Privacy Policy

THE LINUX FOUNDATION

UNITED STATES/EUROPEAN UNION SAFE HARBOR PRIVACY STATEMENT ("PRIVACY STATEMENT")

 
(Effective Date March 3, 2009)

The Linux Foundation, ("Linux Foundation"), comprised of its Internet sites, and Linux.com (the "Sites"), is committed to protecting the privacy of users of the Sites. Linux Foundation intends to give users as much control as possible over user’s personally identifiable information, including registration data. This Privacy Statement applies to each of the Sites and describes the information Linux Foundation collects about users and how that information may be used.

Linux Foundation reserves the right to update and change this Privacy Statement from time to time. If Linux Foundation makes material changes to its privacy practices, a prominent notice will be posted on this web page. Each time a user uses the Sites, the current version of the Privacy Statement applies. Accordingly, a user should check the date of this Privacy Statement (which appears at the top) and review for any changes since the last version. If a user does not agree to the Privacy Statement, the user should not use the Sites.

Linux Foundation complies with the United States ("US")/European Union ("EU") Safe Harbor framework as set forth by the US Department of Commerce regarding the collection, use, and retention of data from the EU. Individuals who wish to file a complaint or who take issue with Linux Foundation's EU Safe Harbor policies should direct such communication to Linux Foundation Legal Services - Privacy via written communication at the contact information provided below. Filing a complaint in English will expedite the process. Linux Foundation will investigate and attempt to resolve complaints regarding use and disclosure of personal information in accordance with the principles contained in this Privacy Statement. For complaints that cannot be resolved between Linux Foundation and the complainant, Linux Foundation participates in the dispute resolution procedures of the panel established by the EU data protection authorities to resolve disputes pursuant to the Safe Harbor framework.

Linux Foundation agrees to notify users of the following privacy principles: Notice, Choice, Onward Transfer, Security, Data Integrity, Access, and Enforcement.

NOTICE

Linux Foundation provides this Privacy Statement to make users aware of Linux Foundation privacy practices, and of the choices a user may make about the way the user’s information is collected and used.

Children

Users represent they are of legal age to create binding and financial obligations for any liability users may incur as a result of their use of the Sites. The Sites are not directed to children under the age of 13, and Linux Foundation will never request personally identifiable information from anyone whom it knows to be under the age of 13 without verifiable parental or guardian consent. Linux Foundation does not knowingly collect, or wish to obtain, personally identifiable information from children. If Linux Foundation becomes aware that a user is under the age of 13 and has provided personally identifiable information without prior verifiable parental or guardian consent, it will remove user’s personally identifiable information from its files.

What information Linux Foundation collects

Linux Foundation may collect two types of information from users of Sites: "personally identifiable information" (such as name, email address, postal address, telephone, birth date) and "aggregate information" (such as frequency of visits to Sites, IP address, Site pages most frequently accessed, browser type). Personally identifiable information is any piece of information which can potentially be used to uniquely identify, contact, or locate a user of the Sites. Aggregate information is non-personally identifiable/anonymous information about users of the Sites. Aggregate information is used in a collective manner and no single person can be identified by that compiled information.

On the Sites, users may order products or services, and register to receive materials. Personally identifiable information collected on the Sites includes community forum content, diaries, profiles, photographs, name, unique identifiers (e.g., passwords), contact and billing information (e.g., email address, postal address, telephone, fax), and transaction information.

In order to tailor Linux Foundation’s subsequent communications to users and continuously improve the Sites’ products and services, Linux Foundation may also ask users to provide information regarding their interests, demographics, experience with its products, and detailed contact preferences.

Web beacons

Linux Foundation may use web beacons from time to time. Such web beacons may be provided by Linux Foundation’s third party advertising companies to help manage and optimize Linux Foundation’s online advertising. A web beacon is a string of code that provides a method for delivering a graphic image on a web page or in an email message for the purpose of transferring data, or determining how many times a specific web page has been viewed. Web beacons enable Linux Foundation to recognize a browser’s cookie when a browser visits a Site, and to learn which banner ads bring users to each Site. For example, when a user visits a web page, the code for the page may include instructions to go to another server to gather a single pixel graphic image. Web beacons are not placed on a user’s computer, and users remain anonymous. To opt out of targeted advertising delivered by Linux Foundation, or third party advertisers, users can opt to use freely available ad blocking software, to prevent ads from displaying in their browser. The Linux Foundation does not promote or recommend any type of ad blocking software, nor guarantees that any of the Site services will remain fully functional if the user utilizes such software.


