Kebijakan akses untuk informasi non-publik

From Meta, a Wikimedia project coordination wiki
Jump to navigation Jump to search
This page is a translated version of the page Access to nonpublic personal data policy and the translation is 24% complete.

Outdated translations are marked like this.
Other languages:
Bahasa Indonesia • ‎Bahasa Melayu • ‎British English • ‎Canadian English • ‎Cymraeg • ‎Deitsch • ‎Deutsch • ‎Deutsch (Sie-Form)‎ • ‎English • ‎Esperanto • ‎Lingua Franca Nova • ‎Lëtzebuergesch • ‎Mainfränkisch • ‎Nederlands • ‎Nederlands (informeel)‎ • ‎Ripoarisch • ‎Tiếng Việt • ‎Türkçe • ‎asturianu • ‎bosanski • ‎català • ‎dansk • ‎emiliàn e rumagnòl • ‎español • ‎français • ‎galego • ‎italiano • ‎latviešu • ‎lietuvių • ‎magyar • ‎norsk bokmål • ‎occitan • ‎oʻzbekcha/ўзбекча • ‎polski • ‎português • ‎português do Brasil • ‎română • ‎sicilianu • ‎slovenčina • ‎suomi • ‎svenska • ‎čeština • ‎Ελληνικά • ‎башҡортса • ‎български • ‎русский • ‎українська • ‎հայերեն • ‎ייִדיש • ‎עברית • ‎اردو • ‎العربية • ‎تونسي • ‎جهلسری بلوچی • ‎روچ کپتین بلوچی • ‎سنڌي • ‎فارسی • ‎لەکی • ‎پښتو • ‎नेपाली • ‎हिन्दी • ‎বাংলা • ‎ਪੰਜਾਬੀ • ‎ગુજરાતી • ‎മലയാളം • ‎සිංහල • ‎ไทย • ‎ትግርኛ • ‎ភាសាខ្មែរ • ‎中文 • ‎日本語 • ‎粵語 • ‎한국어
Ingin membantu menerjemahkan? Terjemahkan pesan yang belum ada.
Information

This policy was published on 6 November 2018 and started to effect on November 15, 2018. For the previous version please see the previous version

This is a user-friendly summary of the access to nonpublic personal data policy.
Disclaimer: This summary is not a part of the access to nonpublic personal data policy and is not a legal document. It is simply a handy reference for understanding the full access to nonpublic personal data policy. Think of it as the user-friendly interface.

Because we believe that the privacy of the Wikimedia community is essential, community members with access to nonpublic personal data may only release information under certain circumstances, such as:

Because we believe that safeguarding the privacy of the Wikimedia community is an important Wikimedia value, those who have access to nonpublic information need to:

Because we value the community members who take on this critical role in the safeguarding of the Wikimedia Sites and its users and want to protect their privacy, we promise to:

Mempertahankan informasi hubungan dan identitas mereka rahasia dan selamat , dan perjanjian kerahasiaan; dan


Tujuan

Wikimedia Sites (the “Sites”) are the product of a global community of volunteer contributors and editors. This dedicated group of individuals not only writes and curates content on the Sites, they also help ensure the safety of the Sites and its users as well as compliance with applicable policies. To manage this immense task effectively, certain community members are entrusted with access to limited amounts of nonpublic personal information regarding other users (“Nonpublic Personal Data”). For example, a community member who has “checkuser” rights could use those rights to investigate whether a single user is using multiple accounts in a manner inconsistent with Wikimedia policies. The purpose of this “Access to Nonpublic Personal Data Information” policy (the “Policy”) is to:

  • menjelaskan kebutuhan-kebutuhan minimum yang harus dipenuhi oleh setiap anggota komuniti yang memiliki akses kepada informasi bukan publik;
  • menjelaskan hak-hak dan pertanggungjawaban para anggota komuniti yang memiliki akses kepada informasi bukan publik;
  • memastikan bahwa para anggota komuniti yang memiliki akses kepada informasi bukan publik faham dan komited untuk memelihara rahasia informasi bukan publik; dan
  • menyediakan garis panduan kepada para anggota komuniti yang memiliki akses kepada informasi bukan publik tersebut bilanya mereka bisa mencapai informasi bukan publik, bagaimana mereka bisa menggunakan informasi tersebut, dan bila dan kepada siapa informasi tersebut bisa didedahkan.

