Share Alike 3.0 License
This does not include the source code of LibreOffice, which is
licensed under the Mozilla Public License (MPLv2
"LibreOffice" and "The Document Foundation" are
registered trademarks of their corresponding registered owners or are
in actual use as trademarks in one or more countries. Their respective
logos and icons are also subject to international copyright laws. Use
thereof is explained in our trademark policy