Closed
Bug 741810
Opened 11 years ago
Closed 6 years ago
[Privacy Review][Action Item] Logging Policy
Categories
(mozilla.org :: Security Assurance, task)
mozilla.org
Security Assurance
Tracking
(Not tracked)
RESOLVED
WONTFIX
People
(Reporter: curtisk, Assigned: mcoates)
References
()
Details
(Keywords: privacy-review-needed)
A formal, published log retention policy is needed for public review on what we do with logged data.
|
Reporter | |
Updated•11 years ago
|
|
|
Reporter | |
Comment 1•11 years ago
|
||
This is blocking the following privacy reviews https://wiki.mozilla.org/Privacy/Reviews/CaseConductor https://wiki.mozilla.org/Privacy/Reviews/BrowserID.org https://wiki.mozilla.org/Privacy/Reviews/AccountProvisioner
Summary: [Privacy Review][Action Item]Thunderbird Account Prov & BrowserID.org → [Privacy Review][Action Item] Logging Policy
|
||
Comment 2•11 years ago
|
||
Curtis, don't know if this what you are looking for: https://mana.mozilla.org/wiki/display/INFRASEC/Logs+and+Privacy+Policy Thought I'd bring it to your attention.
|
|
Reporter | |
Comment 3•11 years ago
|
||
Yeah, we have seen that, what privacy wants is a public policy anyone can access.
|
||
Comment 4•11 years ago
|
||
How far away are we from: https://mana.mozilla.org/wiki/pages/viewpage.action?pageId=20973178 and https://mana.mozilla.org/wiki/display/INFRASEC/Logs+and+Privacy+Policy Being something we can make public?
|
||
Comment 5•11 years ago
|
||
I recommend finishing the logging policy first, and then extracting any of our security specific info that is not appropriate for public consumption. The logging policy is a Q2 goal for OpSec. I don't think it would be very difficult to produce a public version as well.
|
||
Comment 6•10 years ago
|
||
Setting privacy-review-needed as this doesn't seem to have gone anywhere...
Keywords: privacy-review-needed
|
|
Reporter | |
Comment 7•10 years ago
|
||
Joe, what is the status of the policy you mention in comment 5?
Flags: needinfo?(jstevensen)
|
|
||
Comment 8•10 years ago
|
||
The policy at https://mana.mozilla.org/wiki/display/SECURITY/Logs+and+Privacy+Policy looks complete now. I don't see anything in it that needs to be *private*.
Flags: needinfo?(jstevensen)
|
|
Reporter | |
Comment 9•10 years ago
|
||
Can we move this to the wiki or make it so it is visible publicly?
Flags: needinfo?(jstevensen)
|
Assignee | |
Comment 11•10 years ago
|
||
Where is our proposed location for public policies? Organization is key here.
|
|
Reporter | |
Comment 12•10 years ago
|
||
(In reply to Michael Coates [:mcoates] from comment #11) > Where is our proposed location for public policies? Organization is key here. That is an obvious discussion as of now I don't think we have any policies like this in public view do we?
|
||
Updated•6 years ago
|
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → WONTFIX
You need to log in
before you can comment on or make changes to this bug.
Description
•