From ab2199e9cabdf043f96af29190ea4c1be8f6894d Mon Sep 17 00:00:00 2001 From: Jonah Aragon Date: Wed, 24 Sep 2025 23:07:18 -0500 Subject: [PATCH 1/2] docs: Update privacy policy --- docs/privacy.md | 43 ++++++++++++++++++++++++++++++++++--------- 1 file changed, 34 insertions(+), 9 deletions(-) diff --git a/docs/privacy.md b/docs/privacy.md index 5c20c1ab..9ce6f64d 100644 --- a/docs/privacy.md +++ b/docs/privacy.md @@ -16,6 +16,8 @@ This privacy notice covers all Privacy Guides projects authorized and operated b Please note that when you make a donation to us on [donate.magicgrants.org](https://donate.magicgrants.org/privacyguides), MAGIC Grants has published a [separate privacy policy](https://donate.magicgrants.org/privacy) covering that platform. +Additionally, when you browse or make a purchase on [shop.privacyguides.org](https://shop.privacyguides.org/), this is a third-party service provided by Fourthwall. Fourthwall has published a [separate privacy policy](https://shop.privacyguides.org/pages/privacy-policy) covering that platform. + ## How does Privacy Guides collect data about me? Privacy Guides collects data about you: @@ -24,8 +26,9 @@ Privacy Guides collects data about you: - When you create and use an account on our websites - When you post, send private messages, and otherwise participate in a community that Privacy Guides hosts - When you sign up for a mailing list, email notifications, or announcements +- When you become a donating member - When you make a donation to us on GitHub Sponsors -- When you become a donating member and link your MAGIC Grants account to your Privacy Guides forum account +- When you link your MAGIC Grants account to your Privacy Guides forum account - When you contribute to our website or other open-source projects - When you contact us @@ -72,9 +75,9 @@ You may optionally provide additional details about your account, like your name Privacy Guides stores this account data as long as your account remains open. -### Privacy Guides collects data about posts and other activity on our forum +### Privacy Guides collects data about posts and other activity -Privacy Guides collects the content of your posts, plus data about bookmarks, likes, and links you follow in order to share that data with others, through the forum. We also publish this activity to the public. +Privacy Guides collects the content of your posts throughout our websites, plus data about bookmarks, likes, and links you follow in order to share that data with others. We also publish this activity to the public when you request it. Privacy Guides also collects data about private messages that you send through the forum. Privacy Guides makes private messages available to senders and their recipients, and also to forum moderators and administrators. @@ -98,17 +101,29 @@ Privacy Guides uses this information to maintain the integrity of our website, s ### Privacy Guides collects data when you donate to us +#### When you subscribe to a membership on privacyguides.org + +When you donate to us through our [membership program](#/portal), we collect your email address. Your payment information is also collected by our payment processor Stripe in order to facilitate the transaction. You can also optionally provide your name, which is used to personalize your experience, and can be removed or changed in your [profile settings](#/portal/account/profile) at any time. + +If your membership and newsletter subscription matches an email address associated with an account on our forum, we will link your membership status to your forum account. This allows you to receive special perks on the forum, such as a members-only title or flair, and access to members-only categories. + +If the Member title or Member flair is enabled on your forum profile, Privacy Guides will share your username and profile picture on our websites for the purposes of acknowledging your donation to the project. You may revoke this consent at any time by removing the title and flair from your public profile, and we will no longer share your donation status publicly. This will not affect your access to members-only benefits. It may take until the next website release for your data to be removed from public visibility. + +#### When you donate to us via GitHub Sponsors + When you donate to us on GitHub Sponsors, we collect your GitHub username and profile picture. Your payment information is also collected by our subprocessors GitHub and Stripe in order to facilitate the transaction. If you choose to make your donation public during or after the checkout process on GitHub, Privacy Guides will share your username and profile picture on our websites for the purposes of fulfilling your request. You may revoke this consent at any time, and we will no longer share your donation status publicly. It may take until the next website release for your data to be removed from public visibility. +#### When you