[Foundation-l] Privacy Policy & users abusing Check User Privilege

[EP TYPES]

Take Notice:

User:Jpgordon (Arbitrator en.wiki) was granted Check User Privilege:

http://en.wikipedia.org/w/index.php?title=User_talk:Hipocrite&diff=132567106&oldid=132561129


Eptypes is a confirmed sock of [[User:Khunter]], [[User:Goingempty]],
[[User:Parker007]], [[User:Shines8]], and/or [[User:Paracit]].
--[[User:Jpgordon|jpgordon]] 00:22, 22 May 2007 (UTC)


User:Mackensen (Arbitrator en.wiki) was granted Check User Privilege:

http://en.wikipedia.org/w/index.php?title=Wikipedia%3ARequests_for_arbitration&diff=132589816&oldid=132586551


Hello {{user|Endgame1}}. --[[User:Mackensen|Mackensen]] 02:25, 22 May 2007
(UTC)

These 2 users have abused the check user privilege granted to them. There
was No Check User Request filed. They are supposed to only use their
privilege:

Wikimedia privacy policy

On Wikimedia <http://meta.wikimedia.org/wiki/Wikimedia> projects, privacy
policy <http://wikimediafoundation.org/wiki/privacy_policy> considerations
are of tremendous importance. Unless someone is definitely violating policy
with their actions (*e.g.* massive bot vandalism or spam), revealing their
IP, whereabouts or other information sufficient to identify them is likely a
violation.

CheckUser requires the level of confidentiality one would apply to our most
confidential user data.

The relevant section of the privacy
policy<http://meta.wikimedia.org/wiki/Privacy_policy>is:
 *Policy on release of data derived from page logs*  *It is the policy of
Wikimedia that personally identifiable data collected in the server logs, or
through records in the database via the CheckUser feature, may be released
by the system administrators or users with CheckUser access, in the
following situations:*

   1. *In response to a valid subpoena or other compulsory request from
   law enforcement*
   2. *With permission of the affected user*
   3. *To the chair of Wikimedia Foundation, his legal counsel, or his
   designee, when necessary for investigation of abuse complaints. *
   4. *Where the information pertains to page views generated by a spider
   or bot and its dissemination is necessary to illustrate or resolve technical
   issues.*
   5. *Where the user has been vandalising articles or persistently
   behaving in a disruptive way, data may be released to assist in the
   targeting of IP blocks, or to assist in the formulation of a complaint to
   relevant Internet Service Providers*
   6. *Where it is reasonably necessary to protect the rights, property
   or safety of the Wikimedia Foundation, its users or the public.*

 Wikimedia policy does not permit public distribution of such information
under any circumstances, except as described above.

*Information release*

Even if the user is committing abuse, it's best not to reveal personal
information if possible.

   - Generally, do not reveal IPs. Only give information such as same
   network/not same network or similar. If detailed information is provided,
   make sure the person you are giving it to is a trusted person and will not
   reveal it himself.
   - If the user has said they're from somewhere and the IP confirms it,
   it's not releasing private information to confirm it if needed.
   - If they're on a large national or international ISP (*e.g.* AOL,
   NTL, BT, Telstra) where they're one of millions of users, saying so is
   unlikely to be personally identifiable.
   - Revealing the country is generally not personally identifiable (*e.g
   .* "User:Querulous is coming in from the UK, User:Sockpuppet is coming
   in from Canada").
   - If you're in any doubt, give no detail.