Cookies

Linux Foundation uses cookies on the Sites. A cookie is a unique text file that may be used for data analysis, and enables a web site to tailor information presented to a user based on a user’s browsing program. Linux Foundation may use cookies to personalize a user’s pages at a Site, to remember a user when the user registers for products or services, or to track visits to a Site. If a user does not want Linux Foundation to deploy cookies in the user’s browser, the user may set the browser to reject cookies or to notify the user when a web site tries to place cookies in the browser program. Rejecting cookies may affect a user’s ability to use some of the products, features, functions, or services on a Site. Cookies do not contain personally identifiable information.

The ads appearing on the Sites are delivered to visitors by Linux Foundation, and third party web advertising partners, including but not limited to DoubleClick ("DoubleClick")  and others ("Advertisers"). The third party advertising technology that Linux Foundation uses on the Sites uses information derived from a user’s visits to the Sites to target advertising within the Sites. In addition, Linux Foundation’s advertisers may use other third party advertising technology to target advertising on the Sites. In the course of serving advertisements to the Sites, Advertisers may place or recognize a unique cookie on a user’s browser. Information about users’ visits to the Sites, such as the number of times users have viewed an ad (but not users’ names, addresses, or other personally identifiable information), are used to serve ads to visitors. As with other cookies, and consistent with Linux Foundation’s policy on cookies stated above, the user may block or delete such cookies from the user's drive or memory. For more information about DoubleClick, DoubleClick‘s use of cookies, and how to "opt out" of DoubleClick’s email/information lists, please click here: http://www.doubleclick.net/us/corporate/privacy. Linux Foundation has no access or control over third party cookies.

Log files

Linux Foundation web servers may automatically log aggregate information, such as a user’s IP address, domain name, browser type, date and time of access, and other log file data. This information may be used to analyze trends or administer the Sites. Log files do not contain personally identifiable information.

With respect to Linux.com, Linux Foundation contracts with third party mirror providers, who deliver integrated communications services, including Internet access services, to deploy mirrors of downloads in order to make file downloading via Linux.com faster and more convenient. Linux Foundation has no control over the privacy or logging policies of mirror providers, or the implementation thereof, and such policies may differ from this Privacy Statement.

How Linux Foundation uses the information collected

Linux Foundation may use the personally identifiable information a user submits for any purposes related to Linux Foundation’s business, including, but not limited to:

  1. To understand a user’s needs and create content that is relevant to the user;
  2. To generate statistical studies;
  3. To conduct market research and planning by sending user surveys;
  4. To notify user referrals of Linux Foundation services, information, or products when a user requests that Linux Foundation send such information to referrals;
  5. To improve services, information, and products;
  6. To help a user complete a transaction, or provide services or customer support;
  7. To communicate back to the user;
  8. To update the user on services, information, and products;
  9. To personalize a Site for the user;
  10. To notify the user of any changes with a Site which may affect the user;
  11. To enforce terms of use on a Site; and
  12. To allow the user to purchase products, access services, or otherwise engage in activities the user selects.


User names, identifications ("IDs"), and email addresses (as well as any additional information that a user may choose to post) may be publicly available on a Site when users voluntarily and publicly disclose personally identifiable information, such as when a user posts personally identifiable information in conjunction with content subject to an Open Source license, or as part of a message posted to a public forum or a publicly-released software application. Users may not be able to change or remove public postings once posted. Such personally identifiable information may be used by visitors of these pages to send unsolicited messages. Linux Foundation is not responsible for any consequences which may occur from the use of personally identifiable information that a user chooses to submit to public pages.

