From d749cf93a0ceb5939f0b04896c6d7b9645e093d8 Mon Sep 17 00:00:00 2001 From: Jonah Aragon Date: Thu, 26 Feb 2026 12:07:33 -0600 Subject: [PATCH] Fix all emoji lists & some formatting --- docs/activism/about.md | 1 + .../tip-beware-of-privacy-snake-oil.md | 80 ++++++++--- .../tip-engage-boosts-and-contribute.md | 30 ++-- .../tip-give-credit-where-credit-is-due.md | 26 ++-- ...l-media-and-build-resilient-communities.md | 22 ++- .../tip-keep-in-mind-the-whole-landscape.md | 24 +++- ...keep-your-posts-and-community-inclusive.md | 34 +++-- .../toolbox/tip-know-your-privacy-laws.md | 40 ++++-- .../tip-level-up-assemble-and-organize.md | 32 +++-- .../toolbox/tip-lift-your-allies-up.md | 24 +++- docs/activism/toolbox/tip-make-it-cute.md | 22 ++- ...rate-outside-the-surveillance-ecosystem.md | 88 +++++++----- .../toolbox/tip-protect-your-allies.md | 13 ++ .../toolbox/tip-refuse-to-participate.md | 38 +++-- .../toolbox/tip-report-privacy-violations.md | 134 +++++++++++------- .../toolbox/tip-small-actions-matter.md | 32 +++-- .../toolbox/tip-start-alliances-not-wars.md | 66 ++++----- .../activism/toolbox/tip-take-time-to-rest.md | 38 +++-- .../activism/toolbox/tip-welcome-beginners.md | 24 +++- includes/abbreviations.en.txt | 1 + 20 files changed, 506 insertions(+), 263 deletions(-) diff --git a/docs/activism/about.md b/docs/activism/about.md index 3bb24d09..d76f7212 100644 --- a/docs/activism/about.md +++ b/docs/activism/about.md @@ -4,6 +4,7 @@ meta_title: "Guides for Privacy Activists" description: Privacy Guides' Activism section contains tools to support the community in its privacy advocacy and activism effort, both for individuals and organizations. hide: - toc + - footer cover: activism/banner-activism.webp --- **Privacy Guides' Activism section offers a new way to empower the digital rights community.** diff --git a/docs/activism/toolbox/tip-beware-of-privacy-snake-oil.md b/docs/activism/toolbox/tip-beware-of-privacy-snake-oil.md index a53ad16b..ceff484e 100644 --- a/docs/activism/toolbox/tip-beware-of-privacy-snake-oil.md +++ b/docs/activism/toolbox/tip-beware-of-privacy-snake-oil.md @@ -14,9 +14,9 @@ Regrettably, it's quite common to see businesses using privacy promises only as Many businesses want to have their cake and eat it too, by attracting users with false promises of privacy all the while exploiting their data for profit. Other times, failure to meet privacy promises simply comes from incompetence or negligence. -Misleadingly, or fraudulently, presenting a product, service, or organization as being responsible and trustworthy with data privacy when it isn't is called *privacy washing*. +Misleadingly, or fraudulently, presenting a product, service, or organization as being responsible and trustworthy with data privacy when it isn't is called [privacy washing](https://www.privacyguides.org/articles/2025/08/20/privacy-washing-is-a-dirty-business/). -There are many things you can learn to **become more resistant to privacy washing**, and become better at using and recommending genuinely privacy-preserving technologies. +There are many things you can learn to become more resistant to privacy washing, and become better at using and recommending genuinely privacy-preserving technologies. ## How to spot privacy snake oil @@ -24,25 +24,45 @@ Unless it comes from a professional privacy source you have a high degree of tru Here are some red flags you should always keep in mind when evaluating a privacy tool, service, or organization: -
+ -:triangular_flag_on_post: [**Conflict of interest**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#conflict-of-interest): Is the source telling you this product is trustworthy independent of the company or parent-company that owns this product? +
-:triangular_flag_on_post: [**Biased reviews**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#fake-reviews): Is the review recommending this product truly independent, or has it received sponsorship money? Was the review AI-generated? +- [**Conflict of interest**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#conflict-of-interest): Is the source telling you this product is trustworthy independent of the company or parent-company that owns this product? -:triangular_flag_on_post: [**Meaningless attestations**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#meaningless-privacy-compliance-badges): Are claims of privacy law compliance or trustworthiness supported by external sources, or do they only come from the organization itself? +- [**Biased reviews**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#fake-reviews): Is the review recommending this product truly independent, or has it received sponsorship money? Was the review AI-generated? -:triangular_flag_on_post: [**Buzzword language**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#buzzword-language): Is the advertising and description of the product using a lot of privacy buzzwords like "military-grade encryption" or "AI-powered"? +- [**Meaningless attestations**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#meaningless-privacy-compliance-badges): Are claims of privacy law compliance or trustworthiness supported by external sources, or do they only come from the organization itself? -:triangular_flag_on_post: [**Unsupported claims**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#checkbox-compliance-and-copy-paste-policies): Are the claims supported by documentation and detailed descriptions? It's not enough to write "end-to-end encrypted." This claim should be supported by a detailed account of *how* the data is end-to-end encrypted, and using which protocols and algorithms. +- [**Buzzword language**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#buzzword-language): Is the advertising and description of the product using a lot of privacy buzzwords like "military-grade encryption" or "AI-powered"? -:triangular_flag_on_post: [**Unrealistic claims**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#unverifiable-and-unrealistic-promises): Are the privacy claims being made realistic? Nothing can be 100% private or 100% secure. A trustworthy product will give you reasonable warnings about its limitations. +- [**Unsupported claims**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#checkbox-compliance-and-copy-paste-policies): Are the claims supported by documentation and detailed descriptions? It's not enough to write "end-to-end encrypted." This claim should be supported by a detailed account of *how* the data is end-to-end encrypted, and using which protocols and algorithms. -:triangular_flag_on_post: [**Lack of deletion process**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#flawed-or-absent-process-for-data-deletion): Is this product or service offering a clear process to delete user's data upon request? How much and how quickly could you delete your data if you wanted to stop using this service tomorrow? +- [**Unrealistic claims**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#unverifiable-and-unrealistic-promises): Are the privacy claims being made realistic? Nothing can be 100% private or 100% secure. A trustworthy product will give you reasonable warnings about its limitations. -:triangular_flag_on_post: [**Untested technologies**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#new-and-untested-technologies): Has this technology been tested by experts before? Are there any external actors who have verified its claims? +- [**Lack of deletion process**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#flawed-or-absent-process-for-data-deletion): Is this product or service offering a clear process to delete user's data upon request? How much and how quickly could you delete your data if you wanted to stop using this service tomorrow? -:triangular_flag_on_post: [**Bad reputation**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#critics-from-experts): What are privacy and security experts saying about this product or organization? Was the product or organization subjected to multiple critics from privacy experts? Was the organization impacted by important data breaches? +- [**Untested technologies**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#new-and-untested-technologies): Has this technology been tested by experts before? Are there any external actors who have verified its claims? + +- [**Bad reputation**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#critics-from-experts): What are privacy and security experts saying about this product or organization? Was the product or organization subjected to multiple critics from privacy experts? Was the organization impacted by important data breaches?
@@ -54,21 +74,41 @@ Things can change quickly in the tech world, and we must all be prepared to revo That being said, here are some green flags you can keep in mind when evaluating a privacy tool, service, or organization: -
+ -:custom-green-flag: [**Good reputation**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#reputation-history): What are privacy and security experts saying about this product or organization? Does the product or organization have a good reputation within the field? +
-:custom-green-flag: [**Access to evidence**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#verifiable-claims): Are you able to verify the privacy claims from independent sources that aren't related to the business itself? +- [**Good reputation**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#reputation-history): What are privacy and security experts saying about this product or organization? Does the product or organization have a good reputation within the field? -:custom-green-flag: [**Independent review**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#independent-reviews): Was the product reviewed by an independent third-party who had significant access to test the product in a meaningful way? +- [**Access to evidence**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#verifiable-claims): Are you able to verify the privacy claims from independent sources that aren't related to the business itself? -:custom-green-flag: [**Transparency**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#transparency): Can you easily find detailed information about what data this organization collects, and how it processes and shares it? Would an independent expert have access to its software code to inspect it? +- [**Independent review**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#independent-reviews): Was the product reviewed by an independent third-party who had significant access to test the product in a meaningful way? -:custom-green-flag: [**Clear funding model**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#clear-funding-model): How does this organization make money? If it's free to use, does this organization rely on donations or grants? Is the product sold to users or to businesses? Where does the money come from? +- [**Transparency**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#transparency): Can you easily find detailed information about what data this organization collects, and how it processes and shares it? Would an independent expert have access to its software code to inspect it? -:custom-green-flag: [**Availability**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#availability): Could you easily contact this organization if you needed to? Can you find an email address dedicated to privacy requests and questions? Can you find where the organization is located? Would you have access to at least two different ways to contact it? +- [**Clear funding model**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#clear-funding-model): How does this organization make money? If it's free to use, does this organization rely on donations or grants? Is the product sold to users or to businesses? Where does the money come from? -:custom-green-flag: [**Expert recommendation**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#expert-advice): Is this product recommended by independent privacy experts and digital rights nonprofit organizations? +- [**Availability**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#availability): Could you easily contact this organization if you needed to? Can you find an email address dedicated to privacy requests and questions? Can you find where the organization is located? Would you have access to at least two different ways to contact it? + +- [**Expert recommendation**](https://www.privacyguides.org/articles/2025/09/03/red-and-green-privacy-flags/#expert-advice): Is this product recommended by independent privacy experts and digital rights nonprofit organizations?
diff --git a/docs/activism/toolbox/tip-engage-boosts-and-contribute.md b/docs/activism/toolbox/tip-engage-boosts-and-contribute.md index d100738b..d0d1363b 100644 --- a/docs/activism/toolbox/tip-engage-boosts-and-contribute.md +++ b/docs/activism/toolbox/tip-engage-boosts-and-contribute.md @@ -45,25 +45,35 @@ Ask yourself these questions: Here are some ideas of things you can do to become a privacy activist in your community, and a valuable member of the privacy rights movement: -
+ -๐Ÿš€  [Spread the words of your allies.](tip-lift-your-allies-up.md) Repost social media campaigns from digital rights organizations you like, and write about it on your own platforms. Encourage people to participate if there is a call to action. +
-โœ๏ธ  Write about the privacy issues you care about. Inform the public with accurate information and effective ways of action to push back against invasive technologies and legislations. This can be through your social networks, personal blog, or even a book! +- [Spread the words of your allies.](tip-lift-your-allies-up.md) Repost social media campaigns from digital rights organizations you like, and write about it on your own platforms. Encourage people to participate if there is a call to action. -๐Ÿ’ช  [Participate](tip-small-actions-matter.md) in the actions organized by others. Reply positively to social media posts related to privacy rights, repost the content of your allies, sign petitions, report violations, join an online forum, and contact your representatives about privacy rights in your region of the world. +- Write about the privacy issues you care about. Inform the public with accurate information and effective ways of action to push back against invasive technologies and legislations. This can be through your social networks, personal blog, or even a book! -๐Ÿ™…  [Refuse](tip-refuse-to-participate.md) to participate in privacy-invasive requests, and refuse to use privacy-invasive technologies as much as doable for your situation. Sometimes doing nothing can be a powerful action. Try to prioritize your privacy principles over [convenience](https://www.privacyguides.org/articles/2025/06/07/selling-surveillance-as-convenience/), and report on your refusal experiences on social networks and with your local communities. +- [Participate](tip-small-actions-matter.md) in the actions organized by others. Reply positively to social media posts related to privacy rights, repost the content of your allies, sign petitions, report violations, join an online forum, and contact your representatives about privacy rights in your region of the world. -๐Ÿ™Œ  [Join or build communities](https://discuss.privacyguides.net/) with people sharing your privacy values. Be a positive contributor and lift your allies up. [Support your privacy comrades](tip-support-your-privacy-comrades.md) and [ask for help](tip-take-time-to-rest.md) when you need it yourself. Look for nonprofit organizations [seeking volunteers](../../about/contributors.md). +- [Refuse](tip-refuse-to-participate.md) to participate in privacy-invasive requests, and refuse to use privacy-invasive technologies as much as doable for your situation. Sometimes doing nothing can be a powerful action. Try to prioritize your privacy principles over [convenience](https://www.privacyguides.org/articles/2025/06/07/selling-surveillance-as-convenience/), and report on your refusal experiences on social networks and with your local communities. -๐Ÿ’ต  [Contribute financially](../../about/donate.md) if you can. If you cannot afford to participate in time, consider donating money. There are many digital rights nonprofit organizations that could do *so much more* if only they had more funding. Offering financial support when you can is a meaningful way to contribute to the privacy rights movement. +- [Join or build communities](https://discuss.privacyguides.net/) with people sharing your privacy values. Be a positive contributor and lift your allies up. [Support your privacy comrades](tip-support-your-privacy-comrades.md) and [ask for help](tip-take-time-to-rest.md) when you need it yourself. Look for nonprofit organizations [seeking volunteers](../../about/contributors.md). -๐Ÿ“  Go to local meetups related to privacy and digital rights. Meet people who share your values in-person, and grow your network to find allies in your area. +- [Contribute financially](../../about/donate.md) if you can. If you cannot afford to participate in time, consider donating money. There are many digital rights nonprofit organizations that could do *so much more* if only they had more funding. Offering financial support when you can is a meaningful way to contribute to the privacy rights movement. -โœŠ  Take part in digital rights protests that support causes and raise awareness on privacy issues you care about. Actively look online for events to join in your local privacy rights community. +- Go to local meetups related to privacy and digital rights. Meet people who share your values in-person, and grow your network to find allies in your area. -๐Ÿ’›  Invite others to join you in the movement to defend privacy rights! +- Take part in digital rights protests that support causes and raise awareness on privacy issues you care about. Actively look online for events to join in your local privacy rights community. + +- Invite others to join you in the movement to defend privacy rights!
diff --git a/docs/activism/toolbox/tip-give-credit-where-credit-is-due.md b/docs/activism/toolbox/tip-give-credit-where-credit-is-due.md index 471e0633..9ea01dbb 100644 --- a/docs/activism/toolbox/tip-give-credit-where-credit-is-due.md +++ b/docs/activism/toolbox/tip-give-credit-where-credit-is-due.md @@ -18,21 +18,31 @@ When giving credit to organizations, you are also making a whole team feel value ## Ways to credit your allies in your advocacy work -
+ -๐Ÿ’ฌ  Quote your allies' work in your own content and material. Make sure to always credit their name and link to their external resources when you do. +
