PRIVACY ISSUES at NIC.FUNET.FI All file accesses, logins etc. are logged with time, userid (if available), URL, IP-address, client type and version, referer, size of transfer, sessionid etc. and the logs are kept as long as it's needed to satisfy administrative, statistical, security and legislative requirements. We don't transfer log information outside EU or give them to third parties for advertising. There may however be some, possibly mirrored, HTML files or links that point to external content like HTML, images or javascript from third party servers beyond our control which may have their own logging policies. These pages may or may not have their own privacy documentation links. Please check the HTML page source code or use suitable tools to check any external content in case you are concerned. Or you can always use good old FTP for browsing and downloading the files you want without worrying what external things some web pages may contain. FTP is logged only locally. The plain directory listings are generated by apache directory module which may display header or footer HTML files if they exist in the directory. E.g. some linux distributions use them to provide additional information. If you want to be totally unknown, you must not use FTP, WWW, Rsync or other internet services as it can never be used without revealing at least the IP address of the host, proxy or firewall your connection is coming from. Even if you had a firewall or proxy somewhere in between, they often keep track who's using them. The public FTP use is anonymous, which means that you can give any userid you wish and if it's unknown locally, you will be logged in to the public FTP repository and we'll log just your IP under userid ftp along with the information of the transferred files like name, datetime, sessionid, duration and size of the transfer. It's however customary to use as usernames either ftp or anonymous. Password can be anything. For more information on the FTP server and it's log formats please read https://download.pureftpd.org/pub/pure-ftpd/doc/README Use of public web services doesn't normally require login or userid but we collect the usual web logs that apache produces, information on what might be collected is in it's documentation http://httpd.apache.org/docs/current/mod/mod_log_config.html Use of public rsync is provided without logins. Rsync server logs IP-address, domain name, datetime, requests, transferred filenames, bytes, possible errors, session id etc. For more information please read the source code available at http://www.nic.funet.fi/pub/mirrors/samba.org/pub/rsync/ For administrative and other restricted services like ssh and gridftp we usually require logins that we do log along with personally identifiable userid or certificate information and handle according to our privacy policies. For statistics and performance analysis we may use the domain part of your hostname, not the hostname itself which in practice means organization and country level statistics which we need to maintain the service and it's funding. Please try to keep your reverse DNS working, especially if you are under .fi domain since we will try to give preference to finnish users in case we will someday again have to impose domain based speed restrictions on the service like in the early days of the Internet. We may also use log information to analyze and prevent possible missuse of our resources and improve the performance of our services. We may for example limit the usage from certain IP addresses or domains if they cause unnecessary load or other issues for the service. Also access to certain files, directories, web-pages and applications may be limited and monitored. In case of possible abuse we may also try to use the IP address registries to contact your network administration or authorities via our security team or the Funet CERT Web, rsync and ftp sercer log files which are older than 424 days are automatically anonymized by zeroing the last bits of the address or removing the host part of the domain with the intention of keeping the possibility of country and organization level statistics analysis after the rotation. Later they may be removed or aggregated. Information concerning the provenance of files available in the server we try to keep as long as the individual files or a mirror collection is available on the server. This applies to maintainers of files as well as those who have sent us contributions or requests concerning the content of the server. For mirrors we just keep technical logs for some time and the provenance of the files is the responsibility of the master mirror which usually can be deduced from the path name /pub/mirrors/some.domain/dir/ You can contact Funet NOC in case you have questions about nic.funet.fi. There's more general information about NIC in the https://www.nic.funet.fi/README CSC/Funet is the data controller and processor of the personal data at nic.funet.fi. For more information about CSC please see https://www.csc.fi/ Network Operations Center CSC - IT Center for Science Ltd P.O. Box 405 (Keilaranta 14) 02101 Espoo +358 9 457 2704 (8:30-16 finnish time) noc(at)funet.fi CSC's data protection officer: privacy@csc.fi For more information on privacy related information can be found at https://www.csc.fi/privacy.