On Mon, Jul 21, 2014 at 3:23 AM, Gervase Markham <[email protected]> wrote: > This problem was present in the original, but: this implies that there's > a trade-off between safety and user experience. I don't think that's so > - you can have very usable, very privacy-respecting software. The > difficult tradeoff is often between safety and _features_. That is to > say, users want to do a certain thing or site owners want to provide a > certain capability, but it's hard to do it in a way which also preserves > their privacy.
I don't think the distinction you're trying to draw here between "user experience" and "features" is very useful. What this principle is getting at is the tradeoff between privacy and functionality, and functionality is an important part of the user experience. The text as proposed seems clear to me. >> LIMITED DATA Previous: Collect and retain the least amount of user >> information necessary. Try to share anonymous aggregate data whenever >> possible, and then only when it benefits the web, users or >> developers. New: Collect what we need, de-identify where we can and >> delete when no longer necessary. Context: Replaced "collect and >> retain the least amount" with the broader "collect what we need". >> Removed "only when it benefits" seemed broad enough that most things >> would fall in one of the three. > > I think this actually was valuable due to what it excluded - it excluded > benefit to _us_. That is to say, if we collected user information and > simply sold it at a profit, that would _not_ be covered. Now, we just > have "what we need", and so if we argue that Mozilla "needs" to make > money to stay in business, we could argue that the practice just > outlined was in line with the new principles. I agree that "what we need" is a dangerous way to frame this. We're not going to be able to draw a clear line here (this will continue to be subjective either way), but I much prefer the tying it to "what provides users value" rather than what "[Mozilla] need[s]". Gavin _______________________________________________ governance mailing list [email protected] https://lists.mozilla.org/listinfo/governance