-๐Ÿ”—  Link to your allies' resources on your own platforms. Give them credit for their work, and encourage your own audience to consult your allies' material. +- Quote your allies' work in your own content and material. Make sure to always credit their name and link to their external resources when you do. -๐Ÿ‘  Support your allies publicly on social media. Repost their content to increase their reach. Post about them while tagging them, to encourage your circle to follow them as well. Reply to their posts thanking them for their hard work for the cause. +- Link to your allies' resources on your own platforms. Give them credit for their work, and encourage your own audience to consult your allies' material. -๐Ÿ™Œ  Reach out to offer your help on their projects, whenever you have the resources to do so. +- Support your allies publicly on social media. Repost their content to increase their reach. Post about them while tagging them, to encourage your circle to follow them as well. Reply to their posts thanking them for their hard work for the cause. -๐Ÿ’›  When working with a group, make sure that each contributor is publicly thanked for their work, whether it's paid or volunteer work. Make the members of your group feel recognized and valued individually. +- Reach out to offer your help on their projects, whenever you have the resources to do so. -๐Ÿ˜Š  Depending on the platforms you use, make sure to attribute the work of each contributor to the name they have agreed to share publicly. Ask first how they prefer to be credited, but do not forget to credit them. +- When working with a group, make sure that each contributor is publicly thanked for their work, whether it's paid or volunteer work. Make the members of your group feel recognized and valued individually. -๐Ÿ†  When there are opportunities to nominate your allies for a reward, make sure to add your vote to support them. +- Depending on the platforms you use, make sure to attribute the work of each contributor to the name they have agreed to share publicly. Ask first how they prefer to be credited, but do not forget to credit them. + +- When there are opportunities to nominate your allies for a reward, make sure to add your vote to support them.
diff --git a/docs/activism/toolbox/tip-improve-your-social-media-and-build-resilient-communities.md b/docs/activism/toolbox/tip-improve-your-social-media-and-build-resilient-communities.md index c4dc188e..7435fd46 100644 --- a/docs/activism/toolbox/tip-improve-your-social-media-and-build-resilient-communities.md +++ b/docs/activism/toolbox/tip-improve-your-social-media-and-build-resilient-communities.md @@ -54,17 +54,27 @@ There are many applications that can connect to the Fediverse, the most famous p Here are some resources to help you learn more about this social network, and its many applications: -
+ -๐ŸŽž๏ธ [Learn why the Fediverse is a better alternative (Elena Rossini video)](https://blog.elenarossini.com/fediverse-video/) +
-โ“ [What is the Fediverse and how it's interconnected (Stefan Bohacek project)](https://jointhefediverse.net) +- [Learn why the Fediverse is a better alternative (Elena Rossini video)](https://blog.elenarossini.com/fediverse-video/) -๐Ÿ’› [Social network recommendations (Privacy Guides)](../../social-networks.md) +- [What is the Fediverse and how it's interconnected (Stefan Bohacek project)](https://jointhefediverse.net) -๐Ÿ”’ [Privacy and security on Mastodon (Privacy Guides)](https://www.privacyguides.org/articles/2025/07/15/mastodon-privacy-and-security/) +- [Social network recommendations (Privacy Guides)](../../social-networks.md) -๐Ÿ˜ [How to create a Mastodon account (Doc Pop guide)](https://docpop.org/2025/02/how-to-get-started-with-mastodon/) +- [Privacy and security on Mastodon (Privacy Guides)](https://www.privacyguides.org/articles/2025/07/15/mastodon-privacy-and-security/) + +- [How to create a Mastodon account (Doc Pop guide)](https://docpop.org/2025/02/how-to-get-started-with-mastodon/)
diff --git a/docs/activism/toolbox/tip-keep-in-mind-the-whole-landscape.md b/docs/activism/toolbox/tip-keep-in-mind-the-whole-landscape.md index d4c8d65b..0787d6af 100644 --- a/docs/activism/toolbox/tip-keep-in-mind-the-whole-landscape.md +++ b/docs/activism/toolbox/tip-keep-in-mind-the-whole-landscape.md @@ -24,19 +24,29 @@ If we want to fight for privacy rights, we must take a much stronger and louder Here are a few examples: -
+ -๐Ÿง‘โ€โš–๏ธ  [**Bad Internet Bills**](https://www.privacyguides.org/videos/2025/12/16/taylor-lorenz-on-kosa-the-screen-act-and-repealing-section-230/) have been proposed in 2025 to undermine the privacy of all Americans, and everyone around the world using American technologies. +
-๐Ÿ’ฌ  [**Chat Control**](https://www.privacyguides.org/articles/2025/09/08/chat-control-must-be-stopped/) proposals have been an ongoing issue since 2021. +- [**Bad Internet Bills**](https://www.privacyguides.org/videos/2025/12/16/taylor-lorenz-on-kosa-the-screen-act-and-repealing-section-230/) have been proposed in 2025 to undermine the privacy of all Americans, and everyone around the world using American technologies. -๐Ÿชช  [**Age Verification**](https://www.privacyguides.org/articles/2025/05/06/age-verification-wants-your-face/) regulations and proposals are growing around the world at an exponential rate. +- [**Chat Control**](https://www.privacyguides.org/articles/2025/09/08/chat-control-must-be-stopped/) proposals have been an ongoing issue since 2021. -๐Ÿ‘๏ธโ€๐Ÿ—จ๏ธ  [**Data Brokers**](https://www.privacyguides.org/videos/2025/10/28/data-brokers-know-everything-about-you/) are incessantly exploiting our data due to weak regulations. +- [**Age Verification**](https://www.privacyguides.org/articles/2025/05/06/age-verification-wants-your-face/) regulations and proposals are growing around the world at an exponential rate. -๐Ÿ’ฐ  [**Funding cuts**](https://www.privacyguides.org/articles/2025/02/03/the-future-of-privacy/) from new regulations have frequently impacted negatively the organizations and privacy tools we rely on. +- [**Data Brokers**](https://www.privacyguides.org/videos/2025/10/28/data-brokers-know-everything-about-you/) are incessantly exploiting our data due to weak regulations. -๐Ÿ”“  [**Attacks on encryption**](https://www.privacyguides.org/articles/2025/04/11/encryption-is-not-a-crime/) have been carried on by [multiple](https://www.privacyguides.org/articles/2025/02/28/uk-forced-apple-to-remove-adp/) governments around the world, [*for decades*](https://www.privacyguides.org/videos/2025/05/08/when-code-became-a-weapon/). +- [**Funding cuts**](https://www.privacyguides.org/articles/2025/02/03/the-future-of-privacy/) from new regulations have frequently impacted negatively the organizations and privacy tools we rely on. + +- [**Attacks on encryption**](https://www.privacyguides.org/articles/2025/04/11/encryption-is-not-a-crime/) have been carried on by [multiple](https://www.privacyguides.org/articles/2025/02/28/uk-forced-apple-to-remove-adp/) governments around the world, [*for decades*](https://www.privacyguides.org/videos/2025/05/08/when-code-became-a-weapon/).
diff --git a/docs/activism/toolbox/tip-keep-your-posts-and-community-inclusive.md b/docs/activism/toolbox/tip-keep-your-posts-and-community-inclusive.md index c66d502d..c902ad1d 100644 --- a/docs/activism/toolbox/tip-keep-your-posts-and-community-inclusive.md +++ b/docs/activism/toolbox/tip-keep-your-posts-and-community-inclusive.md @@ -36,29 +36,39 @@ To counter this bias, we must actively and continuously examine our own behavior There are many things you can do to keep your community inclusive and diverse. Here are a few easy tips you can start implementing right now in your privacy advocacy practice, to make more people feel safe and welcomed: -
+ -๐Ÿ—ฃ๏ธ  **Keep your language inclusive:** Make sure to keep the door wide opened in your communications. Be mindful of the language you use to make newcomers from all origins feel like they could belong in your community. Limit the use of technical jargon, regionalisms, and unnecessarily gendered language. +
-๐Ÿ‘ค  **Listen to others:** Listen to people with experiences and identities different from yours, and try to genuinely understand their perspectives. If they don't feel safe sharing, make sure the space is safe enough for them to do so. Regularly reach out to them to ask questions, while not pressuring them to give answers if they prefer not to. +- **Keep your language inclusive:** Make sure to keep the door wide opened in your communications. Be mindful of the language you use to make newcomers from all origins feel like they could belong in your community. Limit the use of technical jargon, regionalisms, and unnecessarily gendered language. -๐Ÿท๏ธ  **Ask people their preferred name(s):** Always ask people how they want something attributed to them (or not), and what their preferred public name is before publishing it anywhere. Never assume someone is comfortable sharing their legal name publicly, and never assume someone is comfortable using publicly the name they use privately. This is doubly important for any transgender or gender diverse persons, but it's also true for anyone who might have privacy concerns. Always ask for consent first. +- **Listen to others:** Listen to people with experiences and identities different from yours, and try to genuinely understand their perspectives. If they don't feel safe sharing, make sure the space is safe enough for them to do so. Regularly reach out to them to ask questions, while not pressuring them to give answers if they prefer not to. -๐Ÿณ๏ธโ€๐ŸŒˆ  **Normalize the use of pronouns:** If you are in a leadership position, it's especially important to lead by example and display your preferred pronouns in your social media profiles, email signatures, and other relevant contexts. Encourage everyone on your team or in your group to do the same. This helps to normalize the practice, and makes a clear statement that your community is inclusive and welcoming to transgender and gender diverse people. +- **Ask people their preferred name(s):** Always ask people how they want something attributed to them (or not), and what their preferred public name is before publishing it anywhere. Never assume someone is comfortable sharing their legal name publicly, and never assume someone is comfortable using publicly the name they use privately. This is doubly important for any transgender or gender diverse persons, but it's also true for anyone who might have privacy concerns. Always ask for consent first. -๐Ÿ‘  **Give credit:** Make sure to appropriately [give credit](tip-give-credit-where-credit-is-due.md) where credit is due, and make people feel supported and seen. Recognition and appreciation are fundamental to inclusion. +- **Normalize the use of pronouns:** If you are in a leadership position, it's especially important to lead by example and display your preferred pronouns in your social media profiles, email signatures, and other relevant contexts. Encourage everyone on your team or in your group to do the same. This helps to normalize the practice, and makes a clear statement that your community is inclusive and welcoming to transgender and gender diverse people. -โ™ฟ๏ธ  **Prioritize accessibility:** [Accessibility](tip-be-mindful-of-accessibility.md) should never be an afterthought, it should be designed in your content and events right from the start. Make sure that your website or software follows [accessibility standards](https://www.w3.org/WAI/standards-guidelines/wcag/), uses [alt text](https://webaim.org/techniques/alttext/) everywhere you can, and ensure that your [in-person events](https://parkpeople.ca/make-your-event-accessible-and-inclusive/) are accessible and enjoyable for everyone. Reach out to people experiencing disabilities to ask how you could improve accessibility for your content and events. +- **Give credit:** Make sure to appropriately [give credit](tip-give-credit-where-credit-is-due.md) where credit is due, and make people feel supported and seen. Recognition and appreciation are fundamental to inclusion. -๐Ÿ’›  **Moderate your community:** To keep your spaces inclusive, it's important to remove bad actors promptly. This is critical if you host a platform where people exchange together such as a forum, but it's also true for replies to your social media posts, your Signal groups, or your in-person gatherings. Whenever you become aware of a reply or answer that is abusive or bigoted, make sure to intervene quickly. If you neglect to moderate the community you are responsible for adequately, marginalized people targeted by these attacks will leave your community, and bad actors will prosper and multiply. +- **Prioritize accessibility:** [Accessibility](tip-be-mindful-of-accessibility.md) should never be an afterthought, it should be designed in your content and events right from the start. Make sure that your website or software follows [accessibility standards](https://www.w3.org/WAI/standards-guidelines/wcag/), uses [alt text](https://webaim.org/techniques/alttext/) everywhere you can, and ensure that your [in-person events](https://parkpeople.ca/make-your-event-accessible-and-inclusive/) are accessible and enjoyable for everyone. Reach out to people experiencing disabilities to ask how you could improve accessibility for your content and events. -๐Ÿ“†  **Observe special days:** Make sure that your group observes or celebrates special days that are relevant to members in your community. For example, people might have different religious celebrations that are important to them. Make sure you mention these celebrations, and give your members the time they need to observe them. Celebrating special days and months such as Pride Month, Black History Month, National Day for Truth and Reconciliation, and International Women's Day are also important events to acknowledge in your community. +- **Moderate your community:** To keep your spaces inclusive, it's important to remove bad actors promptly. This is critical if you host a platform where people exchange together such as a forum, but it's also true for replies to your social media posts, your Signal groups, or your in-person gatherings. Whenever you become aware of a reply or answer that is abusive or bigoted, make sure to intervene quickly. If you neglect to moderate the community you are responsible for adequately, marginalized people targeted by these attacks will leave your community, and bad actors will prosper and multiply. -๐Ÿ™Œ  **Representation:** Pay special attention to the diversity of representation within your group, especially for people in positions of power. For your community to be inclusive, it's important for members to see that diverse people can access leadership, and to feel like your community leaders are aware of a diversity of experiences. +- **Observe special days:** Make sure that your group observes or celebrates special days that are relevant to members in your community. For example, people might have different religious celebrations that are important to them. Make sure you mention these celebrations, and give your members the time they need to observe them. Celebrating special days and months such as Pride Month, Black History Month, National Day for Truth and Reconciliation, and International Women's Day are also important events to acknowledge in your community. -โ›”๏ธ  **Be mindful of invisible barriers:** If you find your community to be quite homogeneous, take the time to think about what might keep people from different identities and origins to join your group. Perhaps there are some invisible barriers that you could identify and reduce, in order to make your group more inclusive and welcoming. If there are already a few members with diverse identities in your group, try to reach out to them for feedback on ways to improve inclusivity in your community. +- **Representation:** Pay special attention to the diversity of representation within your group, especially for people in positions of power. For your community to be inclusive, it's important for members to see that diverse people can access leadership, and to feel like your community leaders are aware of a diversity of experiences. -๐Ÿ’ฌ  **Ask for feedback:** Regularly ask the members of your community and people from diverse groups what you could do to improve inclusivity. Genuinely listen, and be careful not to answer defensively if you receive negative criticism. Stay open and keep in mind that constructive feedback is important to make your group more inclusive and more diverse. +- **Be mindful of invisible barriers:** If you find your community to be quite homogeneous, take the time to think about what might keep people from different identities and origins to join your group. Perhaps there are some invisible barriers that you could identify and reduce, in order to make your group more inclusive and welcoming. If there are already a few members with diverse identities in your group, try to reach out to them for feedback on ways to improve inclusivity in your community. + +- **Ask for feedback:** Regularly ask the members of your community and people from diverse groups what you could do to improve inclusivity. Genuinely listen, and be careful not to answer defensively if you receive negative criticism. Stay open and keep in mind that constructive feedback is important to make your group more inclusive and more diverse.
diff --git a/docs/activism/toolbox/tip-know-your-privacy-laws.md b/docs/activism/toolbox/tip-know-your-privacy-laws.md index 9158284d..f8aa4d96 100644 --- a/docs/activism/toolbox/tip-know-your-privacy-laws.md +++ b/docs/activism/toolbox/tip-know-your-privacy-laws.md @@ -4,7 +4,7 @@ description: Being well-informed about the data protection regulations in your o icon: fontawesome/solid/balance-scale cover: activism/banner-toolbox-tip-laws.webp --- -Being well-informed about the data protection regulations in your own jurisdiction can be a significant asset for your personal and collective battles to improve privacy, for yourself and for others. +Being well-informed about the **data protection regulations** in your own jurisdiction can be a significant asset for your personal and collective battles to improve privacy, for yourself and for others. Unfortunately, many people lucky enough to live in jurisdictions benefiting from such regulations often aren't aware of them, or of how to use them. @@ -12,9 +12,9 @@ Here's what to look for when searching information about your local privacy laws ## Where is the data subject -For most privacy regulations, legal protections will be applicable to data subjects who are citizens or reside in a specific region or country. +For most privacy regulations, legal protections will be applicable to **data subjects** who are citizens or reside in a specific region or country. -
+

