At Mozilla, like at many other organizations, we rely on data to make product decisions. But here, unlike many other organizations, we balance our goal of collecting useful, high-quality data with our goal to give users meaningful choice and control over their own data. The
Firefox data collection program was created to ensure we achieve both goals whenever we make a change to how we collect data in our products.
In [https://wiki.mozilla.org/index.php?title=Firefox/Data_Collection&diff=1183319&oldid=1181872 November 2017], we revised the program to make our policies clearer and easier to understand and our processes simpler and easier to follow. These changes are designed to reflect our commitment to data collection grounded in:
= Requesting Data Collection =
== Step 1: Submit Request ==
To request a review for new or changed Data Collection in
Firefox, Data Review requesters are required to provide the following:
* A completed Request Form, documenting what data is to be collected, why Mozilla needs to collect this data, how much data will be collected, and for how long it will be collected:
** Take [https://github.com/mozilla/data-review/blob/master/request.md this request] and fill it out completely.
* A notification so the Data Steward knows it's time to review your Request Form:
** Flag the attached, completed Request Form for <tt>data-review</tt>.
your chosen Data Steward doesn't get to your review within a couple of days, please [https://chat.mozilla.org/#/room/#data-stewards:mozilla.org reach out to us on Matrix].
== Step 2: Request is reviewed ==
; '''Category 1 “Technical data”'''
Information about the machine or Firefox itself. Examples include OS , available memory, crashes and errors, outcome of automated processes like updates , safebrowsing, activation, version #s, and buildid. This also includes compatibility information about features and APIs used by websites, addons, and other 3rd-party software that interact with Firefox during usage .
; '''Category 2 “Interaction data”'''
Information about the user’s direct engagement with Firefox. Examples include how many tabs, addons, or windows a user has open; uses of specific Firefox features ; session length, scrolls and clicks ; and the status of discrete user preferences .
; '''Category 3 “Web activity data”''': Information about user web browsing that could be considered sensitive. Examples include users’ specific web browsing history; general information about their web browsing history (such as TLDs or categories of webpages visited over time); and potentially certain types of interaction data about specific webpages visited.
; '''Category 4 “Highly sensitive data”''': Information that directly identifies a person, or if combined with other data could identify a person. Examples include e- mail, usernames, identifiers such as google ad id, apple id, fxaccount, city or country (unless small ones are explicitly filtered out), or certain cookies. It may be embedded within specific website content, such as memory contents, dumps, captures of screen data, or DOM data.
== Eligibility for Default on Data Collection ==
== Other Practices ==
Every year, the data collection owner and peers will survey all of the existing data collection systems
with Firefox. This survey has the following goals:
* To ensure that it is still necessary and useful to collect a piece of data.
* To re-identify who is responsible for the collection, monitoring, and reporting of collected data.