Pushing messages about users over the network via third-party push providers creates a potential privacy risk for users. To help manage this risk, we need to create a policy to identify the kinds of data that may be pushed and that may not, prior to any deployment.
As a way of getting our heads around the problem, we could audit the existing Echo notification messages to create a list of the kinds of data that are currently used, then evaluate them for privacy risks.
AC
[] Audit existing Echo Notification messages and create a list or typology of the kinds of data they contain
[] Create a policy defining what types of data may or may not be send in push notifications over the network
NOTE: This task may be unnecessary if all platforms use an approach in which an empty message is pushed to the client in order to prompt the client to wake up and retrieve messages from Wikimedia servers.