What is a data subject?

Different laws might use different terms for this. Sometimes, a regulation might simply refer to a *person*, an *individual*, a *consumer*, a *patient*, or a *customer*. Other times, the equivalent expression used will be a *data subject*. A data subject is simply anyone from whom personal information is collected by an organization. Data subject will be used as an umbrella term on this page. @@ -23,15 +23,15 @@ Different laws might use different terms for this. Sometimes, a regulation might Contrary to what many believe, it's generally *your* local regulations that protect you, regardless of where the organization collecting your personal data is located (in addition, organizations are also subjected to their own local regulations). -Organizations that meet the data subject's local privacy law criteria are legally bound to comply with the laws of each region or country where their data subjects are residing (i.e. where they are conducting business). There are a lot of nuances and regional variations to this, but in general you should focus on **where the data subject is residing**. +Organizations that meet the data subject's local privacy law criteria are legally bound to comply with the laws of each region or country where their data subjects are residing (i.e. where they are conducting business). There are a lot of nuances and regional variations to this, but in general you should focus on *where* the data subject is residing. ## Finding your local regulations -If your jurisdiction is protected by one or more privacy laws, it should be relatively easy to find this information online. Privacy Guides will soon publish a tool facilitating this task, but in the meanwhile you can simply use a [trustworthy search engine](../../search-engines.md) and look for keywords with your location (be specific about country + states/provinces/region) and "privacy laws" or "data protection regulations." +If your jurisdiction is protected by one or more privacy laws, it should be relatively easy to find this information online. Privacy Guides will soon publish a tool facilitating this task. In the meantime, you can simply use a [trustworthy search engine](../../search-engines.md) and look for keywords with your location (be specific about country + states/provinces/region) and "privacy laws" or "data protection regulations." -Make sure to find a result that is **from an official government source**. +Always make sure to find a result that is from an official government source. -
+

Beware of AI-generated information!

