นโยบายความเป็นส่วนตัว/คำถามที่พบบ่อย

Like many organizations, we have grown and changed over the years, and we drafted this Privacy Policy in hopes that it would better reflect not only our current practices, but also where we hope to go in the future. Our goals were to make this Privacy Policy easy-to-read and transparent about the way we collect information and use it to better understand and improve the Wikimedia Sites for you.

If you are interested in reading any of our past Privacy Policies, we keep prior versions of our Privacy Policies accessible and in archives for your review. Since we maintain our Privacy Policy on a wiki, you can use the page's history to compare revisions! Those with major revisions are from 2003, 2006, 2008, and 2014.

A standard account is one that you can sign up for to browse or edit the main Wikimedia projects like Wikipedia or Wikimedia Commons. Typically you do not need to provide more than a username and password to create a standard account with WMF; however, if you create a standard account using a system run by a third party, then you may be required to provide additional information, such as an email address. A non-standard account is one that you may sign up for to participate in the Wikimedia movement in a more in-depth way, outside of reading or contributing to one of our main projects like Wikipedia.
For example, if you register for an account on non-wiki sites such as Phabricator, Gerrit, or VRT or work on a special initiative like Global Education, you may be required to register for an account to participate and registration for those accounts may require additional information other than a username and password, such as an email address.

Sure! The cookies (and related local storage storage technologies) used by the Wikimedia Sites generally fall into the following categories:

For more information, please visit our Cookie Statement.

While this is not a comprehensive list, here are some of the things that you can do to limit use of locally stored data on your device. You can:

You can change what notifications you receive by either:

You also have the option of enabling the "Email this user" feature, which allows other users to email you directly by clicking "Email this user" in the Toolbox menu on your user page. If you enable this feature, your email address is not revealed when other users contact you (although it will be if you reply). If you enable this feature, any other user can email you and we do not control what or how often they email you. This is how you can enable this feature:

Sure! If you are using the Wikipedia mobile application, you can find out if there are articles about places and things near you by using the "Nearby" button. Your device will ask your permission to identify and use your current location before actually using your location information. If you access this feature on your laptop, desktop, or device without a GPS, this feature will use your information from your browser to figure out your location and find articles about places and things (like public sculptures or famous buildings) near you.

We use some downloaded products, like MaxMind's GeoIP City DB, which allows us to internally determine the approximate location of our users. And when we say "approximate," we mean it: the GeoIP City DB resolves your location at the center of the most precise area data associated with your IP. The only possibilities for associated area data are postal code, city, region, or country. Unless you are habitually positioned in the geographical middle of the most specific area associated with your IP address, the data we retrieve is unlikely to be good enough to have a sandwich delivered.

We do this so that you can be served with appropriate regional content such as local notices, event announcements, and local fundraising campaigns. To see what information we have on record for your IP address, you can load our GeoIP lookup tool at any time and check the result.

If you receive a scholarship to go to Wikimania, we may ask your permission to share your information with the local chapter hosting Wikimania that year so we can make appropriate travel arrangements. Or if you apply for a grant, we may ask your permission to share your information with members of the Funds Dissemination Committee reviewing your grant application. Or you may want to use your Wikimedia username and password to log in and send information to a third-party site, using such services as OpenID or OAuth, in which case your information will only be sent to the third-party site with your explicit permission.

It is important for us to be able to make sure everyone plays by the same rules, and sometimes that means we need to investigate and share specific users' information to ensure that they are.

For example, user information may be shared when a CheckUser is investigating abuse on a Project, such as suspected use of malicious "sockpuppets" (duplicate accounts), vandalism, harassment of other users, or disruptive behavior. If a user is found to be violating our Terms of Use or other relevant policy, the user's Personal Information may be released to a service provider, carrier, or other third-party entity, for example, to assist in the targeting of IP blocks or to launch a complaint to the relevant Internet Service Provider.

As another example, if we are notified that a user has made a bomb threat, we may have to report some information related to that threat to local authorities to save lives.

We also may use Personal Information for other legitimate charitable purposes described in our Privacy Policy.

Of course! Wikimedia Sites rely on hosting providers, fiber-optic network providers, data centers, and other service providers and contractors. We have a contract with these service providers, and they only have access to your data to perform services for us consistent with this policy. Other times, we may use third-party providers to help us manage the information we store or use, address requests from users, and other operational needs (like audits). For example, we may use third-party grants management systems to hold grant applicant information and make our application process simpler and more efficient or we may use third-party providers for email and notification services for staff and users.

When you click a link on a Wikimedia site that sends you to an external website, the referrer information transmits only your domain origin, not the specific Wikimedia page visited, to that third-party destination. For example, if you're reading an article on Wikipedia and click on a citation that directs you to a news article on an external site, the referrer information contains only the Wikipedia domain, not the specific article URL. This type of referrer policy is known as "origin-when-cross-origin".

We limit referrer information in this way to protect user privacy, and avoid revealing sensitive information about the pages viewed by users, while allowing movement affiliates and partners to collect aggregate information on traffic received from Wikimedia operated websites. For those who would like to know more, and may be interested in having greater control over referrer information, the Wikimedia Foundation Security team has prepared a page on Meta with some further detail and recommended tools.

In a few instances (not involving the Wikimedia Sites as far as we know!), independent researchers have been able to link non-personal and aggregate information from different sources to particular users. While we try to avoid this by seeking to de-identify Personal Information before sharing it for research purposes, we want to make sure you are aware of this risk.

