Wikimedia Foundation Data Retention Guidelines
Introducere
Datele sunt importante. Este unul dintre modurile în care putem să învățăm și să creștem ca o organizație și o mișcare și cum putem ajuta la îmbunătățirea proiectelor pentru cei care le folosesc pentru a crea, învăța și împărtăși. În același timp, ne-am angajat să păstrăm datele dvs. personale "pentru cel mai scurt timp posibil, care este în concordanță cu menținerea, înțelegerea și îmbunătățirea site-urilor Wikimedia și obligațiile noastre în conformitate cu legislația aplicabilă din SUA" (citat din Wikimedia Foundation Privacy Policy).
Acest document explică modul în care îndeplinim acest angajament, descriind liniile regulare privind păstrarea datelor, proiectarea sistemului, auditul și întreținerea în curs. Aceste reguli sunt menite a fi un document viu - acestea vor fi actualizate în timp pentru a reflecta practicile actuale de păstrare.
La ce date se aplică aceste îndrumări?
Aceste îndrumări se aplică tuturor datelor non-publice pe care le colectăm de pe site-urile Wikimedia acoperite de politica de confidențialitate și de politica de confidențialitate non-Wiki. Politica noastră de confidențialitate privind donatorii include orientări separate privind păstrarea datelor care se aplică informațiilor donatorilor.
Cât timp păstrăm datele nedestinate publicului?
Dacă nu se specifică altfel, păstrăm următoarele tipuri de date pentru nu mai mult de următoarele perioade de timp:
Tip de date | Origine | Exemple | Perioada maximă de păstrare |
---|---|---|---|
Informațiile personale non-publice | Colectate automat de la un utilizator |
|
După cel mult 90 de zile, acesta va fi șters, agregat sau de-identificat |
Setări de cont |
|
Până când utilizatorul șterge sau modifică setarea contului. | |
Informațiile personale non-publice | Colectate automat de la un utilizator |
|
Nederminat(ă) |
|
După cel mult 90 de zile, acesta va fi șters, agregat sau de-identificat | ||
Furnizat de un utilizator |
|
După cel mult 90 de zile, acesta va fi șters, agregat sau de-identificat | |
Furnizat de un utilizator |
|
Până când utilizatorul șterge sau modifică setarea contului. | |
Informații non-personale care nu sunt asociate unui cont de utilizator[T 1] | Colectate automat de la un utilizator |
|
Nederminat(ă) |
Articole accesate de cititori | Colectate automat de la un utilizator |
|
După cel mult 90 de zile, dacă este păstrată deloc, atunci numai în formă agregată |
- ↑ În sensul prezentului tabel, "cont de utilizator" înseamnă numele de utilizator, codul de utilizator sau adresa IP; "cititor" înseamnă vizitator al unui proiect Wikimedia.
Cât timp păstrăm datele nedestinate publicului?
Wikimedia găzduiește Wikipedia și proiectele asociate ca parte a misiunii noastre de a colecta, documenta și distribui în mod liber suma cunoștințelor umane lumii. În consecință, atunci când faceți o contribuție la orice site Wikimedia, inclusiv pe paginile de utilizator sau de discuție, creați o înregistrare publică permanentă a fiecărui conținut adăugat, eliminat sau modificat de dvs. Istoricul paginilor se va afișa când a fost făcută contribuția sau ștergerea dvs., precum și numele dvs. de utilizator (dacă sunteți conectat) sau adresa IP (dacă nu sunteți conectat). Putem folosi contribuțiile dvs. publice, fie agregate cu contribuțiile publice ale altor persoane sau în mod individual, pentru a crea noi caracteristici sau produse legate de date pentru dvs. sau pentru a afla mai multe despre modul în care sunt utilizate site-urile Wikimedia. Dacă ați inclus în mod eronat informațiile dvs. personale într-o contribuție la un site Wikimedia și doriți să le eliminați, consultați politica de supraveghere a comunității. Keep in mind that the transparency and integrity of our sites' revision histories is essential to our mission, and the Foundation supports our community's right to reject oversight requests in order to protect the projects.
If you choose to register for an account with the Wikimedia projects, you will be asked to select a username. Usernames are retained until the user requests that the account be renamed, or goes through the community courtesy vanishing process.
For more information, see our Privacy Policy.
Definitions
For the purposes of these guidelines:
- "Personal information" means information you provide us or information we collect from you that identifies or could be used to personally identify you. For details, please see the Wikimedia Foundation Privacy Policy and Non-Wiki Privacy Policy.
- Some examples of "public information" would include:
- (a) your IP address, if you edit without logging in;
- (b) your gender, if it is disclosed under your user profile;
- (c) any personal information you disclose publicly on the Wikimedia Sites, such as your real name or age.
- Some examples of types of information that are considered to be "nonpublic information" include:
- (a) your IP address, if you edit while logged in;
- (b) your email address, if you provided one to us during account registration (but did not post it publicly); and
- (c) your general location information as might be derived from your IP address, if you have not posted it publicly. The types of information that are considered "nonpublic" as opposed to "public" are more fully explained in our Privacy Policy.