Be careful to research this *without* using an automated chatbot or AI-generated information. These tools can have a high error rate, and the information displayed might not be reliable. Be sure to find the official government documentation in order to get the proper *legal* information. @@ -50,21 +50,31 @@ While researching about your privacy protections, keep in mind that: Once you've found the official governmental documentation describing the data protection regulation that applies to your region, read it carefully to find: -
+ -๐Ÿ‘ค  Who is protected by the law, and in which situations? +
-๐Ÿข  Which types of organizations are bound to comply with the law? +- Who is protected by the law, and in which situations? -๐Ÿ’›  What are your data subject rights? (Right to Delete? Right to Access? Right to Opt-out?) +- Which types of organizations are bound to comply with the law? -๐Ÿ“ฆ  Does the law include special protections for specific types of sensitive data? +- What are your data subject rights? (Right to Delete? Right to Access? Right to Opt-out?) -๐Ÿ”  Which types of data might be exempt from the law? +- Does the law include special protections for specific types of sensitive data? -๐Ÿง‘โ€โš–๏ธ  Which entity is responsible for enforcing the law? +- Which types of data might be exempt from the law? -โ˜‘๏ธ  What is the process to file a complaint? +- Which entity is responsible for enforcing the law? + +- What is the process to file a complaint?
diff --git a/docs/activism/toolbox/tip-level-up-assemble-and-organize.md b/docs/activism/toolbox/tip-level-up-assemble-and-organize.md index 8d9aca2c..ddc4a803 100644 --- a/docs/activism/toolbox/tip-level-up-assemble-and-organize.md +++ b/docs/activism/toolbox/tip-level-up-assemble-and-organize.md @@ -69,27 +69,37 @@ In fact, it's important that we have a wide variety of initiatives to make this Here are a few ideas of actions you might want to consider in your privacy work: -
+ -๐Ÿ™Œ  **Form a group to develop a website** to inform and facilitate concrete action from the public to fight against a privacy issue. As an example, visit this impactful [web project](https://fightchatcontrol.eu/) to fight Chat Control developed by Joachim. +
-๐Ÿ”  **Develop a web page to inform the public on a privacy issues**, and conduct research to provide a list of which businesses or institutions are participating in the invasive practice, and which ones have pledged not to. As an example, check out this amazing [web page](https://www.banfacialrecognition.com/stores/#scorecard) to ban facial recognition in stores created by Fight for The Future. +- **Form a group to develop a website** to inform and facilitate concrete action from the public to fight against a privacy issue. As an example, visit this impactful [web project](https://fightchatcontrol.eu/) to fight Chat Control developed by Joachim. -โœŠ  **Organize a campaign** to fight a specific issue, and reach out to other organizations to take part in a coalition. As an example, check this [website](https://stopscanningme.eu/en/) to push back against Chat Control developed by European Digital Rights (EDRi). +- **Develop a web page to inform the public on a privacy issues**, and conduct research to provide a list of which businesses or institutions are participating in the invasive practice, and which ones have pledged not to. As an example, check out this amazing [web page](https://www.banfacialrecognition.com/stores/#scorecard) to ban facial recognition in stores created by Fight for The Future. -โœ๏ธ  **Start a petition** collecting citizen signatures to push against a privacy-invasive law or legislative proposal. As an example, read about the [petition](https://www.openrightsgroup.org/publications/joint-briefing-petition-debate-on-repealing-the-online-safety-act/) to repeal the invasive UK Online Safety Act, signed by over 550,000 people. +- **Organize a campaign** to fight a specific issue, and reach out to other organizations to take part in a coalition. As an example, check this [website](https://stopscanningme.eu/en/) to push back against Chat Control developed by European Digital Rights (EDRi). -๐Ÿ“ƒ  **Gather experts to publicly support an open letter** opposing a privacy issue or supporting a privacy solution, and share it with the media. As an example, read this [open letter](https://csa-scientist-open-letter.org/Sep2025) opposing a Chat Control proposal, signed by over 800 scientists and researchers. +- **Start a petition** collecting citizen signatures to push against a privacy-invasive law or legislative proposal. As an example, read about the [petition](https://www.openrightsgroup.org/publications/joint-briefing-petition-debate-on-repealing-the-online-safety-act/) to repeal the invasive UK Online Safety Act, signed by over 550,000 people. -๐Ÿ—ฃ๏ธ  **Speak publicly** to raise awareness on privacy issues and educate the public, if you are comfortable doing so. As an example, watch this moving TEDx [talk](https://www.youtube.com/watch?v=xSPRouBvgFE) by Carissa Vรฉliz. +- **Gather experts to publicly support an open letter** opposing a privacy issue or supporting a privacy solution, and share it with the media. As an example, read this [open letter](https://csa-scientist-open-letter.org/Sep2025) opposing a Chat Control proposal, signed by over 800 scientists and researchers. -๐ŸŽž๏ธ  **Start a privacy rights video channel** on your preferred privacy-preserving platform. As an example, check out Privacy Guides' [PeerTube](https://neat.tube/c/privacyguides/videos) and [Loops](https://loops.video/@privacyguides) channels. +- **Speak publicly** to raise awareness on privacy issues and educate the public, if you are comfortable doing so. As an example, watch this moving TEDx [talk](https://www.youtube.com/watch?v=xSPRouBvgFE) by Carissa Vรฉliz. -๐Ÿ“–  **Design educational online or printed material** to provide information about a specific privacy issue or protections. As an example, visit this [website](https://sls.eff.org/) about street level surveillance, or this border search pocket [guide](https://www.eff.org/document/eff-border-search-pocket-guide), both developed by the Electronic Frontier Foundation (EFF). +- **Start a privacy rights video channel** on your preferred privacy-preserving platform. As an example, check out Privacy Guides' [PeerTube](https://neat.tube/c/privacyguides/videos) and [Loops](https://loops.video/@privacyguides) channels. -๐Ÿ’›  **Write content to share your knowledge** about solutions to push back against Big Tech and surveillance capitalism, and encourage others to join your journey. As an example, explore this [blog](https://blog.elenarossini.com/tag/the-future-is-federated/) about joining the Fediverse written by Elena Rossini. +- **Design educational online or printed material** to provide information about a specific privacy issue or protections. As an example, visit this [website](https://sls.eff.org/) about street level surveillance, or this border search pocket [guide](https://www.eff.org/document/eff-border-search-pocket-guide), both developed by the Electronic Frontier Foundation (EFF). -๐Ÿ“š  Learn about more [types of actions](https://museumofprotest.org/methods/) you can use in your privacy activist work. +- **Write content to share your knowledge** about solutions to push back against Big Tech and surveillance capitalism, and encourage others to join your journey. As an example, explore this [blog](https://blog.elenarossini.com/tag/the-future-is-federated/) about joining the Fediverse written by Elena Rossini. + +- Learn about more [types of actions](https://museumofprotest.org/methods/) you can use in your privacy activist work.
diff --git a/docs/activism/toolbox/tip-lift-your-allies-up.md b/docs/activism/toolbox/tip-lift-your-allies-up.md index e9cc6494..869ed70c 100644 --- a/docs/activism/toolbox/tip-lift-your-allies-up.md +++ b/docs/activism/toolbox/tip-lift-your-allies-up.md @@ -28,19 +28,29 @@ In privacy advocacy, we truly need to adopt the mindset: **The more the merrier. There are infinite ways to lift your allies up. Here are some ideas to get you started, whether you are an independent advocate, a digital rights organization, or a privacy-focused business: -
+ -๐Ÿ‘  When an organization or business sharing you values starts a campaign, repost them on social media. Additionally, you can quote them or write about it yourself, while linking to their profile and campaign. Boost them up! +
-โœ๏ธ  If you are a writer, regularly link to material created by other trustworthy organizations and people sharing your values, while giving them credit. +- When an organization or business sharing you values starts a campaign, repost them on social media. Additionally, you can quote them or write about it yourself, while linking to their profile and campaign. Boost them up! -๐Ÿ’›  When an individual creates material favorable to your organization or project, take the time to repost them and thank them. This is bringing more people to your cause, without any work on your side! +- If you are a writer, regularly link to material created by other trustworthy organizations and people sharing your values, while giving them credit. -๐Ÿค  Change your mindset from competition to collaboration. See your peers as people fighting by your side. Whenever they win, you win too. Congratulate them on their successes, and support them in times of need. +- When an individual creates material favorable to your organization or project, take the time to repost them and thank them. This is bringing more people to your cause, without any work on your side! -๐Ÿ™Œ  When you see that your allies need help with an expertise you have, try to offer your time and resources if you can afford it. +- Change your mindset from competition to collaboration. See your peers as people fighting by your side. Whenever they win, you win too. Congratulate them on their successes, and support them in times of need. -โœŠ  When reaching out to your community, talk about your allies' work as well, and help people discover new resources. Everyone has different ways to absorb new information. Perhaps you can help others find resources that are more compatible with their needs, even if it's not your material. You are not losing a member when you refer people externally, you are winning, because you are contributing to grow the movement. +- When you see that your allies need help with an expertise you have, try to offer your time and resources if you can afford it. + +- When reaching out to your community, talk about your allies' work as well, and help people discover new resources. Everyone has different ways to absorb new information. Perhaps you can help others find resources that are more compatible with their needs, even if it's not your material. You are not losing a member when you refer people externally, you are winning, because you are contributing to grow the movement.
diff --git a/docs/activism/toolbox/tip-make-it-cute.md b/docs/activism/toolbox/tip-make-it-cute.md index 25b403ef..4733fc43 100644 --- a/docs/activism/toolbox/tip-make-it-cute.md +++ b/docs/activism/toolbox/tip-make-it-cute.md @@ -20,17 +20,27 @@ When your app is ugly, fewer people want to use it, and fewer people benefit fro If you've already done your homework to build the best app for people to protect their privacy, or the best website to provide privacy advice, here are other aspects you should consider to increase your product's popularity: -
+ -โ˜‘๏ธ  Make sure that your app or website is [accessible](tip-be-mindful-of-accessibility.md) as much as possible. Accessibility will not only make more people able to use your application, but it's likely to also improve user experience for everyone. +
-๐ŸŽ  Wrap your product in a pretty package. If you can afford it, hire a professional designer to polish your app or website interface, as well as your organization's logo and promotional material. Design can truly be a make-or-break moment. Do not neglect it! +- Make sure that your app or website is [accessible](tip-be-mindful-of-accessibility.md) as much as possible. Accessibility will not only make more people able to use your application, but it's likely to also improve user experience for everyone. -๐Ÿฅฐ  People like cute things! Make your app and content cute! Additionally, this helps to make technically-intimidating projects feel more accessible to newcomers and beginners. +- Wrap your product in a pretty package. If you can afford it, hire a professional designer to polish your app or website interface, as well as your organization's logo and promotional material. Design can truly be a make-or-break moment. Do not neglect it! -โญ๏ธ  Use good design to reinforce your privacy features or topics. Visual elements can be great assets to bring more attention to your product or content, and to highlight important privacy features in your application. Use design to guide users instinctively towards good privacy. And use design to make the information you share on your website or other content easier to digest. +- People like cute things! Make your app and content cute! Additionally, this helps to make technically-intimidating projects feel more accessible to newcomers and beginners. -๐Ÿš€  Make sure your application or website isn't just cute and privacy-positive, but also *functional*. Without good user experience, you will not be able to retain the users or readers you have managed to attract with cuteness or privacy, and people will move back to their old bad habits. +- Use good design to reinforce your privacy features or topics. Visual elements can be great assets to bring more attention to your product or content, and to highlight important privacy features in your application. Use design to guide users instinctively towards good privacy. And use design to make the information you share on your website or other content easier to digest. + +- Make sure your application or website isn't just cute and privacy-positive, but also *functional*. Without good user experience, you will not be able to retain the users or readers you have managed to attract with cuteness or privacy, and people will move back to their old bad habits.
diff --git a/docs/activism/toolbox/tip-migrate-outside-the-surveillance-ecosystem.md b/docs/activism/toolbox/tip-migrate-outside-the-surveillance-ecosystem.md index 9d37b1a3..4f126554 100644 --- a/docs/activism/toolbox/tip-migrate-outside-the-surveillance-ecosystem.md +++ b/docs/activism/toolbox/tip-migrate-outside-the-surveillance-ecosystem.md @@ -12,23 +12,33 @@ Here's why and how to move away from Big Tech and embrace alternatives: While using the most popular mainstream tools and platforms for our work might seem efficient at first, there can be an immense cost to it, if these tools and platforms aren't aligned with our privacy values. -
+ -๐Ÿ‘๏ธโ€๐Ÿ—จ๏ธ  1. The first drawback is that by using products that are antithetical to our values, we are directly participating in sustaining anti-privacy corporations and contributing to [surveillance capitalism](../../basics/common-threats.md/#surveillance-as-a-business-model). +
-โš ๏ธ  2. The second drawback is that simply by using Big Tech tools, we are indirectly promoting the usage of services that are horrible for everyone's privacy. +1. The first drawback is that by using products that are antithetical to our values, we are directly participating in sustaining anti-privacy corporations and contributing to [surveillance capitalism](../../basics/common-threats.md/#surveillance-as-a-business-model). -๐Ÿšจ  3. The third drawback is that if we use these tools in our action and communications, we are then endangering the data of others who rely on our expertise to keep their data safe. They might think: "If this privacy advocate asks me to fill a Google form, it's probably safe enough to use Google products for sensitive data." +2. The second drawback is that simply by using Big Tech tools, we are indirectly promoting the usage of services that are horrible for everyone's privacy. -**With great *knowledge* comes great responsibility.[*](https://en.wikipedia.org/wiki/With_great_power_comes_great_responsibility) We must protect the data people share with us, even more than we would our own.** +3. The third drawback is that if we use these tools in our action and communications, we are then endangering the data of others who rely on our expertise to keep their data safe. They might think: "If this privacy advocate asks me to fill a Google form, it's probably safe enough to use Google products for sensitive data." -โ›”๏ธ  4. The fourth drawback is that, as privacy activists, demanding that others use tools violating their privacy rights to communicate with us can damage our credibility, and have a negative impact on the whole community. Observers might think: "If all these privacy advocates use Facebook groups, why should I listen when they recommend that I move away from Facebook?" + With great *knowledge* comes great responsibility. We must protect the data people share with us, even more than we would our own. -๐Ÿ’›  5. Finally, the fifth drawback is that we need to be *leading by example* and demonstrate that it is possible to **live a connected life without using privacy-invasive tech**. +4. The fourth drawback is that, as privacy activists, demanding that others use tools violating their privacy rights to communicate with us can damage our credibility, and have a negative impact on the whole community. Observers might think: "If all these privacy advocates use Facebook groups, why should I listen when they recommend that I move away from Facebook?" -Because a better world *is* actually possible, right now. It might not be as easy and as convenient, but it's certainly possible to thrive outside the Big Tech surveillance apparatus, especially for privacy activists and digital rights organizations. +5. Finally, the fifth drawback is that we need to be *leading by example* and demonstrate that it **is** possible to live a connected life without using privacy-invasive tech. -As the saying goes: **If not us, then who? If not now, then when?** + Because a better world *is* actually possible, right now. It might not be as easy and as convenient, but it's certainly possible to thrive outside the Big Tech surveillance apparatus, especially for privacy activists and digital rights organizations. + + As the saying goes: ==If not us, then who? If not now, then when?==
@@ -40,8 +50,6 @@ There are two good news about this: - Second, you don't have to do it all at once! Start your migration process slowly, but be persistent about it over the whole year. -Here's a list of alternative solutions you can start adopting to improve data privacy in your advocacy work: -

What is the best tool?

@@ -49,50 +57,62 @@ For each proposed alternative, you should always first consider your own [threat
-**Both for individuals and organizations:** +Here's a list of alternative solutions you can start adopting to improve data privacy in your advocacy work: -
+### For individuals and organizations -๐Ÿ’ฌ  **Messaging communication:** Move your text message communication, audio calls, and video calls to [Signal](../../real-time-communication.md/#signal). Enable Signal's username and disappearing message features. + -๐Ÿง…  **Sensitive messaging communication:** If your threat model requires a peer-to-peer solution that doesn't need a phone number and transits over the [Tor network](https://www.privacyguides.org/articles/2025/04/30/in-praise-of-tor/), you might want to use an application such as [Cwtch](https://docs.cwtch.im/) or [Briar](../../real-time-communication.md/#briar). +
-๐Ÿ“ง  **Email communication:** Migrate to a privacy-respectful email service that offers end-to-end encryption, such as [Proton Mail](../../email.md/#proton-mail) or [Tuta Mail](../../email.md/#tuta). Make sure to inform yourself about the limitations of email privacy when using email for sensitive communication. +- **[Messaging communication](../../real-time-communication.md):** Move your text message communication, audio calls, and video calls to a secure messenger like Signal. Enable features like Signal's username option and disappearing messages. -
-

Service providers disclosure and compatibility

+- **Sensitive messaging communication:** If your threat model requires a peer-to-peer solution that doesn't need a phone number and transits over the [Tor network](https://www.privacyguides.org/articles/2025/04/30/in-praise-of-tor/), you might want to use an application such as [Cwtch](https://docs.cwtch.im/) or [Briar](../../real-time-communication.md/#briar). -If you use your own custom domain name for email addresses, let the people you communicate with know what your service provider is. +- **[Email communication](../../email.md):** Migrate to a privacy-respectful email service that offers end-to-end encryption, such as Proton Mail or Tuta. Make sure to inform yourself about the limitations of email privacy when using email for sensitive communication. -That way, they will know that if they use a compatible service provider, they might benefit from end-to-end encryption protections for the content of their communications with you without requiring any additional steps. For example, this is the case when emailing from a Proton Mail account to another Proton Mail account, or from a Tuta Mail account to another Tuta Mail account. +
+

Service providers disclosure and compatibility

-
+ If you use your own custom domain name for email addresses, let the people you communicate with know what your service provider is. -๐Ÿ“‘  **Document storing and sharing:** Move away from privacy-invasive Google products to store and share documents. Instead, use an end-to-end encrypted solution such as [CryptPad](https://www.privacyguides.org/articles/2025/02/07/cryptpad-review/) for your collaborative documents and forms. Proton Drive also now offers collaborative documents with [Docs](https://proton.me/support/drive-create-edit-docs) and [Sheets](https://proton.me/support/sheets-getting-started). + That way, they will know that if they use a compatible service provider, they might benefit from end-to-end encryption protections for the content of their communications with you without requiring any additional steps. For example, this is the case when emailing from a Proton Mail account to another Proton Mail account, or from a Tuta Mail account to another Tuta Mail account. -โ˜๏ธ  **Storing files:** Choose an [end-to-end encrypted cloud](../../cloud.md) solution to store and share files. Always keep in mind that if a cloud service provider doesn't offer solid end-to-end encryption, then it can potentially access any of your stored files. + -โ“  **Surveys:** Stop using products such as Google Forms to poll your community. Instead, choose a privacy-focused alternative such as [CryptPad Form](https://www.privacyguides.org/articles/2025/02/07/cryptpad-review/#form) or [Framaforms](https://framaforms.org/abc/en/). +- **[Document storing and sharing](../../document-collaboration.md):** Move away from privacy-invasive Google products to store and share documents. Instead, use an end-to-end encrypted solution such as [CryptPad](https://www.privacyguides.org/articles/2025/02/07/cryptpad-review/) for your collaborative documents and forms. Proton Drive also offers collaborative documents with *Proton Docs* and *Sheets*. -๐Ÿ“†  **Online calendar:** Your online calendar can be an important source of sensitive data. Moreover, you might store other's people data in it, or use it to share event links with collaborators. It's essential to make sure to use a privacy-protective solution for online and collaborative [calendars](../../calendar.md). +- **[Storing files](../../cloud.md):** Choose an end-to-end encrypted cloud solution to store and share files. Always keep in mind that if a cloud service provider doesn't offer solid end-to-end encryption, then it can potentially access any of your stored files. -๐Ÿ—ฃ๏ธ  **Groups and events:** When organizing groups or events, be careful to choose platforms that are privacy-respectful and don't require participants to register personal information. Keep in mind that if you only use Facebook groups, you are contributing to people staying on a privacy-invasive platform. If you only use a closed Meetup group, you are demanding people create an account and share their sensitive data in order to join. Instead, use privacy-respectful platforms such as [Mobilizon](https://mobilizon.org/) or [LAUTI](https://lauti.org/) for groups and events, [Discourse](https://www.discourse.org/) for forums, or simply use your own website to advertise in-person events. +- **Surveys:** Stop using products such as Google Forms to poll your community. Instead, choose a privacy-focused alternative such as [CryptPad Form](https://www.privacyguides.org/articles/2025/02/07/cryptpad-review/#form) or [Framaforms](https://framaforms.org/abc/en/). -๐Ÿช  **Website analytics and cookies:** If you own a website for your organization or for your individual advocacy, make sure to remove from it any [tracking technologies](https://blog.mozilla.org/en/firefox/cross-site-tracking-lets-unpack-that/) that could be sending your visitors' data to Google, Facebook, or other advertising corporations. You shouldn't need a cookie banner for your website, because *your website shouldn't use any non-essential cookies*. If you really need website analytics, try using a privacy-respectful alternative such as [Umami](https://umami.is/) or [Plausible Analytics](https://plausible.io/). +- **[Online calendar](../../calendar.md):** Your online calendar can be an important source of sensitive data. Moreover, you might store other's people data in it, or use it to share event links with collaborators. It's essential to make sure to use a privacy-protective solution for online and collaborative calendars. -๐Ÿ”‡  **Smart devices:** Whether you are meeting with other advocates at home or organizing an event, make sure the location is free from Big Tech [surveillance devices](https://www.privacyguides.org/articles/2025/03/10/the-privacy-of-others/#notify-guests-if-you-are-using-a-smart-speaker) that might get easily forgotten. This may include a doorbell equipped with a camera, a smart speaker such as Amazon Echo, Google Home or Google Nest, or any other audio or video recording devices that is on. Physically unplug any such devices in the location *before* guests arrive. If you cannot unplug them, at least provide a proper warning to any guests before they enter the location and the device collects their audio or video data. +- **Groups and events:** When organizing groups or events, be careful to choose platforms that are privacy-respectful and don't require participants to register personal information. Keep in mind that if you only use Facebook groups, you are contributing to people staying on a privacy-invasive platform. If you only use a closed Meetup group, you are demanding people create an account and share their sensitive data in order to join. Instead, use privacy-respectful platforms such as [Mobilizon](https://mobilizon.org/) or [LAUTI](https://lauti.org/) for groups and events, [Discourse](https://www.discourse.org/) for forums, or simply use your own website to advertise in-person events. -๐Ÿค–  **Usage of AI:** Be extremely careful if you are using AI platforms. Most current mainstream AI products will send at least some data or metadata to the company's remote server. This can create many privacy issues, ranging from mild to severe. Never use these products to upload data about another person without their *prior explicit consent*. Ideally, refrain from using any AI tools in your advocacy work entirely. +- **Website analytics and cookies:** If you own a website for your organization or for your individual advocacy, make sure to remove from it any [tracking technologies](https://blog.mozilla.org/en/firefox/cross-site-tracking-lets-unpack-that/) that could be sending your visitors' data to Google, Facebook, or other advertising corporations. You shouldn't need a cookie banner for your website, because *your website shouldn't use any non-essential cookies*. If you really need website analytics, try using a privacy-respectful alternative such as [Umami](https://umami.is/) or [Plausible Analytics](https://plausible.io/). -๐Ÿ’ผ  **Candidates data:** If your organization hires people, be mindful of how you handle candidates' data. Try to select privacy-respectful solutions such as email communication instead of using commercial platforms that might share candidates' data with third-parties. Only request the minimum information required from applicants, and always delete all data you are no longer required to keep, as soon as you don't need it anymore. +- **Smart devices:** Whether you are meeting with other advocates at home or organizing an event, make sure the location is free from Big Tech [surveillance devices](https://www.privacyguides.org/articles/2025/03/10/the-privacy-of-others/#notify-guests-if-you-are-using-a-smart-speaker) that might get easily forgotten. This may include a doorbell equipped with a camera, a smart speaker such as Amazon Echo, Google Home or Google Nest, or any other audio or video recording devices that is on. Physically unplug any such devices in the location *before* guests arrive. If you cannot unplug them, at least provide a proper warning to any guests before they enter the location and the device collects their audio or video data. -๐Ÿ“ž  **Availability:** Make sure you or your organization is reachable outside the Big Tech ecosystem. If your organization only has a Facebook page, then people without a Facebook account cannot reach out to you. The same is true for other commercial social media. Instead, try to rely on a website you control yourself, or a social network page you can host yourself. +- **Usage of AI:** Be extremely careful if you are using AI platforms. Most current mainstream AI products will send at least some data or metadata to the company's remote server. This can create many privacy issues, ranging from mild to severe. Never use these products to upload data about another person without their *prior explicit consent*. Ideally, refrain from using any AI tools in your advocacy work entirely. -๐Ÿ˜  **Social media:** Move away from commercial social media platforms. Mainstream platforms are almost all abusing their users' data. By keeping an account there, you are indirectly encouraging your followers to stay there as well, perpetuating the platform's abuse. +- **Candidates data:** If your organization hires people, be mindful of how you handle candidates' data. Try to select privacy-respectful solutions such as email communication instead of using commercial platforms that might share candidates' data with third-parties. Only request the minimum information required from applicants, and always delete all data you are no longer required to keep, as soon as you don't need it anymore. -While you may want to keep a minimal presence to advertise that you have now moved your activity to a more privacy-respectful platform, you should keep your engagement there to a minimum. +- **Availability:** Make sure you or your organization is reachable outside the Big Tech ecosystem. If your organization only has a Facebook page, then people without a Facebook account cannot reach out to you. The same is true for other commercial social media. Instead, try to rely on a website you control yourself, or a social network page you can host yourself. -Instead, migrate your advocacy work to better social networks that aren't abusing users' data, and encourage your followers to migrate with you. Choose and support a platform that is more aligned with your privacy values, such as [Mastodon](https://www.privacyguides.org/articles/2025/07/15/mastodon-privacy-and-security/) or any other open-source non-commercial applications connected to the [Fediverse](https://blog.elenarossini.com/fediverse-video/). +- **[Social media](../../social-networks.md):** Move away from commercial social media platforms. Mainstream platforms are almost all abusing their users' data. By keeping an account there, you are indirectly encouraging your followers to stay there as well, perpetuating the platform's abuse. + + While you may want to keep a minimal presence to advertise that you have now moved your activity to a more privacy-respectful platform, you should keep your engagement there to a minimum. + + Instead, migrate your advocacy work to better social networks that aren't abusing users' data, and encourage your followers to migrate with you. Choose and support a platform that is more aligned with your privacy values, such as [Mastodon](https://www.privacyguides.org/articles/2025/07/15/mastodon-privacy-and-security/) or any other open-source non-commercial applications connected to the [Fediverse](https://blog.elenarossini.com/fediverse-video/).
diff --git a/docs/activism/toolbox/tip-protect-your-allies.md b/docs/activism/toolbox/tip-protect-your-allies.md index 851efdc2..aabe2d97 100644 --- a/docs/activism/toolbox/tip-protect-your-allies.md +++ b/docs/activism/toolbox/tip-protect-your-allies.md @@ -16,6 +16,10 @@ It's important to develop an awareness of the data we collect and share ourselve Here are a some examples of other people's data we might collect or share in the context of our privacy advocacy work, whether intentionally or inadvertently: +
+ +
+ - [ ] Contact information (personal advocacy or professional work) - [ ] Donation information (including legal names, emails, and phone numbers) - [ ] Purchase information (including legal names and shipping addresses) @@ -30,6 +34,11 @@ Here are a some examples of other people's data we might collect or share in the - [ ] Chatbot logs - [ ] Survey answers - [ ] Shared documents + +
+ +
+ - [ ] Shared photos and images - [ ] Legal names of people on work contracts or partnership agreements - [ ] Home addresses of people on work contracts or partnership agreements @@ -44,6 +53,10 @@ Here are a some examples of other people's data we might collect or share in the - [ ] Screenshots of people's social media posts - [ ] And so much more +
+ +
+ ## How to protect the data of others Each time we collect data from others, we become its guardian. This isn't a small responsibility, and we should always treat the data of others as [toxic asset](https://www.schneier.com/blog/archives/2016/03/data_is_a_toxic.html). diff --git a/docs/activism/toolbox/tip-refuse-to-participate.md b/docs/activism/toolbox/tip-refuse-to-participate.md index 4a5fd850..94481456 100644 --- a/docs/activism/toolbox/tip-refuse-to-participate.md +++ b/docs/activism/toolbox/tip-refuse-to-participate.md @@ -28,33 +28,43 @@ When we use products that do not reflect the values we are asking people to adop There are many ways to refuse to participate in privacy-invasive practices and platforms. Here are a few things you can try to do in your daily life, and in your privacy advocacy work: -
+ -โ›”๏ธ  Use an [ad blocker](https://www.privacyguides.org/en/browser-extensions/) everywhere you can. +
-๐Ÿช  Categorically and obstinately reject all cookies, every single time. +- Use an [ad blocker](https://www.privacyguides.org/en/browser-extensions/) everywhere you can. -๐Ÿท๏ธ  Read apps' privacy-labels, and always favor applications that are the least intrusive. +- Categorically and obstinately reject all cookies, every single time. -๐Ÿ“ฆ  Migrate [away from abusive Big Tech](tip-migrate-outside-the-surveillance-ecosystem.md) products and platforms. +- Read apps' privacy-labels, and always favor applications that are the least intrusive. -๐ŸŒฑ  Try to move out or reduce your usage of [privacy-exploiting social media](tip-improve-your-social-media-and-build-resilient-communities.md). +- Migrate [away from abusive Big Tech](tip-migrate-outside-the-surveillance-ecosystem.md) products and platforms. -โš™๏ธ  Each time you install a new application or create a new account, go through the settings to disable all the privacy-invasive features you can disable. Make sure to disable any AI features as well. +- Try to move out or reduce your usage of [privacy-exploiting social media](tip-improve-your-social-media-and-build-resilient-communities.md). -๐Ÿ™…  When requested to provide unnecessary personal information by a cashier or an online form, firmly refuse to provide anything that isn't legally necessary. +- Each time you install a new application or create a new account, go through the settings to disable all the privacy-invasive features you can disable. Make sure to disable any AI features as well. -โ„น๏ธ  Inform yourself in advance about potential legal options to opt out of privacy-invasive technologies such as airport facial scanner. +- When requested to provide unnecessary personal information by a cashier or an online form, firmly refuse to provide anything that isn't legally necessary. -๐Ÿชช  Refuse to provide an official piece of ID online for purposes that aren't strictly necessary, such as government requests. Do not comply with intrusive [age-verification](https://www.privacyguides.org/articles/2025/05/06/age-verification-wants-your-face/) processes. Leave your account abandoned instead, or [delete it](../../basics/account-deletion.md) if you still can. Additionally, consider contacting your government representatives and the platform's complaint email to voice your privacy concerns about such practice. +- Inform yourself in advance about potential legal options to opt out of privacy-invasive technologies such as airport facial scanner. -๐Ÿšจ  [Report privacy violations](tip-report-privacy-violations.md) of your local privacy laws whenever you can. +- Refuse to provide an official piece of ID online for purposes that aren't strictly necessary, such as government requests. Do not comply with intrusive [age-verification](https://www.privacyguides.org/articles/2025/05/06/age-verification-wants-your-face/) processes. Leave your account abandoned instead, or [delete it](../../basics/account-deletion.md) if you still can. Additionally, consider contacting your government representatives and the platform's complaint email to voice your privacy concerns about such practice. -๐Ÿ”’  Depending on your position, refuse to collect or share personal information on others without their prior, explicit, and informed consent (unless you are *legally* required). Be mindful of the software or third-party partners you use that could inadvertently share more information about others than you intended, such as [website telemetry](https://sebastiangreger.net/2014/02/privacy-aware-design-replacing-google-analytics/) or [social media buttons](https://www.tunnelbear.com/blog/why-we-created-our-own-social-media-buttons-on-our-website/). +- [Report privacy violations](tip-report-privacy-violations.md) of your local privacy laws whenever you can. -๐Ÿค–  Never share the personal information of others with an AI chatbot or platform. Decline to do this in your work, whenever possible. +- Depending on your position, refuse to collect or share personal information on others without their prior, explicit, and informed consent (unless you are *legally* required). Be mindful of the software or third-party partners you use that could inadvertently share more information about others than you intended, such as [website telemetry](https://sebastiangreger.net/2014/02/privacy-aware-design-replacing-google-analytics/) or [social media buttons](https://www.tunnelbear.com/blog/why-we-created-our-own-social-media-buttons-on-our-website/). -๐Ÿ“ข  Promote refusal around you. Inform others of their rights and responsibilities to opt out. Create accessible guides to educate the public on how they can also refuse to participate. +- Never share the personal information of others with an AI chatbot or platform. Decline to do this in your work, whenever possible. + +- Promote refusal around you. Inform others of their rights and responsibilities to opt out. Create accessible guides to educate the public on how they can also refuse to participate.
diff --git a/docs/activism/toolbox/tip-report-privacy-violations.md b/docs/activism/toolbox/tip-report-privacy-violations.md index 6b8b7d19..4f96c582 100644 --- a/docs/activism/toolbox/tip-report-privacy-violations.md +++ b/docs/activism/toolbox/tip-report-privacy-violations.md @@ -4,7 +4,7 @@ description: Submitting an official complaint for violation of your privacy righ icon: fontawesome/solid/gavel cover: activism/banner-toolbox-tip-report.webp --- -Once you are [informed on your local privacy laws](tip-know-your-privacy-laws.md), it's important to get familiar with the process to report violations of the law. Submitting an official complaint is often simple, and can have a significant impact both for yourself and for your community. +Once you are [informed on your local privacy laws](tip-know-your-privacy-laws.md), it's important to get familiar with the process to **report violations of the law**. Submitting an official complaint is often simple, and can have a significant impact both for yourself and for your community. Here's why and how you should report violations of your local privacy laws: @@ -21,18 +21,11 @@ This tip cannot cover each regulation individually. There will be variations for For many if not most privacy regulations, there isn't a mechanism to systematically audit every single organization collecting data from people located in its jurisdiction. -Unless the enforcing authority decides to investigate an especially important abuse, the process often relies on individual complaints reporting violations of **data subject** rights in order to trigger an investigation. - -
-