subscribe to a membership or donate to us on donate.magicgrants.org + When you donate to us on [donate.magicgrants.org](https://donate.magicgrants.org/privacyguides), a [separate privacy policy](https://donate.magicgrants.org/privacy) applies as noted at the beginning of this document. However, if you optionally link your `donate.magicgrants.org` account to your Privacy Guides forum account, our forum collects some personal data which is covered by this notice: namely your forum username and whether you have an active membership. -We process that information in order to grant you special perks on the forum. Additionally, if you choose to make this status public by setting a members-only title or flair, we will share the status of your active membership on our websites. +We process that information in order to grant you special perks on the forum. Additionally, if you choose to make this status public by setting a members-only title or flair, we will share the status of your active membership on our websites. You may revoke this consent at any time by removing the title and flair from your public profile, and we will no longer share your donation status publicly. This will not affect your access to members-only benefits. It may take until the next website release for your data to be removed from public visibility. -This information is stored for as long as your membership is active, or until you unlink your forum and MAGIC Grants donation accounts in your profile settings. It may take until the next website release for your data to be fully removed from public visibility. +This information is stored for as long as your membership is active, or until you unlink your forum and MAGIC Grants donation accounts in your profile settings. ### Privacy Guides collects data when you contact us @@ -124,7 +139,16 @@ Our website uses Local Storage in your browser to store your color scheme prefer Our website also uses Session Storage to cache the current version number of this website and the number of stars/forks of our GitHub repository. This data is fetched once per session from GitHub, and is only used by client-side JavaScript to display that information at the top of each page. -No locally stored data on this website is transmitted to Privacy Guides, and it can not be used to identify you. +### The Privacy Guides website uses cookies + +Our website uses features from the open-source Ghost content management system to manage your membership experience, which uses the following cookies: + +| Name | Essential | Expires | Purpose | +| --------------------- | --------- | -------------- | ----------------------------------------------------------------------------- | +| ghost-members-ssr | Yes | 6 months | used to identify your membership on the website | +| ghost-members-ssr.sig | Yes | 6 months | used to validate your membership on the website | +| __stripe_sid | Yes | 1 year | [Stripe](#subprocessors-used-by-privacy-guides) allows online transactions without storing any credit card information | +| __stripe_mid | Yes | 1 year | [Stripe](#subprocessors-used-by-privacy-guides) allows online transactions without storing any credit card information | ### The Privacy Guides forum uses cookies @@ -218,7 +242,7 @@ The lawful basis for our processing determines what rights are available to you | [Open source contributions](#privacy-guides-collects-data-about-open-source-contributors) | Email address, name, GitHub profile information, other information provided via Git | **Legitimate interest** | We have a legitimate interest in tracking the provenance of contributions to our open source projects to prevent abuse and ensure intellectual property rights are respected | | [Donations](#privacy-guides-collects-data-when-you-donate-to-us) | Payment information including billing address and email, GitHub profile information | **Legitimate interest** | We have a legitimate interest in processing this data to prevent payment abuse and fraud, and for facilitating your transaction | | [Donations](#privacy-guides-collects-data-when-you-donate-to-us) | GitHub profile information | **Consent** | We process this information to display your donation status publicly in accordance to your wishes | -| [Donations](#privacy-guides-collects-data-when-you-donate-to-us) | Forum username and membership status | **Consent** | When you link your forum account to your MAGIC Grants donation account, you can optionally display your membership status to the public | +| [Donations](#privacy-guides-collects-data-when-you-donate-to-us) | Forum username and membership status | **Consent** | When your membership is linked to your forum account, you can optionally display your membership status to the public | | [Contacting us](#privacy-guides-collects-data-when-you-contact-us) | Email address, mail server IP, message content | **Legitimate interest** | We have a legitimate interest in processing incoming email