Hi Wolf, *, On Tue, Dec 21, 2010 at 6:10 PM, Wolf Halton <[email protected]> wrote: > Here is a little love for the privace policy statement. > > How long is the raw data kept?
The data while in the tracking process? only until it is flushed to the database. The collected data itself will not expire. > How do we know it has been permanently removed? There are no plans to dump the data - as it would be nice to tell how the number of visitors distribute/evolve over the months of last year, wouldn't it? > Who has access to the raw data? only admins with shell access. > How securely are log files treated? If you get access to the raw data, you got shell access and either broke into our server, or are a trustworthy person :-) See also the answer to Christroph. Number of people with access to that data is limited. But of course the resulting charts/diagrams, numbers will be published to the mailinglist and/or website to show growth, where to focus on/what interests the users. > Anonymizers are not always perfect at protecting personal info, and log > files are where piwik got its data originally. piwik doesn't use logfiles, but tracking is done using an embedded javascript. Piwik does not use apache's access logs or similar. piwik can be on a completely different server. > Is there a defined security team, unconnected to the development team or the > sysad team? There's no dedicated security team wrt piwik, that is covered by the general infrastructure administration group. > What is written in the privacy statement must be true, however if it is not > backed up with strong internal policy it saves time just to say, "we will > try to keep your info safe but since we have no policy related to security > breeches, in the event of an actual breech, ' every man for himself! ' " Well, in the event of an actual breech, everything is lost anyway. So to say: We rely on the ssh being secure, and piwik authentication to work. But we rely on this for all the stuff that runs on our servers, so I don't really get your point. But the data is not personal data anyway (unless you regard the combination of IP, used Browser/operating system and time of the visit as personal data) ciao Christian -- Unsubscribe instructions: E-mail to [email protected] List archive: http://www.libreoffice.org/lists/website/ *** All posts to this list are publicly archived for eternity ***