- Data is "de-identified" when it has been aggregated or otherwise retained in a manner such that it can no longer be used to identify the user.
- Data is "aggregated" when the data associated with a specific user has been combined with data from others to show general trends or values without identifying specific users.
An example of how data can be aggregated includes:
- Using ranges rather than specific numbers, such as recording that there are "between 1 and 10 editors in language X in country Y" rather than recording that there are 4 editors.
Terms that are not defined in this document have the same meaning given to them in the Privacy Policy.
Exceptions to these guidelines
If we make exceptions to these guidelines, we will notify the community by describing the exception on this page.
- Data may be retained in system backups for longer periods of time, not to exceed 5 years.
- When we conduct a survey or other research, we will provide you with a privacy statement specifying the term of retention for information (including personal information) collected through your participation in such research. In certain cases, information may be retained indefinitely for educational, development, or other related purposes, unless otherwise indicated in the relevant privacy statement. Such information may be retained in raw, aggregated, or de-identified form until we receive a request from the participant to delete the information.
- Research related to COVID-19: The Wikimedia Foundation Research team is conducting research regarding COVID-19 and its impact on Wikipedia. Retaining de-identified readership data from COVID-19 related articles will enable us to better understand how to prioritize content creation, to understand what happens to readership when there is a "shock to the system", and to empower the research community to answer such questions. By "COVID-19 related articles", we mean articles that link to the COVID-19, SARS-CoV-2 and 2019-2020 COVID-19 pandemic Wikidata items. For comparison purposes, we will retain data from a small number of articles unrelated to COVID-19 as well. In order to collect sufficient data, and obtain a picture of readership as time passes, we will be retaining this de-identified data beyond the 90-day retention limit, for a period of one year, ending on March 1, 2021. (Note that this includes a one-month extension due to staffing changes, in order to allow for the project's completion.). For technical details about the sampling and de-identification process, please see the project page on GitHub.
- Editing research: There is a short-term extension applying to data collected as part of experimental features to improve replying on talk pages. In order to collect and analyze sufficient data, this data must be kept beyond the standard 90-day period. The retained data will be deleted, aggregated, or de-identified within 180 days.
- Campaign landing pages: for certain events, campaigns, or marketing channels, users may create accounts on special landing pages. After creating their account on those pages, the association between their account and its source may be retained indefinitely, both to provide a good user experience for that account and for longitudinal analysis on campaign effectiveness. For more information, contact mmillerwikimedia.org.
- CampaignEvents extension: An exception exists for data collected by the CampaignEvents extension. The extension collects the global user IDs of event organizers and event participants, as well as which events users organized or attended and when participants registered for an event. In order for the extension features to work consistently, data collected by the CampaignEvents extension may be retained indefinitely.
- Sound logo contest: There is a short-term extension applying to data collected as part of contest entries to allow the brand studios team to evaluate entries in preparation for announcing the winner in February 2023. The retained data will be deleted, aggregated or de-identified within 90 days after the winner is announced.
- Webrequest datasets: There is a short, one-time extension for data from the wmf.webrequest and wmf.pageview_actor datasets. This data needs to be retained longer than usual while we correct an error in the way unique devices are calculated from the dataset. Accurate unique device statistics are necessary for engineering purposes and legal reporting requirements. The underlying data used to calculate these statistics will be retained for an extra 30 days beyond the ordinary 90-day deletion period. After 30 days, the affected data will be purged and retention settings will reset back to 90 days.
- In rare cases, we, or particular users with certain administrative rights as described in our Privacy Policy, may need to retain your personal information, including your IP address and user agent information, for as long as reasonably necessary (which may be longer than the period described in the table above) to:
- enforce or investigate potential violations of our Terms of Use, this Privacy Policy, or any Foundation or user community-based policies;
- investigate and defend ourselves against legal threats or actions;
- help protect against vandalism and abuse, fight harassment of other users, and generally try to minimize disruptive behavior on the Wikimedia Sites;
- prevent imminent and serious bodily harm or death to a person, or to protect our organization, employees, contractors, users, or the public; or
- detect, prevent, or otherwise assess and address potential spam, malware, fraud, abuse, unlawful activity, and security or technical concerns.
Audits and improvements
The Foundation is committed to continuous evaluation and improvement of these guidelines, and to periodic audits in order to identify such improvements. As we make changes to existing and systems, we will update these guidelines to reflect our changing practices.
Design of new systems
In order to support these data retention periods and our overall privacy policy, new tools and systems implemented by the Foundation will be designed with privacy in mind. This will include:
- inclusion of these data retention guidelines as requirements during the design process;
- legal consultation during the design and development process; and
- inclusion of privacy considerations in the code review process.
Ongoing handling of new information
Despite our best efforts in designing and deploying new systems, we may occasionally record personal information in a way that does not comply with these guidelines. When we discover such an oversight, we will promptly comply with the guidelines by deleting, aggregating, or de-identifying the information as appropriate.
Contactaţi-ne
If you think that these guidelines have potentially been breached, or if you have questions or comments about compliance with the guidelines, please contact us at privacywikimedia.org.