Anggota-anggota komuniti yang tertakluk oleh Dasar ini

Dasar ini bekas kepada setiap pengguna yang memiliki akses kepada informasi bukan publik yang diliputi oleh Dasar Pribadi, termasuklah:

  • Anggota-anggota komuniti yang memiliki akses kepada setiap alat yang memungkinkan mereka melihat informasi bukan publik tersebut pengguna-pengguna lain (seperti alat Pemeriksa) atau anggota-anggota publik (sebagai contoh, melalui rekening OTRS);
  • Anggota-anggota komuniti yang memiliki kemampuan mencapai konten atau informasi pengguna yang telah dibuang melalui layar administrator (seperti alat Pembatasan); dan
  • Pengembang relawan yang memiliki akses kepada informasi bukan publik.

Sebagai contoh saja, beberapa contoh kelompok anggota komuniti yang berlaku Dasar ini termasuklah, administrator OTRS, anggota tim reaksi balas e-email, dan Pengelola. Dasar ini tidak bekas kepada pengguna yang hanya memiliki hak untuk melihat revisi terhapus biasa. Dasar ini juga tidak bekas kepada para pekerja atau para kontraktor Yayasan Wikimedia yang bertindak dalam kapasitas profesional mereka karena mereka telah pun tertakluk bawah persetujuan-persetujuan kerahasiaan lain yang memiliki perlindungan sama atau lebih dari Dasar ini.

Kebutuhan-kebutuhan minimum untuk anggota-anggota komuniti yang memohon hak-hak akses kepada informasi bukan publik

The following conditions are minimum requirements that all Designated Community Members must meet before being granted access to Nonpublic Personal Data ("access rights"). These conditions should also be considered requirements to be a candidate for any community-run selection process for a role that would convey such access rights. The community may require candidates for access rights to meet additional community-specified criteria on a case-by-case or role-by-role basis.

(a) Minimum age. Access to nonpublic information requires maturity because of the significant responsibilities that come along with confidentiality obligations. For this reason, any community member who applies for access rights must:

  • be at least eighteen (18) years of age, except email response team members who must be at least sixteen (16) years of age; and
  • must certify to the Wikimedia Foundation that they meet the minimum age required for the rights they are applying for.

(b) Valid, linked email address. In order to ensure that we can contact the individuals who take on these important roles, any community member who applies for access rights must:

  • submit to the Wikimedia Foundation a valid email address;
  • have the account under which they are applying for rights linked to a valid email address;
  • complete verification of the submitted and/or linked email address (such as responding to a confirmation email sent to their submitted email address), if requested to do so; and
  • inform the Wikimedia Foundation of any change to their email address within one week of such change.

(c) Confidentiality. To ensure that community members with access rights understand and commit to keeping the nonpublic information confidential, they will be required to read and certify that they agree to a short Confidentiality Agreement that outlines:m:Special:MyLanguage/Confidentiality agreement for nonpublic informationm:Special:MyLanguage/Confidentiality agreement for nonpublic information

  • what Designated Community Members should treat as confidential information;
  • when they are allowed to access Nonpublic Personal Data;
  • how Designated Community Members may use Nonpublic Personal Data about other users;
  • when and to whom they may disclose the Nonpublic Personal Data and how they must otherwise refrain from disclosing Nonpublic Personal Data to anyone, except as permitted under applicable policies;
  • how they must safeguard their accounts from unauthorized access; and
  • when they must report disclosure of Nonpublic Personal Data to third parties or improper access, use, or disclosure of Nonpublic Personal Data.

(d) Privacy. In consideration of the privacy of the community members with access rights, any personal information submitted to the Wikimedia Foundation under this Policy is subject to the Wikimedia Foundation's Privacy Policy and Data Retention Guidelines.m:Special:MyLanguage/Data retention guidelinesm:Special:MyLanguage/Privacy policy

(e) Submission timeline. Any community member who has been granted access rights at the time this Policy becomes effective must meet the requirements of Sections (a) - (c) of this Policy within ninety (90) calendar days of the date this Policy becomes effective. The Wikimedia Foundation may, at its sole discretion, extend the compliance period for individual community members as needed.

