Feeds

Mozilla explains user-tracking proposal for Firefox

Telemetry has no UUID, Metrics Data Ping might

Intelligent flash storage arrays

In a story published yesterday your humble Reg writer wrongly confused Mozilla's Telemetry project with the open-source outfit's so-called Metrics Data Ping proposal. Mozilla has been in touch to clear things up.

The org's global privacy and policy boss Alex Fowler kindly explained the differences between the two systems to us.

"The Metrica Data Ping proposal is not Telemetry. Telemetry is a component of Firefox that collects anonymous browser performance data for around 200 data points. It's voluntary, doesn't include a universally unique identifier (UUID), and is under the user's control," he said.

As we noted in our earlier piece, the Telemetry project that transmits data via secure encryption was slotted into Mozilla's browser, Firefox 7, in September last year.

Fowler continued:

The Metrics Data Ping is currently a proposal under consideration to understand usage statistics. The proposal is to begin collecting a limited data set of fewer than 30 non-personal data elements in a statistically valid approach.

The current thinking is for the ping to be opt-out and introduce a UUID to enable longitudinal analysis. Users would be provided notice of the data collection and how it will contribute to the stability and performance of Firefox, the ability to view the non-personal data collected, and also to opt-out of the collection.

In addition, the team is developing other privacy-enhancing sampling techniques to further limit the collection wherever possible.

Mozilla works in the open and we are under active discussions about various approaches to determine how to measure Firefox usage so that we can improve the features and performance for all users.

As with any Mozilla project or offering we will make sure that if the proposal is integrated into Firefox, it's in accordance with the Mozilla's Privacy Principles and gives users complete control over their data.

Our original story wrongly suggested that a proposal had been put forward for Telemetry to have the longitudinal analysis UUID loaded into it. However, it is in fact being mulled over for use with Mozilla's Metrics Data Ping.

Thanks to those readers who got in touch to point out the errors in that story, and we sincerely hope this piece clarifies Mozilla's current position on tracking users online.

The outfit's privacy policy is here, while the public and sometimes fiery discussion about the Metrics Data Ping proposal can be viewed here.

It's a debate well worth getting stuck into. ®

Remote control for virtualized desktops

More from The Register

next story
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
Facebook, working on Facebook at Work, works on Facebook. At Work
You don't want your cat or drunk pics at the office
Soz, web devs: Google snatches its Wallet off the table
Killing off web service in 3 months... but app-happy bonkers are fine
First in line to order a Nexus 6? AT&T has a BRICK for you
Black Screen of Death plagues early Google-mobe batch
Microsoft adds video offering to Office 365. Oh NOES, you'll need Adobe Flash
Lovely presentations... but not on your Flash-hating mobe
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
The hidden costs of self-signed SSL certificates
Exploring the true TCO for self-signed SSL certificates, including a side-by-side comparison of a self-signed architecture versus working with a third-party SSL vendor.