Privacy Policy

Last updated: 2024-10-29

Introduction

At OpenSSL Software Services Inc. (hereafter referred to as “OpenSSL”), we prioritize your privacy and are committed to protecting your personal information. When we say “Service,” we mean openssl-communities.org maintained by OpenSSL Software Services Inc., accessible via web browsers, desktop applications, mobile applications, or any other format.
This policy outlines how we collect, use, and safeguard your data when you engage with the Service.

Information We Collect

When you interact with OpenSSL, we collect the following types of information:

Personal Information: This includes your name and email address, which you provide to us voluntarily when signing up or contacting us. You have the option to upload a profile picture.
Usage Data: We collect information about how you access and use the service. We also collect and preserve all communication related to your interactions with the service, including any content shared or exchanged. This may include your IP address, browser type, pages visited, and the time and date of your visits.
Location Data: We log all account access by IP address, along with the corresponding location derived from the IP address, to ensure we can effectively verify that no unauthorized access has occurred.
Anti-bot Measures: We employ CAPTCHA services in the service to prevent brute force logins and spam. This helps us protect our platforms and the broader Internet community from credential stuffing attacks.
Cookies and Tracking Technologies: We use cookies and similar tracking technologies to enhance user experience. You can manage your cookie preferences through your browser settings.

User Content and Personally Identifiable Information

As a platform for discussion and decision-making, we store and process user-generated content, including discussions, comments, proposals, files, and images.
We also manage your user profile, which includes your name, email address, and profile photo. This information may identify you personally.
When you join a group, your user profile and any content you create or upload will be visible to that group’s members. Your email address will only be accessible to group administrators.
If you participate in a public discussion or join a public group, your profile information may be publicly accessible on the Internet.
You can view or update your personal information anytime through the “edit profile” page. If you choose to delete your user account, this action will permanently remove your profile information, including your name, email address, user ID, and other personally identifiable data from our systems. While your comments, proposals, and discussions will remain, your name will be removed from them, and you will no longer be listed as a member of any groups.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy. We may retain usage data for analysis purposes, but this data will be anonymized whenever possible.

We may share your information with our non-profit entity, the OpenSSL Software Foundation, as openssl-communities.org functions as a shared platform for governance and community engagement across OpenSSL projects. This collaboration enables us to facilitate communication better and support the OpenSSL mission. Any data shared will comply with applicable laws and remain consistent with the commitments in this privacy policy. The OpenSSL Software Foundation upholds all the obligations outlined here.

Data Security

OpenSSL takes the security of your personal information seriously. We implement reasonable measures to protect your data from unauthorized access, disclosure, or destruction. However, no method of transmission over the Internet or electronic storage is entirely secure, and we cannot guarantee its absolute security.

Your Rights Regarding Your Information

At OpenSSL, we uphold the same data rights for all customers, regardless of location. We recognize the importance of privacy regulations, notably the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We honor the rights granted under these laws, subject to applicable legal limitations.

Deleting your user account

If you decide to delete your user account, we will remove your user profile, including your user ID, name, email address, profile photo, and any other personally identifiable information. However, your communication history (such as comments and votes) will be retained to maintain the integrity of discussions and decisions within your groups.
If you want comments or other data deleted from a group, please contact the group administrator to request deletion of that data.
OpenSSL may also delete user data upon request from law enforcement or if there are concerns about personal safety.

Location of Site and Data

We operate openssl-communities.org in the European Union. If you access the service, please be aware that any information you provide will be transferred to and stored in the region where the service is located. By using the service, participating in any activities, or providing your information, you consent to this transfer.

Changes to This Policy

We may update this privacy policy occasionally. Any changes will be communicated to you through our website or via email. We encourage you to review this policy periodically for any updates.

Contact Us

If you have any questions or concerns about this privacy policy or our data practices, please contact us at [email protected].