Any community member who has not met the requirements of Section (a) - (c) of this Policy by the deadline above should anticipate having their access rights revoked until they have submitted the required information.

Use and disclosure of nonpublic information

Designated Community Members provide valuable services to the Sites and its users – they fight vandalism, respond to helpdesk emails, ensure that improperly disclosed private data is removed from public view, confirm license permissions, investigate sockpuppets, improve and debug software, and much more. But Designated Community Members’ use of access rights is limited to certain circumstances and contexts. This section elucidates the situations in which access rights may be used and Nonpublic Personal Data may be disclosed to third parties.

(a) Use of access rights and Nonpublic Personal Data. All Designated Community Members may only use their access rights and the subsequent information they access in accordance with the policies that govern the tools they use to gain such access. For example, community members with access to the CheckUser tool must comply with the global CheckUser Policy, and, unless they are performing a cross-wiki check, they must also comply with the more restrictive local policies applicable to the relevant Site. Similarly, community members with access to the Suppression tool may only use the tool in accordance with the Suppression Policy. When a Designated Community Member’s access to a certain tool is revoked, for any reason, that member must destroy all Nonpublic Personal Data that they have as a result of that tool.

(b) Pengungkapan informasi bukan publik. Dalam usaha memastikan Situs-situs ini dan para penggunanya selamat, anggota-anggota komuniti yang memiliki hak-hak akses terkadang harus mengungkapkan informasi bukan publik kepada pihak ketiga. Pengungkapan informasi bukan publik bisa dibuat kepada:

(i) other Designated Community Members with the same access rights, or who otherwise are permitted to access the same Nonpublic Personal Data, to fulfill the duties outlined in the applicable policy for the access tool used;

(ii) service providers, carriers, or other third party vendors to assist in the targeting of IP blocks or the formulation of a complaint to relevant Internet Service Providers;

(iii) penguat kuasa undang-undang, dalam kasus yang mana ada ancaman segera dan diyakini terhadap nyawa atau daksa badan;

(iv) pihak-pihak yang diberi kuasa, dengan kebenaran nyata oleh pengguna yang informasi bukan awamnya akan didedahkan;

(vi) orang publik, jika ia adalah akibat yang harus dan sampingan untuk tindakan membatasi rekening boneka atau rekening lain yang disalah guna.

Meskipun anggota-anggota komuniti yang memiliki hak-hak akses bisa mengungkapkan informasi bukan publik kepada pihak ketiga dalam situasi-situasi yang diterangkan di atas, mereka tidak diwajibkan oleh Yayasan Wikimedia untuk berbuat demikian. Namun bagaimanapun, silahkan ambil perhatian bahwa jika seorang anggota komuniti yang memiliki hak-hak akses memutuskan untuk mengungkapkan informasi dalam setiap situasi yang diliputi oleh (ii), (iii), (iv), atau (v) di atas, mereka harus memberitahukan Yayasan Wikimedia dengan mengirim satu penjelasan untuk pengungkapan tersebut melalui e-email kepada check-disclosure@wikimedia.org dalam periode sepuluh (10) hari bekerja setelah pengungkapan tersebut.check-disclosure@wikimedia.org

In the event that a Designated Community Member receives a request for Personal Data from law enforcement regarding a immediate and credible threat of bodily harm, as described above in (iii), and the Designated Community Member chooses to disclose Personal Data, they are permitted to do so without pre-authorization however that Designated Community Member should immediately contact check-disclosure@wikimedia.org with an explanation of the disclosure. If the Designated Community Member chooses not to disclose Personal Data in response to an emergency request from law enforcement, that Designated Community Member should immediately email emergency@wikimedia.org with details of the request so that it can be evaluated for possible Foundation disclosure.

Semua permintaan resmi dan tidak resmi lain terhadap informasi pengguna (yaitu yang tidak diliputi oleh setiap situasi yang diterangkan di atas atau yang tidak diambil tindakan oleh setiap anggota komuniti yang memiliki hak-hak akses), termasuk sepina, dari penguat kuasa undang-undang, badan-badan pemerintah, pengacara, atau pihak ketiga lain mestilah ditujukan kepada departemen guaman Yayasan Wikimedia melalui legal@wikimedia.org.legal@wikimedia.orglegal@wikimedia.org

Halaman yang terkait dengan privasi