What information do we collect, and why?

We collect information from you when you register on our site and gather data when you participate in the forum by reading, writing, and evaluating the content shared here.

When registering on our site, you may be asked to enter your name and e-mail address. You may, however, visit our site without registering. Your e-mail address will be verified by an email containing a unique link. If that link is visited, we know that you control the e-mail address.

When registered and posting, we record the IP address that the post originated from. We also may retain server logs which include the IP address of every request to our server.

What do we use your information for?

Any of the information we collect from you may be used in one of the following ways:

  • To personalize your experience — your information helps us to better respond to your individual needs.
  • To improve our site — we continually strive to improve our site offerings based on the information and feedback we receive from you.
  • To improve customer service — your information helps us to more effectively respond to your customer service requests and support needs.
  • To send periodic emails — The email address you provide may be used to send you information, notifications that you request about changes to topics or in response to your user name, respond to inquiries, and/or other requests or questions.

How can I make choices about data collection?

You can make choices about how data about is used on the settings page for your account. When a forum uses access restrictions that vary by category, you can choose who will see your post by choosing the appropriate category.

How do we protect your information?

We implement a variety of security measures to maintain the safety of your personal information when you enter, submit, or access your personal information.

Do you comply with the EU General Data Protection Regulation?

We respect privacy rights under Regulation (EU) 2016/679, the European Union’s General Data Protection Regulation (GDPR). Information that GDPR requires us to give can be found throughout this privacy notice. So can information about specific rights, like access, rectification, erasure, data portability, and objection to automated decision-making.

Where can I access data about me?

You can see your account data at any time by visiting your account page on the forum. Your account page also lists your posts and other activity on the forum.

Your account activity page also includes a link to download all of your activity in standard comma-separated values format.

How can I change or erase data about me?

You can change your account data at any time by visiting the profile settings page for your account. The settings for a particular forum may also allow you to close your account, on the settings page for your account. Closing your account starts a process of erasing or anonymizing our records of data you provided for your account. Forum administrators can also erase and anonymize accounts.

Depending on the settings for your particular forum, you may also be able to edit, anonymize, or erase your posts. When you edit posts, we will keep all versions of your posts. Forum administrators can view old versions of posts, and optionally make them visible to other forum visitors.

Do you make automated decisions based on data about me?

We use data about your posts and other activity on many forums to make automated decisions about whether your posts to our forums are spam. When Akismet decides that a post is likely spam, the forum refuses to accept the post.

If you think a post has been wrongly blocked or removed, contact an administrator of your forum. They can override the decision that a post was spam.

We may use data about your posts and activity to award you badges and calculate a trust level for your account. Your trust level may affect how you can participate in the forum, such as whether you can upload images, as well as give you access to moderation and management powers in the forum. Your trust level therefore reflects forum administrators’ confidence in you, and their willingness to delegate community management functions, like moderation.

If you think your trust level has been set incorrectly, contact an administrator. They can manually adjust the trust level of your account.

Doe you share data about me with others?

We share account data with others as mentioned in the section about account data.

We share data about your posts and other forum activity with others as mentioned in the section about account data.

Service Privacy Notice Description
Akismet https://automattic.com/privacy/ Reduces spam posts on some forums
Google Analytics https://www.google.com/analytics/terms/ Compiles visitor statistics. You can opt out of Google Analytics using a browser extension.
CDCK https://www.discourse.org/privacy Provides hosting service for our community.
Google Fonts https://privacy.google.com/businesses/compliance/ Represents the correct fonts

What is your data retention policy?

We will make a good faith effort to:

  • Retain server logs containing the IP address of all requests to this server no more than 90 days.
  • Retain the IP addresses associated with registered users and their posts no more than 5 years.

Do we use cookies?

Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow). These cookies enable the site to recognize your browser and, if you have a registered account, associate it with your registered account.

We use cookies to understand and save your preferences for future visits and compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future. We may contract with third-party service providers to assist us in better understanding our site visitors. These service providers are not permitted to use the information collected on our behalf except to help us conduct and improve our business.

Name Essential Expires Description
email Y Session Used during account creation
destination_url Y Session Used during login to redirect to the requested page
sso_destination_url Y Session Used during SSO login to redirect to the requested page
fsl Y Session Full screen login client setting
theme_key Y Forever Client theme personalization. Only used when “Make this my default theme on all my devices” unselected.
cn Y Forever Client clear notifications. I’m counting this as user input instead of personalization because it doesn’t make sense to ‘undo’ or change cleared notifications.
_bypass_cache Y Session Used with ‘fsl’ for full screen login
_t Y 1440 hours User authentication token cookie. SiteSetting.maximum_session_age.hours.from_now
_forum_session Y Session Session cookie
dosp Y next page view Temoporary cookie that informs client denial of service protection is in place.
__profilin N Session Developer only, used by rack-mini-profiler to bypass work
_ga N 2 years Google Analytics cookie. ONLY set if configured to use GA
_gat N 2 years Google Analytics cookie. ONLY set if configured to use GA
_gid N 24 hours Google Analytics cookie. ONLY set if configured to use GA
cookieconsent_status N 24 hours Temporary cookie that saves status of user cookie consent

Non-essential cookies are used for analytics, personalized content and ads. These cookies shouldn’t be written or read on first page load for citizens of the EU.

Do we disclose any information to outside parties?

We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information. This does not include trusted third parties who assist us in operating our site, conducting our business, or servicing you, so long as those parties agree to keep this information confidential. We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others rights, property, or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

Third party links

Occasionally, at our discretion, we may include or offer third party products or services on our site. These third party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

Online Privacy Policy Only

This online privacy policy applies only to information collected through our site and not to information collected offline.

Your Consent

By using our site, you consent to our web site privacy policy.

Changes to our Privacy Policy

If we decide to change our privacy policy, we will post those changes on this page.

This document was last updated September 25, 2019.

How can I contact you about privacy?

You can send questions and complaints to:
community@workpath.com

Workpath GmbH
Nymphenburger Straße 86
80636 München
Deutschland