Yes! We've been implementing HTTPS-only communications on all of the Wikimedia Sites since 2015. We've also implemented several related measures to further secure our traffic beyond the industry minimum standards, including: HSTS, Browser HSTS preloading, OCSP Stapling, and ECDSA server certificates. We embed signed certificate timestamps for Certificate Transparency, and enable best-in-class cipher options, including X25519 and Chacha20-Poly1305. We also deprecate outdated ciphers before they become the next emergency. For the latest on our efforts, see our HTTPS status page.

It depends on the type of data and how it was collected. For example, information that can be accessed by the CheckUser tool is deleted after three months. Other information, such as the IP addresses associated with contributions from unregistered users are visible in an article's revision history indefinitely. You can learn more about how long we keep different types of data in our data retention guidelines.

A group of experienced users called the Ombuds Commission has the power and authority to investigate violations and alleged violations of this Privacy Policy and make recommendations to us on how to address a violation or alleged violation.

The main Privacy Policy covers the Personal Information of our users. However, if there is outdated or inaccurate information about you in a Wikipedia article, the best way to get the article updated is to follow the user community's content policies and procedures. You may comment on the article Talk page (by clicking "talk" at the top left and then editing the page) to raise any questions or concerns for review by other editors working on the article. If you prefer not to comment on the page, you can get help from experienced Wikimedia volunteers by emailing info wikimedia.org, or the correct email address for the relevant language. The Wikimedia Projects are collaboratively written and driven by consensus. This means that information in Wikipedia articles is written, updated, and policed by a global community of users like you. The Wikimedia Foundation believes that the community should generally determine what content belongs on the projects, and we encourage use of established community procedures to resolve potential concerns or disputes.

"Do Not Track" or "DNT" is a way for your web browser to tell the website you are visiting that you do not want to be tracked by third parties whose websites you did not visit, like analytics services, advertising networks, and social platforms. When using this mechanism, a signal is sent by your browser, expressing your desire that your Personal Information, particularly about your online activities and network interactions, should not be passed on to third parties. When receiving a DNT signal sent by your browser, the person or entity that owns the website has the option to either honor or ignore the above-mentioned request.

The Wikimedia Foundation is strongly committed to not sharing the Personal Information we collect from you (including your online activities and network interactions with Wikimedia Sites) with any third parties, except under the specific situations detailed in the "When May We Share Your Information" section of our Privacy Policy.

Because of this commitment, we protect everyone, and do not change our behavior in response to a web browser's DNT signal.

You can find more information about "Do Not Track" technology and policy proposal at Do Not Track Us, and the World Wide Web Consortium's Do Not Track Specification.

You never need an account to read a public Wikimedia Site. And in most cases, you don't need an account to contribute to a Wikimedia Site. However, there are a few rare instances where you will need to register an account if you want to contribute. A local community of editors or contributors (for example, the English Wikipedia community or the Malay Wiktionary community) or the Wikimedia Foundation itself may decide to place temporary or permanent restrictions on what you can change. For example, a specific page may be temporarily restricted from editing to allow only experienced or administrative users because of vandalism or copyright concerns. You may also not upload content such as images or videos without being logged in because we need to verify that proper permissions have been obtained from the copyright holder (if the media is not already in the public domain) in order to post the content.

Sure! Public logs may include when your account was created, when you deleted a page, or when you thanked another user. If you would like an example you can also browse through some of the public logs for this wiki at Special:Log.

The Wikimedia Sites use publicly-available revision histories to build consensus, promote transparency amongst contributors and editors, and affirm the authenticity of the content of our sites. Therefore, once you post information to the Wikimedia Sites, it is public and you will likely not be able to remove it. Even if you remove certain content (say from a Wikipedia article) yourself, it will still remain publicly available in the "view history" section of the article. Under certain circumstances, you may be able to request removal of a page or file or a part of the history of a page or file from public visibility (for example, if you accidentally post high-risk Personal Information like your credit card number). Please note that removal decisions (i.e., the deletion of a whole article) are not always made centrally, and sometimes they come after a public discussion amongst the Wikipedia community (see English Wikipedia's deletion policy for further reference). This procedure does not ensure complete or comprehensive removal of the content or information posted on the Wikimedia Sites.

You can also request suppression (oversight), in order to hide revisions, user names in edit histories and logs, or portions of individual log entries. Suppression is an on-wiki process that applies to specific uses. Please refer to the Meta-Wiki page on suppression for further information and instructions.

If you are a registered user, we encourage you not to use your real name as your username if you do not want others to have a connection between what you post on the Wikimedia Sites and your real name. You can learn more about choosing your username in English Wikipedia's username policy. Please note that this Username Policy is only applicable to English Wikipedia, and different Wikipedias have different policies. We recommend checking the username policy on the project you intend to use to be sure you are in compliance with local practice.

If you have already included personally identifying information (such as your real name) in your username and do not want to be personally identified with your contributions, we encourage you to request the anonymization of the information (instead of proceeding with the removal and suppression processes described above) by requesting a change of your username. For information on how to change your username, see the Meta-Wiki page on Changing Username.

The de-identification process cannot ensure complete or comprehensive anonymization of all of the content or Personal Information posted on Wikimedia Sites related to your prior username. If your request is granted, the name change will only occur in automatically generated logs (such as page histories) in association with content that you posted. The name change will not delete mentions of your prior username by third parties. For example, if you changed your username from MichaelPaul to Owlwatcher345, the content you contributed will be attributed to Owlwatcher345, but if another user has mentioned you by the name MichaelPaul in a discussion page, MichaelPaul will continue to appear rather than Owlwatcher345.

Please refer to our Privacy Policy for more information about your choices with respect to our use of your Personal Information and how you may exercise these choices.