Create privacy policy

[pombredanne]

See https://lwn.net/Articles/937528/

We likely need to establish some minimal privacy policy since we have projects that collect and accumulate data, some of which contains things to identify a user (as publicly made available by these users, such as an AUTHOR files and so on).

@armijnhemel @johnmhoran @DennisClark @mjherzog

[armijnhemel]

Related to this: for VulnerableCode and other webbased services you probably are also storing information from visitors, such as:

1. which URL (or PURL) is visited
2. when it is visited
3. from where it is visited
4. (possibly) user that visited

and so on.

In case you are using this information (for example, for metrics or telemetry and related) you might want to disclose what information you are storing and for what purpose you will be using the information.

[Saswatsusmoy]

I've got a sample privacy policy if you guys can check this out

Privacy Policy

This privacy policy explains how we collect, use, and share your information when you use our web-based service.

Information we collect

We collect the following information when you use our service:

Which URL (or PURL) you visit When you visit From where you visit Your IP address How we use the information we collect

We use the information we collect to improve our service and to provide you with a better user experience. We may also use the information to send you marketing communications, but you can opt out of these communications at any time.

With whom do we share the information we collect

We do not share the information we collect with any third parties, except as required by law.

How long do we retain the information we collect

We retain the information we collect for as long as necessary to provide you with our service. We may also retain the information for longer periods of time if required by law.

What choices do users have about how their information is collected and used

You can choose to opt out of marketing communications from us at any time. You can also contact us to request access to your information or to have your information deleted.

How to contact us

If you have any questions about this privacy policy, please contact us at (email).

Changes to this privacy policy

We may update this privacy policy from time to time. If we make any changes, we will post the updated privacy policy on our website. Your continued use of our service after we post any changes to this privacy policy constitutes your acceptance of the changes.

This privacy policy is effective as of (Date).

[PiyushAryan]

Hey @pombredanne please assign me this issue

[vikas83pal]

please assign me this issue i would like to work on this issue

[pombredanne]

@PiyushAryan @vikas83pal Thanks for you enthusiasm but:

1. we do not "assign issues" except for project committers which is a privilege that is earned based on past contributions
2. a privacy policy is something we, as "we the core project maintainers" need to design ourselves

With this said if you have links to examples you can post here, this will be mucho welcomed!

[vikas83pal]

Privacy Policy

This Privacy Policy describes how [Your Website Name] ("we", "us", or "our") collects, uses, and discloses your personal information when you visit [website URL] (the "Site").

Personal Information We Collect

We collect information that you provide to us directly when you interact with the Site. This may include:

Your name Email address Mailing address Phone number Any other information you choose to provide How We Use Your Personal Information

We may use the personal information we collect for various purposes, including to:

Provide, operate, and maintain our website Improve, personalize, and expand our website Understand and analyze how you use our website Communicate with you, either directly or through one of our partners, including for customer service, to provide you with updates and other information relating to the website, and for marketing and promotional purposes Send you emails Find and prevent fraud Sharing Your Personal Information

We may share your personal information with third parties such as service providers, business partners, and affiliates for the purposes outlined above.

Your Rights

You have certain rights regarding your personal information, including the right to access, correct, or delete your personal information. You may also opt-out of receiving marketing communications from us at any time.

Data Retention

We will retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

Contact Us

If you have any questions or concerns about our Privacy Policy, please contact us at [contact email].

On Tue, 19 Mar 2024 at 16:03, Philippe Ombredanne @.***> wrote:

@PiyushAryan https://github.com/PiyushAryan @vikas83pal https://github.com/vikas83pal Thanks for you enthusiasm but:

1. we do not "assign issues" except for project committers which is a privilege that is earned based on past contributions
2. a privacy policy is something we, as "we the core project maintainers" need to design ourselves

With this said if you have links to examples you can post here, this will be mucho welcomed!

— Reply to this email directly, view it on GitHub https://github.com/nexB/aboutcode/issues/128#issuecomment-2006748551, or unsubscribe https://github.com/notifications/unsubscribe-auth/A2JOIVWIIWPR2EBGDFJZI4LYZAH67AVCNFSM6AAAAAA2CBP73KVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDAMBWG42DQNJVGE . You are receiving this because you were mentioned.Message ID: @.***>