As you may know, the Wikimedia Foundation Board of Trustees approved a new "Access to nonpublic information policy" on 25 April 2014 after a community consultation. The former policy has remained in place until the new policy could be implemented. That implementation work is now being done, and we are beginning the transition to the new policy.
An important part of that transition is helping volunteers like you sign the required confidentiality agreement. All Wikimedia volunteers with access to nonpublic information are required to sign this new agreement, and we have prepared some documentation to help you do so.
The Wikimedia Foundation is requiring that OTRS volunteers sign the new confidentiality agreement by 31 December 2015 to retain their access. You are receiving this email because you have been identified as an OTRS volunteer and are required to sign the confidentiality agreement under the new policy. If you do not sign the new confidentiality agreement by 31 December 2015, you will lose your OTRS access. OTRS volunteers have a specific agreement available, if you have recently signed the general confidentiality agreement for another role (such as CheckUser or Oversight), you do not need to sign the general agreement again, but you will still need to sign the OTRS agreement.
Signing the confidentiality agreement for nonpublic information is conducted and tracked using Legalpad on Phabricator. We have prepared a guide on Meta-Wiki to help you create your Phabricator account and sign the new agreement: Confidentiality agreement for nonpublic information/How to sign
If you have any questions or experience any problems while signing the new agreement, please visit this talk page or email me (gvarnum wikimedia.org). Again, please sign this confidentiality agreement by 31 December 2015 to retain your OTRS access. If you do not wish to retain this access, please let me know and we will forward your request to the appropriate individuals.
Gregory Varnum (User:GVarnum-WMF), Wikimedia Foundation
This is a reminder to acknowledge and sign the new Confidentiality agreement for nonpublic information. As you know, your volunteer role in Wikimedia projects gives you access to secure and sensitive information.
The new version includes one major change.
- There is a change regarding the way personal data may be released. Accordingly, functionaries must notify the Wikimedia Foundation at check-disclosure wikimedia.org before releasing data, in order to obtain a written approval for doing so. The Foundation will respond within 10 days. However, for emergencies, such as cases involving threats of violence, functionaries may release the personal data without such explicit permission, but they should notify the Foundation immediately following the disclosure. If they choose not to disclose the data, the request for disclosure should be forwarded to the Foundation's emergency email address (emergency wikimedia.org).
There are also some wording changes that were made to more closely align the language with evolving industry norms, best practices and laws. The most notable of these has been the change of the term "nonpublic information" to "nonpublic personal data". None of these changes are intended to make fundamental changes to the scope or practice of the policy but we know they could appear as such, hence wanted to flag them.
The aforementioned changes require users that have already signed the previous version of the policy to sign the new version as well.
We therefore ask that you to sign the updated version. Signing the agreement is tracked on Phabricator's Legalpad. An online guide is available to help you with signing the agreement: Confidentiality agreement for nonpublic information/How to sign. If you wish you can sign it directly at https://phabricator.wikimedia.org/L37. The exact policy is located here: Access to nonpublic personal data policy. The text of the confidentiality agreement is located here: Confidentiality agreement for nonpublic information
If you have already received this message and signed the updated agreement, you need not sign it again. Once is sufficient. In this case, we ask that you respond to Samuel (WMF) letting him know when (date) and how (method/process of signing) you have signed it so that we can update our own records.
Note: please bear in mind that if you still haven’t signed the updated version of the Confidentiality Agreement by February 13, 2019 your rights will be removed.
Thank you for your understanding,
Samuel Guebo (User:Samuel (WMF)), Wikimedia Foundation
Posted by the MediaWiki message delivery - 15:15, 11 January 2019 (UTC)