You are viewing a plain text version of this content. The canonical link for it is here.
Posted to privacy-commits@apache.org by gr...@apache.org on 2021/06/28 20:49:32 UTC
[privacy-website] branch main updated: added draft for website
policy
This is an automated email from the ASF dual-hosted git repository.
grobmeier pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/privacy-website.git
The following commit(s) were added to refs/heads/main by this push:
new cf11eb4 added draft for website policy
cf11eb4 is described below
commit cf11eb457d77e876063cf1908740dac8bb04f074
Author: Christian Grobmeier <cg...@grobmeier.de>
AuthorDate: Mon Jun 28 22:49:22 2021 +0200
added draft for website policy
---
policies/index.md | 2 +-
policies/website-policy.md | 63 ++++++++++++++++++++++++++++++++++++++++++++++
2 files changed, 64 insertions(+), 1 deletion(-)
diff --git a/policies/index.md b/policies/index.md
index ea17cb1..fb3df11 100644
--- a/policies/index.md
+++ b/policies/index.md
@@ -28,5 +28,5 @@ layout: default
## Internal Policies
- - Website Policy
+ - [Website Policy](/policies/website-policy.html)
- Mailing List Policy
\ No newline at end of file
diff --git a/policies/website-policy.md b/policies/website-policy.md
new file mode 100644
index 0000000..991bcfb
--- /dev/null
+++ b/policies/website-policy.md
@@ -0,0 +1,63 @@
+---
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+
+layout: default
+---
+
+**---> DRAFT VERSION**
+
+This policy describes restrictions for websites managed by the
+ASF or hosted on ASF servers.
+
+## 1) Analytics
+
+All analytics software embedded on a website needs to be confirmed by
+V.P. Data Privacy. Analytics software need to support the GDPR and a
+DPA need to be signed before it can be used.
+
+Note: Google Analytics cannot be used on any ASF website because
+of Schrems-II.
+
+## 2) YouTube
+
+YouTube content can be embedded only when the user gave consent before loading
+any file from YouTube.
+
+## 3) Cookies
+
+No cookies are allowed, except the user gave consent before setting the cookie.
+
+If the cookie is not used for tracking, but used for managing a so called session, no user content is necessary.
+
+## 4) Using Assets from other Domains
+
+Assets (JS, Images, Fonts, CSS etc) from other domains cannot be loaded. Assets
+need to be hosted on ASF servers.
+
+## 5) (Google) Maps
+
+(Google) can usually be used, when the user gave consent before loading.
+
+## 6) Social Media
+
+Social Media buttons (Facebook Like, showing Instagram embeds, Twitter pixel) can
+only be used when the user gave consent before loading.
+
+## 7) Facebook Pages
+
+ASF Projects cannot run Facebook pages due to Art. 5 ยง2 and Art. 26 of the GDPR.
---------------------------------------------------------------------
To unsubscribe, e-mail: privacy-commits-unsubscribe@apache.org
For additional commands, e-mail: privacy-commits-help@apache.org