Page MenuHomePhabricator

Is using HotJar on toolabs in compliacy with WMFs privacy policy?
Closed, InvalidPublic

Description

https://tools.wmflabs.org/iabot/index.php has HotJar on their page. However, nowhere is there a mention on HotJar's Privacy policy, which I automatically must agree to. Is that compatible with WMFs privacy policy?

Event Timeline

Josve05a created this task.Jul 27 2019, 1:16 PM
Restricted Application added a subscriber: Cyberpower678. · View Herald TranscriptJul 27 2019, 1:16 PM
Cyberpower678 closed this task as Invalid.Jul 27 2019, 1:18 PM

It's an opt in service. If you are seeing it, then you are opted in to it. You can opt back out in your preferences. As for using it, I'm allowed to as long as users consent to it.

Assuming hotjar is some analytics platform..what's the purpose of it? Who has access to it?

I note that the iabot terms of use include:

PRIVACY:
All actions made on the interface is publicly logged, to maintain accountability. All users of the interface during initial sign on have some insensitive data saved. This data includes current username, last sign on, last action, preferred language, cached public data provided by the OAuth extension, and whether they are blocked or not. No private data whatsoever is recorded or logged.

That last part of which isn't true if the user opts in.

It's an opt in service. If you are seeing it, then you are opted in to it. You can opt back out in your preferences. As for using it, I'm allowed to as long as users consent to it.

It is not opt-ed in on my profile, but I still saw the "HotJar" icon-thingy in the bottom right of the page. So, that statement might be completely true.