On Wed, Nov 22, 2006 at 18:45:26 +0000, Alan <alan@xxxxxxxxxxxxxxxxxxx> wrote: > > It doesn't need to be opt-out or opt-in. To follow good data protection > practice it does need the users permission, and ideally it should show > what will be sent/stored to the user before they decide. If at all > possible nothing counting as personal data should be stored/processed > (and that can include IP addresses). > > So I'd suggest a basic design would have to look something like this I like the approach you suggest below, but I have comments on the UUID mentioned in the example. Unless there is going to be some followup later I don't see how it would be useful. If it is being sent, then it should be displayed with the other information being sent. > > During install > generate 128bit UUID > Generate summary of hardware/other interesting data > > Present the user with a firstboot screen that says > > [] Send the following information to fedora for use in > anonymous analysis to improve the distribution. Your email > address and personal data will be not be sent. Your IP address > will not be stored > > - List of PCI device identifiers present > - CPU type > - Memory Size > - Disk size/type > [View Information To Be Sent] > > [] Count this machine but send no information about it > > [] Do not count this machine
