Tag Archives: privacy

Is your privacy policy visible?

No nonprofit spam logoAs I start to collect people’s contact details for my new email newsletter I realised I might be missing something on my website. I didn’t have a clear, explicit statement about how I’ll protect any personal information I collect.

Anyone giving me their details should be able to easily find some reassurance that when they hand over an email address it won’t end up in the wrong hands.

After this realisation dawned on me, I quickly set about rectifying the omission. After looking at a few examples on websites I have entrusted my own email address to,  I’ve come up with a pithy privacy statement.

This is probably something I could have addressed earlier. People leave their details when they make a comment so I have been storing personal information ever since I set up this blog in 2004. Without deliberately meaning to I’m storing quite a list of email addresses.

Thinking of my own situation made me wonder whether community organisations are explicitly addressing privacy.

The opportunities for collecting personal information are pretty extensive. Opportunities include inquiry forms, donation pages, a membership sign-up process, subscriptions to alerts and newsletters, discussion boards, comments on blogs, online petitions, and social media sites.

As an aside yes, you can collect personal information from a Facebook page or other similar social networking site. According to Richard Best Wellington based lawyer working for the government technology, privacy and other legal concerns do extend to an organisation’s social media presence. His NZ lawyer article from 2008 provides a useful checklist of legal issues

I’ve just run an informal survey of 14 New Zealand commuinty organisation websites I regularly interact with, have recently talked with people from or which have been in the news recently. Six had clear and easy to find privacy policies. On the other eight websites, no sign of a privacy policy. Or perhaps it’s so deeply buried I couldn’t easily find it.

The absence of a policy makes me wary about giving the organisation with my email address and other details. Perhaps the organisations are relying on people trusting them. They are charities after all, and can be counted on to do the right thing.

Sadly, this isn’t always true. Information collected can be used within the organisation itself in ways that the submitter never intended.

Because some organisations repeatedly added people to mailing lists without permission led some in the nptech in the USA to launch the No Nonprofit Spam website. Organisations that repeatedly mis-use personal information collected are named and shamed. As it says:

Your mission is noble, and your intentions are honorable. But if you subscribed us to your organization’s bulk email list without our permission, then you are sending us spam. That is discourteous, unethical, illegal, and ineffective – so please stop.

Being transparent about how you collect and store personal information helps to build trust, and how you use it yourself (ie only sending things people opt into). If after looking for a privacy link in the footer and on legal or site policies page visitors can’t find one, then how could blame from moving on.

Privacy concerns raised at Connecting Up 09 conference

After a heated discussion about privacy at the Connecting Up conference, I headed off to the Apple Store to get a replacement power adapter. I’d left my one behind on the kitchen bench.

When I handed over my credit card to the young salesman he blithely asked if I’d like the receipt emailed to my commonknowledge account, or would I like a printed version. Or both.

What! I was astounded someone I didn’t know, in a shop I’d never been to had this sort of information. It transpires somewhere along the lines when I’d signed up to Apple’s iTunes store I must have agreed to this. And iTunes is linked into Apple’s corporate computer system, and someone somewhere is datamining all my (very small number of) purchases.

Obviously, I didn’t read the fine-print. And do I trust Apple with this confidential information? Must go and read their privacy policy.

The session on privacy, led by Californian resident Allen Gunner from Aspiration, showed that people working in community and voluntary sector organisations have strong views on privacy. And high ideals. Gunner used a participatory ‘crowdsourcing’ exercise to draw out opinions. It was great to see 200 odd people placing themselves on a continuum of agreement/ disagreement with his provocative statements.

I need more time to reflect on the substance of conference and have conversations with other participants, which I’ll write about later. You can get a sense of what’s happening by looking at the collectively written twitter feed, or the live video feed on the conference website.

On a lighter note, here are some pics of my trip to Sydney. I’ll be adding more during the next day or two.

Technorati Tags: