城墙上的哀歌(10)|军备竞赛

阅读本文大约需要: <1 分钟

最近的公号采用秀米(xiumi.us)来排版,本来想谈谈公号排版的“军备竞赛”——过度排版——一种毫无意义的时间和资源消耗,受到一封邮件,通知我应当更新freedom.com上注册的免费域名了。

然后就不知道如何飘到了网络安全和越过防火墙的信息自由问题。最近有两位很好的朋友向我推荐一款安全产品,采用去中心化的区块链技术(或者概念)与网络安全、防火墙等技术结合在一起,据说可以自由的访问所有网络,还可以通过分享带宽和挖矿来产生受益。我也希望借着这个机会感谢朋友们的关心和好意,因为他们都知道我最近许多域名、服务器和网络服务纷纷阵亡。

第一次听说的时候,我的直觉是“既然可以挖矿,这个东西当然是商家让用户付费买矿机,受益大部分归商家的商业模式,附带让你可以访问一些比较难得访问上去的网站。

第二次另一位朋友推荐,我就仔细看了一下产品的商业模式,顺便研究了一下他家的“Privacy Policy”。文字不长,我可以引用部分,并简单评论:

Personal information we collect (个人数据采集)

When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected information as “Device Information”.

We collect Device Information using the following technologies:

– “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.

– “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.

– “Web beacons”, “tags”, and “pixels” are electronic files used to record information about how you browse the Site.

– [[INSERT DESCRIPTIONS OF OTHER TYPES OF TRACKING TECHNOLOGIES USED]]

Additionally when you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers [[INSERT ANY OTHER PAYMENT TYPES ACCEPTED]]), email address, and phone number. We refer to this information as “Order Information”.

[[INSERT ANY OTHER INFORMATION YOU COLLECT: OFFLINE DATA, PURCHASED MARKETING DATA/LISTS]]

When we talk about “Personal Information” in this Privacy Policy, we are talking both about Device Information and Order Information.

注释:这个收集信息条款,动用了cookie,log,web beacons,自动采集用户的浏览器指纹、ip,以及用户的账单信息,名字,信用卡等信息。同时,在上网的时候,自动采集用户访问的网站,搜索的关键字,以及与网站的交互数据。

Sharing you personal Information(个人数据分享)

We share your Personal Information with third parties to help us use your Personal Information, as described above. For example, we use Shopify to power our online store–you can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy. We also use Google Analytics to help us understand how our customers use the Site — you can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.

Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

  1. 分享给在线商店shopify
  2. 分享给google。
  3. 用于合规和政府要求提供数据的情况。

Behavioural advertising (基于用户行为的广告)

As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.

You can opt out of targeted advertising by using the links below:

Facebook: https://www.facebook.com/settings/?tab=adsGoogle: https://www.google.com/settings/ads/anonymousBing: https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads[[INCLUDE OPT-OUT LINKS FROM WHICHEVER SERVICES BEING USED]]

Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.

利用采集到的数据来定投广告。不需要我多说什么了吧。你的搜索引擎会自动显示你可能感兴趣的广告。

Do not track (不要跟踪我!)

Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.

翻译:请注意,即使你修改浏览器设置为“不要跟踪我!”,我们也绝不改变采集你隐私的行为。

Your rights (您的权利)

If you are a European resident, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.

Additionally, if you are a European resident we note that we are processing your information in order to fulfill contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information will be transferred outside of Europe, including to Canada and the United States.

如果你住在欧盟境内,可以申请调出我们的数据,看看我们都存了你什么样的隐私,并要求我们删除。另外,我们用你的数据来完成合同,或者追求我们的商业利益。另外,你的数据可能被转出欧洲,去到别的地方,包括但不限于加拿大和美国。


防火墙的最大危害甚至不是让人访问不了AO3,而是让人误以为越过防火墙成为了唯一的目标和胜利,而忘记了网络安全分为两个部分:

  1. 自由访问信息
  2. 保护自己的隐私

简单说来,这份用户隐私说明书是我看过的最不保护用户隐私的文件了。一个帮助用户访问所有敏感网站的安全产品采用这样的隐私保护政策,我大概是不太敢用的。就算他家兑现所有上述承诺,也很难保证不被黑客攻击,将所有信息全部拿走。

至少目前,这个产品甚至不会进入我的备选和备份应急手段,即使它可以非常方便透明地将家里的路由器变为翻墙路由器。

Tags:

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.