On Mon, Mar 19, 2018 at 7:08 PM, Selena Deckelmann <sel...@mozilla.com> wrote: > and also in terms of the regulatory environment in the US) allows *all* of > this data to be collected indefinitely and sold to third parties.
Some users are in countries where it's illegal for the ISP to sell this information to third parties, so they might rightly be upset about diverting this information elsewhere without opt-in. > There's a lot of thinking that went into the agreement we have with > Cloudflare to enable this experiment in a way that respects user privacy. This seems like a great feature when the user is in control of whether to use it. I think it's a problem when we determine that Mozilla has negotiated privacy terms, therefore users are protected by policy and there's no problem. Our review processes show things are fine but some people still get upset. Legal review doesn't cover the spectrum of attitudes that users have. Partly it's that people get upset before they stop to read what policy Mozilla negotiated. Partly it's that people take the position that they want privacy by design where the third party isn't contacted in the first place so whatever the third party has promised is moot. For yet other people, it's just a matter of feeling that they are in control if they opt in but feel they are not in control when Mozilla does these things without prior consent. Why risk upsetting users in this case instead of obtaining consent first? -- Henri Sivonen hsivo...@hsivonen.fi https://hsivonen.fi/ _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