information to prevent spam and network abuse | | [Contacting us](#privacy-guides-collects-data-when-you-contact-us) | Email address, message headers and content | **Contract** | We store your messages and process your data in order to provide a response to your communication | | [Backups](#privacy-guides-makes-regular-backups-of-all-data) | All personal information we collect | **Legitimate interest** | We store complete backups to ensure organizational continuity and security for up to 30 days | @@ -294,7 +318,8 @@ Privacy Guides uses the following subprocessors, and may share personal data wit | [GitHub](https://github.com) (USA) | Git Repositories | *For visitors to this website*: sharing information with our visitors about the current release, repo star count, etc. | USA | [Privacy Notice](https://docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement) | | [GitHub](https://github.com) (USA) | Git Repositories, Issues, Pull Requests | *For contributors to this website*: hosting our source code and communications platforms such as our issues tracker. | USA | [Privacy Notice](https://docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement) | | [GitHub](https://github.com) (USA) | [Sponsors](https://github.com/sponsors/privacyguides) | For collecting payments for gifts to Privacy Guides | USA | [Privacy Notice](https://docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement) | -| [Stripe](https://stripe.com) (USA) | Connect | *For certain donations via GitHub Sponsors*: payment processing for donations | USA | [Privacy Notice](https://stripe.com/privacy), [GDPR Center](https://stripe.com/legal/privacy-center) | +| [Mailgun](https://www.mailgun.com) (USA) | Email Delivery | For sending newsletters and other email messages to users | USA | [Privacy Notice](https://www.mailgun.com/privacy-policy), [GDPR Center](https://www.mailgun.com/gdpr) | +| [Stripe](https://stripe.com) (USA) | Connect | Payment processing for donations | USA | [Privacy Notice](https://stripe.com/privacy), [GDPR Center](https://stripe.com/legal/privacy-center) | | [Triplebit](https://www.triplebit.org) (USA) | Object Storage | For hosting static websites and static media content, and distributing static content | USA, Poland | [Privacy Notice](https://www.triplebit.org/privacy) | | [Triplebit](https://www.triplebit.org) (USA) | [Umami Statistics](https://stats.triplebit.net/share/S80jBc50hxr5TquS/www.privacyguides.org) | For compiling aggregated statistics of our website visitor data based on server-side visitor info submissions | USA | [Privacy Notice](https://www.triplebit.org/privacy) | | [Triplebit](https://www.triplebit.org) (USA) | Virtual Private Servers | For hosting our dynamic websites, storing and processing personal data. | USA | [Privacy Notice](https://www.triplebit.org/privacy) | @@ -313,7 +338,7 @@ For complaints under GDPR more generally, you always have the option to lodge co ## Where do I find out about changes? -This version of Privacy Guides' privacy notice took effect on March 6, 2025. +This version of Privacy Guides' privacy notice took effect on September 24, 2025. Privacy Guides will post the next version here: . From 5dedaa7a131397b41693b68f165afcb30b02e45c Mon Sep 17 00:00:00 2001 From: Em <194856901+EmAtPrivacyGuides@users.noreply.github.com> Date: Wed, 24 Sep 2025 21:09:21 -0700 Subject: [PATCH 2/2] fix(blog): Shorten meta descriptions under 300 characters (#3138) Signed-off-by: Jonah Aragon --- blog/posts/age-verification-wants-your-face.md | 2 +- blog/posts/cryptpad-review.md | 2 +- blog/posts/encryption-is-not-a-crime.md | 2 +- blog/posts/importance-of-privacy-for-the-queer-community.md | 2 +- blog/posts/in-praise-of-tor.md | 2 +- blog/posts/keepassium-review.md | 2 +- blog/posts/sam-altman-wants-your-eyeball.md | 2 +- blog/posts/selling-surveillance-as-convenience.md | 2 +- blog/posts/the-future-of-privacy.md | 2 +- blog/posts/the-privacy-of-others.md | 2 +- blog/posts/your-online-life-is-irl.md | 2 +- 11 files changed, 11 insertions(+), 11 deletions(-) diff --git a/blog/posts/age-verification-wants-your-face.md b/blog/posts/age-verification-wants-your-face.md index 4d0bf6ae..843830bb 100644 --- a/blog/posts/age-verification-wants-your-face.md +++ b/blog/posts/age-verification-wants-your-face.md @@ -5,7 +5,7 @@ categories: - News authors: - em -description: Age verification laws and propositions forcing platforms to restrict content accessed by children and teens have been multiplying in recent years. The problem is, implementing such measure necessarily requires identifying each user accessing this content, one way or another. This is bad news for your privacy. +description: Age verification laws forcing platforms to restrict access to content online have been multiplying in recent years. The problem is, implementing such measure necessarily requires identifying each user accessing this content, one way or another. This is bad news