[IAEP] Sugar network / School Network

[Dave Crossland]

Hi

On 16 May 2016 at 23:20, Samuel Greenfeld <samuel at greenfeld.org> wrote:

>
> On Mon, May 16, 2016 at 10:09 PM, Dave Crossland <dave at lab6.com> wrote:
>
>> Hi!
>>
>> On 16 May 2016 at 19:40, Samuel Greenfeld <samuel at greenfeld.org> wrote:
>>
>>> In general, getting information about children using a product targeted
>>> at them is a bit of a legal minefield.
>>>
>>
>> Fortunately I'm not interested in information about children :)
>>
>
> Getting information about how they use Sugar (rough age/grade, source IP
> Address, etc.) may count as getting information about them.
>

I'm not interested in age/grade, or their specific IP addresses :)

What information do you think is safe to collect?


> There are countries which don't allow anything about younger children or
>>> what they do online to be known without parental and/or school consent.
>>> Said consent may require proving the adult is actually an adult and not a
>>> child providing an incorrect date of birth.
>>>
>>
>> Which countries? :)
>>
>
> The United States has COPPA, the EU has Directive 95/46/EC, Australia
> might be using the Privacy Act 1988 for this.
>
> Canada may not have a separate act but current interpretation considers
> younger children's information as more sensitive under PIPEDA.
> https://www.priv.gc.ca/resource/fs-fi/02_05_d_62_tips_e.asp
>
> In any country screwing up can result in significant consequences:
> https://www.priv.gc.ca/cf-dc/2014/2014_011_1007_e.asp
>
> https://www.ftc.gov/news-events/press-releases/2015/12/two-app-developers-settle-ftc-charges-they-violated-childrens
>

Both these seem to be related to _children’s personal information_; I don't
think anyone here is interested in that.


> Google kind of hints at the environment with their minimum ages for
> accounts:
> https://support.google.com/accounts/answer/1350409?hl=en
>
> Privacy International notes that in 2014, over 100 countries had what they
> considered "comprehensive data protection legislation".  So don't expect me
> to know them all.
>

This is great stuff! Thanks for sharing :)


> Historically Sugar Labs has been non-profit, and probably too tiny to get
>>> on the radar.  But before social and/or metric features get incorporated
>>> into Sugar's core, it would be best to check with the lawyers as to how to
>>> do it.
>>
>>
>> Which lawyers? :)
>> --
>>
>
> OLPC had and likely still has one on staff to handle these sorts of
> issues, along with a full-service legal firm with specialists in this area.
>
> Sugar Labs probably would have to start with the SFC and see what they
> recommend.
>

Since Sugar is packaged and distributed by OLPC, perhaps the OLPC lawyer
would be willing to review this. How can I contact them?

-- 
Cheers
Dave
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sugarlabs.org/archive/iaep/attachments/20160517/71282e8b/attachment-0001.html>