What is a data subject?

- -Different laws might use different terms for this. Sometimes, a regulation might simply refer to a *person*, an *individual*, a *consumer*, a *patient*, or a *customer*. Other times, the equivalent expression used will be a *data subject*. A data subject is simply anyone from whom personal information is collected by an organization. Data subject will be used as an umbrella term on this page. - -
+Unless the enforcing authority decides to investigate an especially important abuse, the process often relies on individual complaints reporting violations of [**data subject**](tip-know-your-privacy-laws.md#where-is-the-data-subject) rights in order to trigger an investigation. If you believe that your privacy rights have been violated by an organization, infringing your local privacy regulations, you can likely report this violation to the entity responsible for enforcing the law, the **Data Protection Authority** (DPA). -
+

What is a Data Protection Authority?

Again, different laws might use different terms for this, depending on the region. For example, in Canada the enforcing authority for a privacy law is often called a *Privacy Commissioner*. In Europe, the term used is a *Data Protection Authority*. In the state of California in the United States, the entity responsible for enforcing the California Consumer Privacy Act (CCPA) is the *California Privacy Protection Agency*. @@ -45,27 +38,37 @@ Reporting even small violations can help improve privacy rights not only for you Once an organization is ordered to bring corrective changes or is sanctioned for malpractice by a DPA, this can have many beneficial effects at the individual and collective level: -
+ -๐Ÿง‘โ€โš–๏ธ  A delinquent organization might be mandated by law to correct the problem. For example, a company without a clear privacy policy might get ordered to publish one. +
-๐Ÿšฎ  You might be able to get personal data that you were unable to delete before finally deleted with the help of your DPA (and similarly for access requests). +- A delinquent organization might be mandated by law to correct the problem. For example, a company without a clear privacy policy might get ordered to publish one. -๐Ÿšซ  An abusive organization might get banned from operating in your country entirely. +- You might be able to get personal data that you were unable to delete before finally deleted with the help of your DPA (and similarly for access requests). -โญ๏ธ   Individual complaints can create a legal precedent that could speed up enforcement for similar violations in the future. +- An abusive organization might get banned from operating in your country entirely. -๐Ÿšจ  Strong sanctions that are made public can send a powerful warning to other organizations to avoid making the same mistakes, and adopt corrective measures preventively. +- Individual complaints can create a legal precedent that could speed up enforcement for similar violations in the future. -โ„น๏ธ  Cases and sanctions that are publicized can inform the public about potential problems, and potential solutions. +- Strong sanctions that are made public can send a powerful warning to other organizations to avoid making the same mistakes, and adopt corrective measures preventively. -๐Ÿ”  If a DPA receives multiple complaints targeting a single organization, they might decide to launch a larger investigation and order the organization to improve its privacy practices more broadly. +- Cases and sanctions that are publicized can inform the public about potential problems, and potential solutions. + +- If a DPA receives multiple complaints targeting a single organization, they might decide to launch a larger investigation and order the organization to improve its privacy practices more broadly.
## When you can report a violation -You can submit a complaint anytime your local privacy rights have been violated by an organization required to comply with the law, and that you weren't able to resolve the issue on your own. +You can **submit a complaint** anytime your local privacy rights have been violated by an organization required to comply with the law, and that you weren't able to resolve the issue on your own. To report a privacy law violation, first ask yourself these questions: @@ -75,7 +78,7 @@ To report a privacy law violation, first ask yourself these questions: - [x] Which article(s) of the law has been breached by the organization? -**In case of doubt, never hesitate to ask questions to your local DPA.** +In case of doubt, never hesitate to send any questions you have to your local DPA. People working at your local DPA are the best specialists to contact to get the correct information specific to your local privacy protections. @@ -101,47 +104,80 @@ This is applicable for any other data subject rights. On the website of your local privacy law's DPA, you should be able to find either a form to submit a complaint or an email address you can contact with the details. -**When sending an official complaint, make sure to:** +When sending an official complaint, make sure to: -
+ -๐Ÿ“š  Follow the complaint process as described in the law or on the DPA's website. +
-๐Ÿข  Have the name and contact information of the organization you want to report. +- Follow the complaint process as described in the law or on the DPA's website. -๐Ÿ’ฌ  Have a precise summary of the privacy violation and the steps you have taken so far to try resolving the issue. +- Have the name and contact information of the organization you want to report. -๐Ÿ”’  Be mindful of the information you share in your complaint. This information could get shared with the organization you are complaining against, or even partially published later on. Read the DPA's privacy policy about complaint information, and do not hesitate to ask your DPA questions from an anonymous email address beforehand if needed. +- Have a precise summary of the privacy violation and the steps you have taken so far to try resolving the issue. -๐Ÿ“‘  Be ready to share additional evidences if your DPA requests it. This might include screenshots of the infraction, email communication with the delinquent organization, link to the organization's privacy policy, or any other evidences related to your case. +- Be mindful of the information you share in your complaint. This information could get shared with the organization you are complaining against, or even partially published later on. Read the DPA's privacy policy about complaint information, and do not hesitate to ask your DPA questions from an anonymous email address beforehand if needed. + +- Be ready to share additional evidences if your DPA requests it. This might include screenshots of the infraction, email communication with the delinquent organization, link to the organization's privacy policy, or any other evidences related to your case.
## More resources -๐Ÿ—บ๏ธ  [European Union Member States Data Protection Authorities - List and Map (EDPB)](https://www.edpb.europa.eu/about-edpb/about-edpb/members_en) -