for your privacy. schema_type: AnalysisNewsArticle preview: cover: blog/assets/images/age-verification-wants-your-face/ageverification-cover.webp diff --git a/blog/posts/cryptpad-review.md b/blog/posts/cryptpad-review.md index e05b918d..fd52fdb2 100644 --- a/blog/posts/cryptpad-review.md +++ b/blog/posts/cryptpad-review.md @@ -9,7 +9,7 @@ categories: - Reviews authors: - em -description: "If you have been looking for a privacy-respectful replacement to Google Docs, now is the time to switch to the end-to-end encrypted office suite CryptPad." +description: If you've been looking for a privacy-respectful replacement to Google Docs, now is the time to switch to the end-to-end encrypted office suite CryptPad. preview: logo: theme/assets/img/document-collaboration/cryptpad.svg review: diff --git a/blog/posts/encryption-is-not-a-crime.md b/blog/posts/encryption-is-not-a-crime.md index 27d35c54..5f73d7e0 100644 --- a/blog/posts/encryption-is-not-a-crime.md +++ b/blog/posts/encryption-is-not-a-crime.md @@ -5,7 +5,7 @@ categories: - Opinion authors: - em -description: Encryption is not a crime, encryption protects all of us. Encryption, and especially end-to-end encryption, is an essential tool to protect everyone online. Attempts to undermine encryption are an attack to our fundamental right to privacy and an attack to our inherent right to security and safety. +description: Encryption is not a crime, encryption protects us all. Encryption, and especially end-to-end encryption, is an essential tool to protect everyone online. Attempts to undermine encryption are an attack to our fundamental right to privacy and an attack to our inherent right to security and safety. schema_type: OpinionNewsArticle preview: cover: blog/assets/images/encryption-is-not-a-crime/encryption-is-not-a-crime-cover.webp diff --git a/blog/posts/importance-of-privacy-for-the-queer-community.md b/blog/posts/importance-of-privacy-for-the-queer-community.md index 5b7850ae..6f551c81 100644 --- a/blog/posts/importance-of-privacy-for-the-queer-community.md +++ b/blog/posts/importance-of-privacy-for-the-queer-community.md @@ -7,7 +7,7 @@ tags: - Pride Month authors: - em -description: Data privacy is important for everyone. But for some marginalized populations, data privacy is indispensable for social connection, access to information, and physical safety. For Pride month this year, we will discuss topics at the intersection of data privacy and experiences specific to the LGBTQ+ community. +description: Data privacy is important for everyone. But for some marginalized populations, data privacy is indispensable for social connection, access to information, and physical safety. For Pride month, we discuss topics at the intersection of data privacy and experiences specific to the LGBTQ+ community. schema_type: AnalysisNewsArticle preview: cover: blog/assets/images/importance-of-privacy-for-the-queer-community/pride-cover.webp diff --git a/blog/posts/in-praise-of-tor.md b/blog/posts/in-praise-of-tor.md index b7a47078..49f7ee75 100644 --- a/blog/posts/in-praise-of-tor.md +++ b/blog/posts/in-praise-of-tor.md @@ -8,7 +8,7 @@ tags: - Tor authors: - em -description: You might have heard of Tor in the news a few times, yet never dared to try it yourself. Despite being around for decades, Tor is still a tool too few people know about. Today, Tor is easy to use for anyone. It not only helps journalists and activists, but anybody who seeks greater privacy online or access to information regardless of location. But what is Tor exactly? How can Tor help you? And why is it such an important tool? +description: You might have heard of Tor already, yet never dared to try it yourself. Despite being around for decades, too few people know about Tor. It isn't only a tool for journalists and activists, but for anyone seeking greater privacy online. What is Tor exactly? And how can Tor help you? schema_type: OpinionNewsArticle preview: cover: blog/assets/images/in-praise-of-tor/tor-cover.webp diff --git a/blog/posts/keepassium-review.md b/blog/posts/keepassium-review.md index 4c8cdcdc..492e0025 100644 --- a/blog/posts/keepassium-review.md +++ b/blog/posts/keepassium-review.md @@ -8,7 +8,7 @@ categories: - Reviews authors: - em -description: "If you need a password manager for iOS or macOS that gives you full control over your data, KeePassium is a fantastic option. KeePassium offers some synchronization features, but keeps your password database offline by default. You choose who to trust to store your passwords, and you can change it whenever you want." +description: If you need a password manager for iOS or macOS that gives you full control over your data, KeePassium is a fantastic option. With KeePassium, you can keep your password database offline entirely, or choose whomever you trust to store it. You can also change this anytime. preview: logo: blog/assets/images/keepassium-review/keepassium.svg review: diff --git