With respect to surveys, in the event that responses are publicly disclosed, users will be notified at the time they take the survey. Linux Foundation will disclose only aggregate information regarding its users, which as stated earlier is anonymous information that does not identify any specific individual. Circumstances under which Linux Foundation would publicly disclose such aggregate information include, but are not limited to, sharing survey results with the site population, providing data to Linux Foundation advertisers on user preferences and/or demographics, and publicizing overall usage data in press communications.

Where surveys allow users to submit written comments, and where Linux Foundation advises users of the possibility of such disclosure at the time they take the survey, Linux Foundation reserves the right to disclose any information provided by users, provided that no personal information identifying a specific user is disclosed. Participation in surveys is at a user's option; Linux Foundation does not conduct mandatory surveys.

CHOICE/OPT OUT

A user makes the decision whether to proceed with any activity that requests personally identifiable information. If a user does not provide requested information, the user may not be able to complete certain transactions.

Users who use the personally identifiable information of other users agree to use such information only for:

  1. Using services offered through a Site;
  2. Site transaction-related purposes and not for unsolicited commercial messages; or
  3. Other purposes that the other user expressly chooses.


Users are not licensed to add other users to a Site, even users who entered into transactions with them, or to their mail lists without consent.

Linux Foundation encourages users to evaluate privacy and security policies of any of the Sites’ transaction partners before entering into transactions or choosing to disclose personally identifiable information.

Emails

Linux Foundation will not use or share the personally identifiable information provided to it online in ways unrelated to the items described above without first letting a user know and offering the user a choice. If a user no longer wishes to receive direct marketing materials, Linux Foundation will provide instructions in each of its emails on how to be removed from any lists. Linux Foundation will make commercially reasonable efforts to honor such requests.

Profile or User ID Display

A user’s personally identifiable information may be publicly available through a user's profile or user ID display. In such cases, users have the option and discretion to opt out of publicly displaying their real names at any time by changing their display name under the Sites’ user preferences. Profile or user ID display may allow other users to see a user’s activities, including purchase and sales content, ratings, and comments.

Email Display

Users may have the opportunity to use a service to send electronic mail to another user or email list. In such cases, a user's valid email address and real name will be included with such messages. In order to prevent abuse, users may not opt out of such a display where possible, but may choose to refrain from using such service to transmit an email message.

Linux.com offers an email alias service that allows a user to create an email alias that forwards to the user’s personal email account. Linux Foundation does not publish a user’s personal email address, but does publicize email aliases which may allow an individual to identify or contact a user. A user who obtains an email alias may not opt out of such publication of the email alias.

Photographs

Users may have the opportunity to submit photographs to the Sites for product promotions, contests, and other purposes to be disclosed at the time of request. In these circumstances, the Sites are designed to allow the public to view, download, save, and otherwise access the photographs posted. By submitting a photograph, users waive any privacy expectations users have with respect to the security of such photographs, and Linux Foundation’s use or exploitation of users’ likeness. All photographs submitted to Linux Foundation become the property of Linux Foundation and will not be returned.

ONWARD TRANSFER

With whom may Linux Foundation share information?

Linux Foundation will not sell, rent, or lease a user’s personally identifiable information to others, except as described in this Privacy Statement. Unless Linux Foundation has a user’s permission or as required by law, Linux Foundation will only share the personally identifiable information a user provides online with other entities that are part of the Linux Foundation corporate family and/or outside service providers who may be used to ship products, process credit cards, provide technical support, handle order processing, or otherwise act on Linux Foundation’s behalf. These third parties are prohibited from using users’ information for any other purpose, including their own marketing.

When Linux Foundation uses third parties to assist in processing a Site’s user personally identifiable information, Linux Foundation requests that they comply with Linux Foundation privacy practices, and other appropriate confidentiality and security measures.

Please be advised that in certain instances, it may be necessary for Linux Foundation to disclose a user’s personally identifiable information without a user’s permission to government officials or otherwise as required by legal obligations. Linux Foundation may disclose such personally identifiable information when responding to subpoenas, court orders, or legal process, or to establish or exercise legal rights or defend against claims, including fraud or infringement investigations.

Data collected online may be combined with information a user provides through other means of communication, such as postal mail or third parties to further carry out the purposes described above under the heading "NOTICE, How Linux Foundation uses the information collected regarding users".