+ -**Some examples of complaint form and processes (region/law/DPA):** +
-
- -๐Ÿ‡ฆ๐Ÿ‡บ  [Australia (Privacy Act): Office of the Australian Information Commissioner](https://www.oaic.gov.au/privacy/privacy-complaints/lodge-a-privacy-complaint-with-us) - -๐Ÿ‡จ๐Ÿ‡ฆ  [Canada (PIPEDA): Office of the Privacy Commissioner of Canada](https://www.priv.gc.ca/en/report-a-concern/file-a-formal-privacy-complaint/) - -๐Ÿ‡จ๐Ÿ‡ฆ  [Canada-Quebec (Law 25): Commission dโ€™accรจs ร  lโ€™information du Quรฉbec](https://formulaire.cai.gouv.qc.ca/) - -๐Ÿ‡ช๐Ÿ‡บ  [France (GDPR): Commission Nationale de lโ€™Informatique et des Libertรฉs](https://www.cnil.fr/fr/plaintes) - -๐Ÿ‡ช๐Ÿ‡บ  [Ireland (GDPR): Data Protection Commission](https://www.dataprotection.ie/en/individuals/exercising-your-rights/raising-concern-commission) - -๐Ÿ‡ณ๐Ÿ‡ฌ  [Nigeria (NDPA): Nigeria Data Protection Commission](https://services.ndpc.gov.ng/breach/) - -๐Ÿ‡ฌ๐Ÿ‡ง  [United Kingdom (UK GDPR): Information Commissioner's Office](https://ico.org.uk/make-a-complaint/data-protection-complaints/) - -๐Ÿ‡บ๐Ÿ‡ธ  [United States-California (CCPA): California Privacy Protection Agency](https://www.cppa.ca.gov/webapplications/complaint) - -๐Ÿ‡บ๐Ÿ‡ธ  [United States-Texas (TDPSA): Office of the Attorney General](https://consumerprotection.texasattorneygeneral.gov/consumercomplaintportal/s/) +- [European Union Member States Data Protection Authorities - List and Map (EDPB)](https://www.edpb.europa.eu/about-edpb/about-edpb/members_en) + +
+ +### Complaint form and process examples (region/law/DPA) + + + +
+ +- [Australia (Privacy Act): Office of the Australian Information Commissioner](https://www.oaic.gov.au/privacy/privacy-complaints/lodge-a-privacy-complaint-with-us) + +- [Canada (PIPEDA): Office of the Privacy Commissioner of Canada](https://www.priv.gc.ca/en/report-a-concern/file-a-formal-privacy-complaint/) + +- [Canada-Quebec (Law 25): Commission dโ€™accรจs ร  lโ€™information du Quรฉbec](https://formulaire.cai.gouv.qc.ca/) + +- [France (GDPR): Commission Nationale de lโ€™Informatique et des Libertรฉs](https://www.cnil.fr/fr/plaintes) + +- [Ireland (GDPR): Data Protection Commission](https://www.dataprotection.ie/en/individuals/exercising-your-rights/raising-concern-commission) + +- [Nigeria (NDPA): Nigeria Data Protection Commission](https://services.ndpc.gov.ng/breach/) + +- [United Kingdom (UK GDPR): Information Commissioner's Office](https://ico.org.uk/make-a-complaint/data-protection-complaints/) + +- [United States-California (CCPA): California Privacy Protection Agency](https://www.cppa.ca.gov/webapplications/complaint) + +- [United States-Texas (TDPSA): Office of the Attorney General](https://consumerprotection.texasattorneygeneral.gov/consumercomplaintportal/s/)
diff --git a/docs/activism/toolbox/tip-small-actions-matter.md b/docs/activism/toolbox/tip-small-actions-matter.md index 5e83c9e6..c32371d5 100644 --- a/docs/activism/toolbox/tip-small-actions-matter.md +++ b/docs/activism/toolbox/tip-small-actions-matter.md @@ -40,27 +40,37 @@ But regardless of the resources you have, there's always something you can do to Here are examples of some actions you might be able to do, from small ones to bigger projects: -
+ -โœ๏ธ  Sign a petition related to an ongoing privacy issue, and encourage others to do the same. +
-๐Ÿ’ฌ  Write a social media post about an ongoing campaign from a digital rights organization you care about. +- Sign a petition related to an ongoing privacy issue, and encourage others to do the same. -๐Ÿ—ฃ๏ธ  Write a social media post about an ongoing privacy issue you care about. +- Write a social media post about an ongoing campaign from a digital rights organization you care about. -๐Ÿ“ฎ  Contact your local representatives to tell them how privacy rights are important to you or your organization. +- Write a social media post about an ongoing privacy issue you care about. -๐Ÿ’›  Donate to a privacy organization and promote a privacy project you like. +- Contact your local representatives to tell them how privacy rights are important to you or your organization. -๐Ÿ™Œ  Contribute to a privacy project you like that is looking for volunteers. +- Donate to a privacy organization and promote a privacy project you like. -๐Ÿ“—  Build a web page to inform the public on a privacy issue (e.g. [Patrick Breyer's Chat Control page](https://www.patrick-breyer.de/en/posts/chat-control/)). +- Contribute to a privacy project you like that is looking for volunteers. -๐Ÿ“ข  Build a web form or application to inform the public and facilitate taking action against a specific privacy issue (e.g. [Fight Chat Control](https://fightchatcontrol.eu/), [Stop Online ID Checks](https://www.stoponlineidchecks.org/)). +- Build a web page to inform the public on a privacy issue (e.g. [Patrick Breyer's Chat Control page](https://www.patrick-breyer.de/en/posts/chat-control/)). -โœŠ  Find organizations sharing your values to sign a public joint statement about an ongoing privacy issue. +- Build a web form or application to inform the public and facilitate taking action against a specific privacy issue (e.g. [Fight Chat Control](https://fightchatcontrol.eu/), [Stop Online ID Checks](https://www.stoponlineidchecks.org/)). -๐Ÿ“š  Read more on small and big [tactics you can use for your privacy activism](https://activisthandbook.org/tactics#list-of-tactics) from the Activist Handbook. +- Find organizations sharing your values to sign a public joint statement about an ongoing privacy issue. + +- Read more on small and big [tactics you can use for your privacy activism](https://activisthandbook.org/tactics#list-of-tactics) from the Activist Handbook.
diff --git a/docs/activism/toolbox/tip-start-alliances-not-wars.md b/docs/activism/toolbox/tip-start-alliances-not-wars.md index 772adbef..d5178fd2 100644 --- a/docs/activism/toolbox/tip-start-alliances-not-wars.md +++ b/docs/activism/toolbox/tip-start-alliances-not-wars.md @@ -74,45 +74,47 @@ Here are a few ways that might help to reduce the impact of infighting within th ## Examples of digital rights alliances and coalitions -
+ -๐Ÿง‘โ€โš–๏ธ  **Campaign:** [**Bad Internet Bills (2025)**](https://www.badinternetbills.com/) -
-**Host:** [Fight for The Future](https://www.fightforthefuture.org/) -
-**Participants:** ACLU, Defending Rights & Dissent, EFF, National Coalition Against Censorship, and more. -
-
+
-๐Ÿ‘๏ธโ€๐Ÿ—จ๏ธ  **Campaign:** [**Stop Scanning Me (2022)**](https://stopscanningme.eu) -
-**Host:** [EDRi](https://edri.org/) -
-**Participants:** ApTI, Bits of Freedom, Chaos Computer Club, Digital Courage, EFF, Epicenter Works, Internet Society, La Quadrature du Net, and more. -
-
+- **Campaign:** [**Bad Internet Bills (2025)**](https://www.badinternetbills.com/) -๐Ÿชช  **Campaign:** [**The Nameless Coalition (2015)**](https://act.eff.org/action/dear-facebook-authentic-names-are-authentically-dangerous-for-your-users) -
-**Host:** [EFF](https://www.eff.org/) -
-**Participants:** Access, ACLU, Article 19, Center for Democracy and Technology, Human Rights Watch, OpenMedia, Transgender Law Center, and more. -
-
+ **Host:** [Fight for The Future](https://www.fightforthefuture.org/)
+ **Participants:** ACLU, Defending Rights & Dissent, EFF, National Coalition Against Censorship, and more. +
-โœŠ  **Campaign:** [**Protect Our Privacy Coalition (2013)**](https://openmedia.org/press/item/more-30-organizations-unite-safeguard-canadians-privacy-rights-amid-spy-agency-scandal) -
-**Host:** [OpenMedia](https://openmedia.org/) -
-**Participants:** Amnesty International, BC CLA, Canadian Civil Liberties Association, EFF, FIPA, GreenPeace, Lead Now, and more. -
+- **Campaign:** [**Stop Scanning Me (2022)**](https://stopscanningme.eu) -

+ **Host:** [EDRi](https://edri.org/)
+ **Participants:** ApTI, Bits of Freedom, Chaos Computer Club, Digital Courage, EFF, Epicenter Works, Internet Society, La Quadrature du Net, and more. +
-
-

Coalition donation page example

+- **Campaign:** [**The Nameless Coalition (2015)**](https://act.eff.org/action/dear-facebook-authentic-names-are-authentically-dangerous-for-your-users) -EDRi's Stop Scanning Me coalition provides a great example of collaboration with a [**donation page listing all the coalition members**](https://stopscanningme.eu/en/donate.html) with their countries of origin, and linking to external donation pages. EDRi humbly listed their own donation link at the bottom. We need more strong coalitions like this. + **Host:** [EFF](https://www.eff.org/)
+ **Participants:** Access, ACLU, Article 19, Center for Democracy and Technology, Human Rights Watch, OpenMedia, Transgender Law Center, and more. +
+ +- **Campaign:** [**Protect Our Privacy Coalition (2013)**](https://openmedia.org/press/item/more-30-organizations-unite-safeguard-canadians-privacy-rights-amid-spy-agency-scandal) + + **Host:** [OpenMedia](https://openmedia.org/)
+ **Participants:** Amnesty International, BC CLA, Canadian Civil Liberties Association, EFF, FIPA, GreenPeace, Lead Now, and more. + +
+