a/blog/posts/sam-altman-wants-your-eyeball.md b/blog/posts/sam-altman-wants-your-eyeball.md index c2e61915..8107de8f 100644 --- a/blog/posts/sam-altman-wants-your-eyeball.md +++ b/blog/posts/sam-altman-wants-your-eyeball.md @@ -6,7 +6,7 @@ categories: - News authors: - em -description: Last week, OpenAI's CEO Sam Altman announced in San Francisco that the World project he co-founded, formerly known as Worldcoin, is opening six stores across the United States, allowing users of the project's app to scan their eyeballs. +description: Last week, OpenAI's CEO Sam Altman announced in San Francisco that the World project he co-founded, formerly known as Worldcoin, is opening six stores across the United States, allowing users of the project's app to scan their eyeballs. This is worrisome, to say the least. schema_type: AnalysisNewsArticle preview: cover: blog/assets/images/sam-altman-wants-your-eyeball/orb-cover.webp diff --git a/blog/posts/selling-surveillance-as-convenience.md b/blog/posts/selling-surveillance-as-convenience.md index 113fc227..0bbd08a4 100644 --- a/blog/posts/selling-surveillance-as-convenience.md +++ b/blog/posts/selling-surveillance-as-convenience.md @@ -5,7 +5,7 @@ categories: - Opinion authors: - em -description: Increasingly, surveillance is being normalized and integrated in our lives. Under the guise of convenience, applications and features are sold to us as being the new better way to do things. While some might be useful, this convenience is a Trojan horse. The cost of it is the continuous degradation of our privacy rights, with all that that entails. +description: Increasingly, surveillance is being normalized and integrated in our lives. Under the guise of convenience, applications and features are sold to us as being the new better way to do things. But this convenience is a Trojan horse. schema_type: OpinionNewsArticle preview: cover: blog/assets/images/selling-surveillance-as-convenience/surveillance-cover.webp diff --git a/blog/posts/the-future-of-privacy.md b/blog/posts/the-future-of-privacy.md index 19b9a8ae..8d62021d 100644 --- a/blog/posts/the-future-of-privacy.md +++ b/blog/posts/the-future-of-privacy.md @@ -5,7 +5,7 @@ categories: - News authors: - em -description: Privacy is intrinsically intertwined with politics. Each change in governance can have serious effects on privacy rights and privacy tools, for better or for worse. Let's examine with concrete examples how politics affect legislations that can have an immense impact on the privacy tools and features we use. +description: Privacy is intrinsically intertwined with politics. Each change in governance can have substantial effects on privacy rights and privacy tools. Using concrete examples, we examine how politics can impact the tools we use. schema_type: NewsArticle preview: cover: blog/assets/images/the-future-of-privacy/cover.webp diff --git a/blog/posts/the-privacy-of-others.md b/blog/posts/the-privacy-of-others.md index 1205b7d1..1c997b05 100644 --- a/blog/posts/the-privacy-of-others.md +++ b/blog/posts/the-privacy-of-others.md @@ -5,7 +5,7 @@ categories: - Explainers authors: - em -description: In privacy, we talk a lot about how to protect our own data, but what about our responsibility to protect the data of others? If you care about privacy rights, you must also care for the data of the people around you. Together, we must start building a culture of data privacy where everyone cares for the data of others. +description: In privacy, we talk a lot about how to protect our own data, but what about our responsibility to protect the data of others? If you care about privacy rights, you must also care for the data of the people around you. Together, we must build a culture where everyone cares for the data of others. schema_type: NewsArticle preview: cover: blog/assets/images/the-privacy-of-others/cover.webp diff --git a/blog/posts/your-online-life-is-irl.md b/blog/posts/your-online-life-is-irl.md index a3e0fe55..8df59306 100644 --- a/blog/posts/your-online-life-is-irl.md +++ b/blog/posts/your-online-life-is-irl.md @@ -5,7 +5,7 @@ categories: - Opinion authors: - em -description: If you, like myself, have been inhabiting the internet for a few decades, you're probably familiar with the old adage IRL (In Real Life). The acronym was used a lot when the distinction between online life and offline life was much greater than it is now. In today's world, can we really keep referring to our digital life as being somehow disconnected from our real life? +description: If you've been on the internet for a while, you're probably familiar with the old adage IRL (In Real Life). The acronym was used a lot when online and offline life was much more separated than it is now. Today, can we truly keep talking about our digital life as being separated from our real life? schema_type: OpinionNewsArticle preview: cover: blog/assets/images/your-online-life-is-irl/irl-cover.webp