When users choose to provide Linux Foundation with personally identifiable information, users consent to the transfer and storage of such information by Linux Foundation servers in the United States.

In addition, Linux Foundation reserves the right to share aggregate information collected from users of the Sites, without prior notice, with entities that are part of the Linux Foundation corporate family and unrelated third parties. As stated earlier, aggregate information is used in a collective manner and no single person can be identified by such compiled information.


Service Orders

To purchase services, users may be asked to be directed to a third party site, like PayPal, to pay for their purchases. If applicable, the third party site may collect payment information directly to facilitate a transaction. None of this information will be captured or stored by Linux Foundation.

Links to third party web sites

Links to third party web sites on the Sites are provided solely as a convenience to the user. When a user uses these links, the user leaves the Sites. Linux Foundation has not reviewed all of these third party sites, does not control, and is not responsible for, any of the third party sites, their content or privacy practices. Linux Foundation does not endorse or make any representations about the third party sites, or any information, services, or products found on the sites. If a user decides to access any of the linked sites, Linux Foundation encourages the user to read their privacy statements. The user accesses such sites at user’s own risk.

Bankruptcy or Sale of business

Linux Foundation reserves the right to share or transfer personally identifiable information and aggregate information to a third party should Linux Foundation ever file for bankruptcy or in the event of a sale, merger or acquisition of Linux Foundation, provided such third party agrees to adhere to the terms of this Privacy Statement.

Changes to this Privacy Statement

Linux Foundation may amend this policy occasionally. If Linux Foundation makes any substantial changes in the way we use your personal information, Linux Foundation will notify you.


Feedback

If you have any questions regarding this Privacy Statement or Linux Foundation’s use of personal information on this site, please contact us at info (at) linuxfoundation dot org.

DATA INTEGRITY AND ACCESS

Should a user find inaccuracies in such user’s information, or desire to close an account or view the personally identifiable information Linux Foundation may have regarding the user, the user may contact Linux Foundation through the communication methods described below, or when technically feasible, directly on a Site. Linux Foundation will make commercially reasonable efforts to respond to requests for access within thirty (30) days of receiving requests. Linux Foundation may decline to process users’ access or update requests to their personally identifiable information if the requests require disproportionate technical effort, jeopardize the privacy of other users, or are impractical (for instance, requests concerning information residing on backup tapes).

SECURITY

To prevent unauthorized access or disclosure, maintain data accuracy, and ensure the appropriate use of information, Linux Foundation implements physical, electronic, and managerial procedures to safeguard and secure the information Linux Foundation collects. Linux Foundation uses encryption when collecting or transferring sensitive personally identifiable information. However, Linux Foundation does not guarantee that unauthorized third parties will never defeat measures taken to prevent improper use of personally identifiable information.

Internal Linux Foundation access to users’ nonpublic personally identifiable information is restricted to Linux Foundation’s administrators and individuals on a need-to-know basis. These individuals are bound by confidentiality agreements.

User passwords are keys to accounts. Use unique numbers, letters, and special characters for passwords and do not disclose passwords to other people in order to prevent loss of account control. Users are responsible for all actions taken in their accounts. Notify Linux Foundation of any password compromises, and change passwords periodically to maintain account protection.

ENFORCEMENT

In the event Linux Foundation becomes aware that the security of a Site has been compromised or user’s personally identifiable information has been disclosed to unrelated third parties as a result of external activity, including but not limited to security attacks or fraud, Linux Foundation reserves the right to take reasonable appropriate measures, including but not limited to, investigation and reporting, and notification to and cooperation with law enforcement authorities.

If Linux Foundation becomes aware that a user's personally identifiable information has been disclosed in a manner not permitted by this Privacy Statement, Linux Foundation will make reasonable efforts to notify the affected user, as soon as reasonably possible and as permitted by law, of what information has been disclosed, to the extent that Linux Foundation knows this information.

If a user has comments or questions about the Linux Foundation’s privacy statement, please contact:

The Linux Foundation
660 York Street, Suite 102
San Francisco, CA 94110
Phone/Fax: +1-415-723-9709
Website: http://www.linuxfoundation.org
Email: info (at) linuxfoundation dot org