Coalition donation page example

+ + EDRi's Stop Scanning Me coalition provides a great example of collaboration with a [**donation page listing all the coalition members**](https://stopscanningme.eu/en/donate.html) with their countries of origin, and linking to external donation pages. EDRi humbly listed their own donation link at the bottom. We need more strong coalitions like this. + +
diff --git a/docs/activism/toolbox/tip-take-time-to-rest.md b/docs/activism/toolbox/tip-take-time-to-rest.md index 4e940339..0f2c3f64 100644 --- a/docs/activism/toolbox/tip-take-time-to-rest.md +++ b/docs/activism/toolbox/tip-take-time-to-rest.md @@ -46,33 +46,43 @@ Unfortunately, activism burnout is quite common. And, in the privacy field, this Additionally, the fact that we have to incessantly push against a tidal wave of new privacy-invasive legislations and technologies is understandingly exhausting. But there are many strategies we can adopt to prevent activism burnout, minimize privacy fatigue, and learn how to rest and valorize self-care as an essential part of our work: -
+ -โ›ต๏ธ  **Take breaks:** When you start feeling completely discouraged about the state of privacy rights in the world, it's time for a break. Take a few days off if you can, and try to enjoy activities that have nothing to do with your privacy advocacy. +
-๐Ÿง   **Take care of your body:** Make sure not to neglect your bodily needs, this should always be a priority. Your body and your brain are the most essential tools you have for your privacy advocacy work. Take care of them first and foremost. +- **Take breaks:** When you start feeling completely discouraged about the state of privacy rights in the world, it's time for a break. Take a few days off if you can, and try to enjoy activities that have nothing to do with your privacy advocacy. -โŒ›๏ธ  **Sleep well:** Prioritize quality sleep and adopt a rigorous [sleep routine](https://sleepresearchfoundation.com/2024/03/03/top-10-tips-to-create-an-ideal-sleep-routine/) with a strict schedule. +- **Take care of your body:** Make sure not to neglect your bodily needs, this should always be a priority. Your body and your brain are the most essential tools you have for your privacy advocacy work. Take care of them first and foremost. -๐Ÿ“ต  **Keep bedtime calm:** Try to avoid reading about stressful privacy news or exciting privacy technologies close to bedtime. This can all wait for you tomorrow. +- **Sleep well:** Prioritize quality sleep and adopt a rigorous [sleep routine](https://sleepresearchfoundation.com/2024/03/03/top-10-tips-to-create-an-ideal-sleep-routine/) with a strict schedule. -๐Ÿ“ฒ  **Separate devices:** If you can afford it, use separate devices for your personal usage and your privacy activism work. This can help keeping a mental barrier between personal and professional, and limiting the "always-on" privacy-advocate mode. +- **Keep bedtime calm:** Try to avoid reading about stressful privacy news or exciting privacy technologies close to bedtime. This can all wait for you tomorrow. -๐Ÿก  **Find friends:** Find a [community of peers](https://discuss.privacyguides.net/) you can talk to. Exchange resources and seek support from your community. Remember that you aren't alone in this battle. +- **Separate devices:** If you can afford it, use separate devices for your personal usage and your privacy activism work. This can help keeping a mental barrier between personal and professional, and limiting the "always-on" privacy-advocate mode. -๐Ÿ™Œ  **Split the work:** Delegate tasks to privacy comrades. Seek allies and [alliances](tip-start-alliances-not-wars.md). Reach out for help, and don't take all the responsibilities of your projects on your own shoulders. Build a team, and learn to trust others with the work. +- **Find friends:** Find a [community of peers](https://discuss.privacyguides.net/) you can talk to. Exchange resources and seek support from your community. Remember that you aren't alone in this battle. -๐ŸŽ‰  **Celebrate!** Take the time to celebrate each victory, no matter how small. Celebrate with your peers too, and never miss an opportunity to [congratulate](tip-give-credit-where-credit-is-due.md) everyone's hard work. +- **Split the work:** Delegate tasks to privacy comrades. Seek allies and [alliances](tip-start-alliances-not-wars.md). Reach out for help, and don't take all the responsibilities of your projects on your own shoulders. Build a team, and learn to trust others with the work. -๐Ÿงณ  **Take vacations:** Plan longer breaks through the year with activities that will have nothing to do with your privacy advocacy work. Make sure they are long enough that you have time to even miss the privacy battlefield, and come back eagerly once you are fully rested. +- **Celebrate!** Take the time to celebrate each victory, no matter how small. Celebrate with your peers too, and never miss an opportunity to [congratulate](tip-give-credit-where-credit-is-due.md) everyone's hard work. -๐Ÿ”‹  **Plan your (temporary) replacement:** If you are in a leadership position, make sure there is a system in place to take over your responsibilities fully when you need time off. You shouldn't be indispensable for your projects to keep going in the short term, and you should have the same access to time off as the rest of your team. As a leader, it's important to valorize rest for your team, leading by example. Rest is essential for you too. +- **Take vacations:** Plan longer breaks through the year with activities that will have nothing to do with your privacy advocacy work. Make sure they are long enough that you have time to even miss the privacy battlefield, and come back eagerly once you are fully rested. -โœŠ  **Keep hope with long-term objectives:** If you feel discouraged by the current state of privacy rights, try to keep in mind the bigger picture. We will lose many fights on the journey to improvement. This is to be expected. But all the work we do matters, including the fights we lose. Try to focus on the movement as a whole, and on advancing privacy rights even just a little in our lifetime. See defeats as opportunities to learn from for the next stronger and better-organized battle. +- **Plan your (temporary) replacement:** If you are in a leadership position, make sure there is a system in place to take over your responsibilities fully when you need time off. You shouldn't be indispensable for your projects to keep going in the short term, and you should have the same access to time off as the rest of your team. As a leader, it's important to valorize rest for your team, leading by example. Rest is essential for you too. -โ˜Ž๏ธ  **Call for help:** If you feel like you are at the end of your rope and might be experiencing symptoms of [burnout](https://www.webmd.com/mental-health/burnout-symptoms-signs), seek professional help to support you. +- **Keep hope with long-term objectives:** If you feel discouraged by the current state of privacy rights, try to keep in mind the bigger picture. We will lose many fights on the journey to improvement. This is to be expected. But all the work we do matters, including the fights we lose. Try to focus on the movement as a whole, and on advancing privacy rights even just a little in our lifetime. See defeats as opportunities to learn from for the next stronger and better-organized battle. -๐Ÿ’›  **Support others:** Don't forget to [support your privacy comrades](tip-support-your-privacy-comrades.md) when you feel well-enough yourself, to prevent exhaustion as a community. +- **Call for help:** If you feel like you are at the end of your rope and might be experiencing symptoms of [burnout](https://www.webmd.com/mental-health/burnout-symptoms-signs), seek professional help to support you. + +- **Support others:** Don't forget to [support your privacy comrades](tip-support-your-privacy-comrades.md) when you feel well-enough yourself, to prevent exhaustion as a community.
diff --git a/docs/activism/toolbox/tip-welcome-beginners.md b/docs/activism/toolbox/tip-welcome-beginners.md index 5aa9f45e..6cd1e4f8 100644 --- a/docs/activism/toolbox/tip-welcome-beginners.md +++ b/docs/activism/toolbox/tip-welcome-beginners.md @@ -18,19 +18,29 @@ Kindness, patience, and compassion are the first steps to attract and retain new ## What to keep in mind to make beginners feel welcomed -
+ -๐Ÿ”ค  **Beware of acronyms:** Do not assume that everyone knows the acronyms you use in your material, even the most common such as VPN (Virtual Private Network). Always make sure to write the whole expression at least once before carrying on with the acronym's letters only. +
-๐Ÿ“Ÿ  **Explain technologies:** As for acronyms, don't assume that everyone has the same knowledge as you when it comes to technology, even the technologies that seem basic to you. Perhaps you have been in tech for so long that you have forgotten not everyone knows what an Operating System (OS) is. Nevertheless, make sure to provide a short explanation or example to keep your content welcoming to beginners. If you talk about Operating Systems, perhaps also add "such as macOS, Windows, or Linux" to make your point more accessible. +- **Beware of acronyms:** Do not assume that everyone knows the acronyms you use in your material, even the most common such as VPN (Virtual Private Network). Always make sure to write the whole expression at least once before carrying on with the acronym's letters only. -1๏ธโƒฃ  **Start with the basics:** Depending on the context, do not neglect to discuss the most basic privacy concepts before jumping in the juicy tech. Fundamental ideas such as consent, data collection, data storage, or encryption are important to master in order to understand the benefits and dangers related to data privacy. Specific tech and services come and go, but **fundamental ideas remain**. Anyone who comprehend well these core concepts will have a much easier time understanding all that follows. +- **Explain technologies:** As for acronyms, don't assume that everyone has the same knowledge as you when it comes to technology, even the technologies that seem basic to you. Perhaps you have been in tech for so long that you have forgotten not everyone knows what an Operating System (OS) is. Nevertheless, make sure to provide a short explanation or example to keep your content welcoming to beginners. If you talk about Operating Systems, perhaps also add "such as macOS, Windows, or Linux" to make your point more accessible. -๐Ÿ™‹  **No stupid questions:** There are no stupid questions, only impatient answerers. Whenever a beginner asks a question that seems obvious to you, refrain from replying with something dry or snarky such as "Google it," or its privacy-equivalent "DuckDuckGo it." This only has for effect to chase people away from our community. If you don't feel like helping, just reply nothing. But if you do want to help, try to find an answer for them. If you are in a rush, something like "Hey! Sorry I don't have the answer, but maybe this [resource](../../basics/why-privacy-matters.md) might be helpful to you!" or "Sorry I'm not sure, but perhaps asking on this [forum](https://discuss.privacyguides.net/) might get you an answer." +- **Start with the basics:** Depending on the context, do not neglect to discuss the most basic privacy concepts before jumping in the juicy tech. Fundamental ideas such as consent, data collection, data storage, or encryption are important to master in order to understand the benefits and dangers related to data privacy. Specific tech and services come and go, but **fundamental ideas remain**. Anyone who comprehend well these core concepts will have a much easier time understanding all that follows. -๐Ÿ†—  **Stay patient and compassionate:** Always stay patient with beginners and newcomers (and everyone else, actually). To keep people fighting with us and grow our movement, we cannot afford to lose anyone just because we felt angry that day. Develop your [empathy skills](tip-support-your-privacy-comrades.md) to provide support and reply with compassion. People stay where they feel safe and welcomed. **Make them feel safe and welcomed.** +- **No stupid questions:** There are no stupid questions, only impatient answerers. Whenever a beginner asks a question that seems obvious to you, refrain from replying with something dry or snarky such as "Google it," or its privacy-equivalent "DuckDuckGo it." This only has for effect to chase people away from our community. If you don't feel like helping, just reply nothing. But if you do want to help, try to find an answer for them. If you are in a rush, something like "Hey! Sorry I don't have the answer, but maybe this [resource](../../basics/why-privacy-matters.md) might be helpful to you!" or "Sorry I'm not sure, but perhaps asking on this [forum](https://discuss.privacyguides.net/) might get you an answer." -๐Ÿ“š  **Do not confound lack of knowledge with lack of intelligence:** Everyone has a different set of knowledge. Lack of knowledge doesn't mean someone isn't intelligent, it just means they haven't come in contact with this area of knowledge yet. They probably know a lot of things you don't know at all. Be careful not to sound patronizing when communicating with newcomers (or anyone else really). This is a behavior sadly too common in the privacy community, and we all need to work on this to create an environment that is more welcoming and enjoyable for everyone. +- **Stay patient and compassionate:** Always stay patient with beginners and newcomers (and everyone else, actually). To keep people fighting with us and grow our movement, we cannot afford to lose anyone just because we felt angry that day. Develop your [empathy skills](tip-support-your-privacy-comrades.md) to provide support and reply with compassion. People stay where they feel safe and welcomed. **Make them feel safe and welcomed.** + +- **Do not confound lack of knowledge with lack of intelligence:** Everyone has a different set of knowledge. Lack of knowledge doesn't mean someone isn't intelligent, it just means they haven't come in contact with this area of knowledge yet. They probably know a lot of things you don't know at all. Be careful not to sound patronizing when communicating with newcomers (or anyone else really). This is a behavior sadly too common in the privacy community, and we all need to work on this to create an environment that is more welcoming and enjoyable for everyone.
diff --git a/includes/abbreviations.en.txt b/includes/abbreviations.en.txt index de1c9c55..843e20f6 100644 --- a/includes/abbreviations.en.txt +++ b/includes/abbreviations.en.txt @@ -16,6 +16,7 @@ *[DoQ]: DNS over QUIC *[DoH3]: DNS over HTTP/3 *[DoT]: DNS over TLS +*[DPA]: Data Protection Authority *[DPI]: Deep Packet Inspection identifies and blocks packet with specific payloads *[E2EE]: End-to-End Encryption/Encrypted *[ECS]: EDNS Client Subnet