TUM and Privacy
Tapir User Manager (TUM) is a web toolkit the with privacy implications common to commercial internet sites. Any site based on TUM should have a privacy policy -- the default statement (visible here if it hasn't been changed) is almost certainly not what you want. This document describes of the technical capabilities of TUM -- the operator of a particular site is responsible for how the data it collects is used, and should replace the default statement with something appropriate.
A TUM-based site, like most web sites, logs the IP address and time for each file and page requested. TUM-based sites also record http referer headers: if a user follows a hyperlink to the site, we can usually record the URL the user came from using. Sometimes this can reveal sensitive information.
For every access, a TUM-based site places a unique cookie in each visitor's browser, so that it can correlate repeat visits. This cookie, however, cannot be linked to any personal information about you, such as your e-mail address, unless the visitor volunteers such information. Tools exist to block cookies, and newer web browsers let visitors block cookies, but at most web sites, less than 1% of human visitors block cookies.
Some web sites are members of advertising networks such as DoubleClick and the Link Exchange Network. Advertising networks use "third-party cookies" to track users as they visit different sites in the network and use this information to compile user profiles. In such a situation, a page on site A includes an inline image (or other multimedia file) on site B, which places a cookie on a visitor's browser. Third-party cookies are more controversial than first-party cookies, because third- party cookies allow a web operator to collect information from a wide variety of sites. TUM is intended to create primarily first-party cookies, however, it will place third-party cookies if the operators of an external site include inline images (<IMG SRC>) from a TUM site.
A TUM-based site may request personal information about vistors, on a voluntary basis or as a condition for access to particular services. Its privacy statement should describe what it does with this information: Will it be made available to other visitors of the site? Under what conditions? Will it be sold or otherwise distributed to third parties? Under what circumstances will it be used to send e-mail? What happens if the site goes out of business and its assets are sold?
The operators of TUM-based sites should note that this is more than a matter of providing "warm fuzzies" to your audience. Web users often refuse to provide information (which could be critical to the success of a site) if they feel their privacy is unduly violated.
If law enforcement officials obtain a court order, the operators of any web site can be forced to reveal information about its visitors, or otherwise face a jail sentence. Information can also be stolen by third parties through electronic attacks, bribing employees, and other methods of industrial espionage. The only absolutely safe way to protect information is to not store it. Children's sites that operate in the US are subject to federal regulation.
Resources:
Beyond Concern: Understanding Net Users' Attitudes About Online Privacy
Electronic Privacy Information Center
Tapir User Manager is © 2000 Honeylocust Media
Systems