Wikimedia Foundation Transparency Report/December 2016/Requests for User Data

± Wikimedia Foundation Transparency Reports

• December 2016 Transparency Report
  • Requests for User Data
  • Emergency Disclosures
  • Requests for Content Alteration & Takedown
  • Right To Be Forgotten Requests
  • DMCA Takedown Notices
• Stories
• FAQ
• Detailed dynamic (non-wiki) version of the Report
• Downloadable file of full data (direct download .ods file)

All transparency reports

• Main page
• December 2016
• June 2016
• December 2015
• June 2015
• 2014

Privacy-related WMF Policies

• Privacy policy
• Subpoena FAQ
• Access to nonpublic information policy
• Data retention guidelines
• Requests for user information procedures & guidelines

Contact Us

Freedom of speech is essential to the Wikimedia movement—our projects cannot flourish in an ecosystem where individuals cannot speak freely. Our users trust us to protect their identities against unlawful disclosure and we take this responsibility seriously.

However, every year, governments, individuals, and corporations ask us to disclose user data. Often, we have no nonpublic information to disclose because we collect little nonpublic information about users and retain that information for a short period of time. But when we do have data, we carefully evaluate every request before considering disclosure. If the requests do not meet our standards — if they are overly broad, unclear, or irrelevant — we will push back on behalf of our users.

If we must produce information due to a legally valid request, we will notify the affected user before we disclose, if we are legally permitted and have the means to do so. In certain cases, we may help find assistance for users to fight an invalid request.

The question of the right to privacy must be one of the defining issues of our time.' — Salil Shetty, Secretary General of Amnesty International, (2014)

We divide the requests we receive by the type of information requested: “content” or “non-content.”

Most content information on the Wikimedia projects is the public content of articles and project pages; “non-content” information refers to information such as IP addresses or user agent information. The distinction comes from the Electronic Communications Privacy Act, or ECPA. Please see our FAQ for more information.

JUL – DEC 2016
Requests for user data, and how we responded
By request type:
	Received	All	Partial
Informal non-government requests	6	0	0
Informal government requests	5	0	0
Civil subpoenas	1	0	0
Court orders	0	0	0
Criminal subpoenas	1	0	1
Administrative subpoenas	0	0	0
Search warrants	0	0	0
By country:
United Kingdom	3	0	0
United States	3	0	1
Korea	2	0	0
Australia	1	0	0
Croatia	1	0	0
France	1	0	0
India	1	0	0
Unknown	1	0	0

Occasionally, we receive a preservation request from the U.S. government under the Electronic Communications Privacy Act . A preservation request is an order to retain information that would otherwise be deleted, anonymized, or aggregated within 90 days, according to our Data Retention Guidelines. If we receive one of these requests, we are legally required to retain the specific information indicated. However, we will not turn this information over to the requesting party unless they subsequently follow our Requests for User Information Procedures & Guidelines, and obtain a legal order, such as a subpoena or warrant, for the information in question.

Here, we provide the number of new preservation requests we received during the period covered by this report.