Friends/Foundation

From MozillaWiki
Jump to: navigation, search

Mozilla Foundation Guidelines

Purpose and Scope

Here is how we use the six core privacy principles in Mozilla Foundation communications, projects, and campaigns.

Mozilla Foundation Privacy Principles

No Surprises

  • Our email program specifics will be described in detail in the Mozilla privacy policy.
  • Mozilla's opt-in process always clearly defines the content that the subscriber will receive. The value prop should be clearly stated with details about what they will receive.
    • Example: Mozilla updates: Mozilla's latest campaigns and projects to make the Web a better place for us all.
  • We'll never share or sell our subscriber data with any third party.
  • Once a subscriber unsubscribes, we do not send an email confirmation of the unsubscribe. After the unsubscribe, an on screen confirmation should display confirming they've been removed from the list.

Real Choices

  • Our privacy policy must be checked before the opt-in submits.
  • All email subscribers must opt-in.
  • We never utilize a pre-check email opt-in
  • Our unsubscribe process strives to give users easy methods to opt-in and to opt-out.

User Control

  • Mozilla does not buy or rent lists.

Limited Data

  • Facebook and Twitter sharing should be hard coded where possible and should be done through a browser window so that no data should be shared with Facebook or Twitter.
  • Behavioral targeting (ex: if Sally clicks on an add-on link, can we send her a future newsletter that's more focused on add-ons?) would require careful consideration of Mozilla's Privacy Principles.
  • We do not ask for more info than is important/relevant to the specific action

Sensible Settings

  • Once a subscriber unsubscribes, we do not send an email confirmation of the unsubscribe. After the unsubscribe, an on screen confirmation should display confirming they've been removed from the list.

Trusted Third Parties

  • Third parties used in email delivery & fundraising processing will sign the data addendum, will have completed a vendor privacy review, and will agree to Mozilla's right to audit.
  • Fundraising vendor must be PCI compliant.