1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
|
<?xml version="1.0" encoding="utf-8"?>
<!-- This Source Code Form is subject to the terms of the Mozilla Public
- License, v. 2.0. If a copy of the MPL was not distributed with this
- file, You can obtain one at http://mozilla.org/MPL/2.0/. -->
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd"[
<!ENTITY % brandDTD SYSTEM "chrome://branding/locale/brand.dtd" >
%brandDTD;
]>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Privacy on the Internet</title>
<link rel="stylesheet" href="helpFileLayout.css"
type="text/css"/>
</head>
<body>
<h1 id="using_privacy_features">Using Privacy Features</h1>
<p>Your browser includes features you can use to enhance the privacy and
security of your personal information. The sections that follow describe how
your browser can help you control cookies, passwords, and images while you
are surfing the Internet.</p>
<p>For information about related &brandShortName; security features, see
<a href="mailnews_security.xhtml">Signing & Encrypting Messages</a> and
<a href="using_certs_help.xhtml">Using Certificates</a>.</p>
<div class="contentsBox">Privacy topics:
<ul>
<li><a href="#privacy_on_the_internet">Privacy on the Internet</a></li>
<li><a href="using_priv_help.xhtml#using_the_cookie_manager">Using the
Cookie Manager</a></li>
<li><a href="using_priv_help.xhtml#using_the_password_manager">Using the
Password Manager</a></li>
<li><a href="using_priv_help.xhtml#clearing_private_data">Clearing Private
Data</a></li>
<li><a href="using_priv_help.xhtml#browsing_in_a_private_window">Browsing
in a Private Window</a></li>
<li><a href="using_priv_help.xhtml#encrypting_stored_sensitive_information">Encrypting
Stored Sensitive Information</a></li>
<li><a href="using_priv_help.xhtml#managing_images">Managing Images</a></li>
<li><a href="cs_priv_prefs_popup.xhtml#controlling_popups">Controlling Popups</a></li>
<li><a href="privsec_help.xhtml">Privacy & Security Preferences</a></li>
</ul>
</div>
<h1 id="privacy_on_the_internet">Privacy on the Internet</h1>
<p>This section summarizes some background information about privacy on the
Internet. It also describes several things you can do to help safeguard your
own privacy. It is not intended to provide a complete description of Internet
privacy issues.</p>
<div class="contentsBox">In this section:
<ul>
<li><a href="#what_information_does_my_browser_give_to_a_website">What
Information Does My Browser Give to a Website?</a></li>
<li><a href="#what_are_cookies_and_how_do_they_work">What Are Cookies, and
How Do They Work?</a></li>
<li><a href="#why_and_how_are_websites_tracking_me">Why and How Are
Websites Tracking Me?</a></li>
<li><a href="#how_can_i_control_web_pages_in_email_messages">How Can I
Control Web Pages in Email Messages?</a></li>
<li><a href="#how_can_i_make_sure_unauthorized_people_dont_use_information_about_me">How
Can I Make Sure Unauthorized People Don't Use Information About
Me?</a></li>
</ul>
</div>
<h2 id="what_information_does_my_browser_give_to_a_website">What Information
Does My Browser Give to a Website?</h2>
<p>When your browser displays a web page—for example, each time you click
a link or type a URL, or when a web page is displayed in an email
message—it gives certain kinds of information to the website. This
information may include (but is not limited to) your operating environment,
your Internet address, and the page you're coming from.</p>
<h3>Operating Environment</h3>
<p>The website is told something about your operating environment, such as your
browser type and operating system. This helps the website present the page in
the best way for your screen. For example, the website might learn that you
use &brandShortName; 2.19 on a Windows 7 computer.</p>
<h3 id="internet_address">Internet Address</h3>
<p>Your browser must tell the website your Internet address (also known as the
Internet Protocol, or IP address) so the website knows where to send the page
you are requesting. The website can't present the page you want to see
unless it knows your IP address.</p>
<p>Your IP address can be either temporary or fixed (static).</p>
<p>If you connect to the Internet through a standard modem that's attached
to your phone line, then your Internet service provider (ISP) may assign you
a temporary IP address each time you log on. You use the temporary IP address
for the duration of your Internet session—for example, until you sign
off or hang up your dial-up connection, or otherwise end your computer's
live connection with the Internet. Each ISP has many IP addresses, and they
assign the addresses at random to users.</p>
<p>If you have DSL, a cable modem, or a fiber-optic connection, you may have a
fixed IP address that you use every time you connect.</p>
<p>Your IP address is not the same as your email address.</p>
<h3>Referring Page</h3>
<p>The website is also told which page you were reading when you clicked a link
to see one of the website's pages. This allows the website to know which
website referred you. Or, as you traverse the website, it allows the website
to know which of its pages you came from.</p>
<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>
<h2 id="what_are_cookies_and_how_do_they_work">What Are Cookies, and How Do
They Work?</h2>
<p>A cookie is a small bit of information used by some websites. When you
visit a website that uses cookies, the website might ask your browser to place
one or more cookies on your hard disk.</p>
<p>Later, when you return to the website, your browser sends back the cookies
that belong to the website.</p>
<p>When you are using the default cookie settings, this activity is invisible
to you, and you won't know when a website is setting a cookie or when
your browser is sending a website's cookie back. However, you can set
your preferences so that you will be asked before a cookie is set. For
information on how to do this, see
<a href="using_priv_help.xhtml#cookies">Privacy & Security Preferences -
Cookies</a>.</p>
<h3>How Do Websites Use Cookie Information?</h3>
<p>Cookies allow a website to know something about your previous visits. For
example, if you typically search for local weather or purchase books at a
website, the website may use cookies to remember what city you live in or what
authors you like, so it can make your next visit easier and more useful.</p>
<p>Some websites publish privacy policies that describe how they use the
information they gather.</p>
<h3 id="what_are_third-party_cookies">What Are Third-Party Cookies?</h3>
<p>If your browser stores a website's cookie, it will return the cookie
only to that particular website. Your browser will not provide one website
with cookies set by another. Since a website can only receive its own cookies,
it can learn about your activities while you are at that website but not your
activities in general while surfing the Web.</p>
<p>But sometimes a website displays content that is hosted on another website.
That content can be anything from an image to text or an advertisement.
The other website that hosts such elements also has the ability to store a
cookie in your browser, even though you don't visit the website directly.
</p>
<p>Cookies that are stored by a website other than the one you are visiting are
called <strong>third-party cookies</strong> or <strong>foreign
cookies</strong>. Websites sometimes use third-party cookies with
<strong>transparent GIFs</strong>, which are special images that help websites
count users, track email responses, learn more about how visitors use the
website, or customize your browsing experience. (Transparent GIFs are also
known as web beacons or web bugs.)</p>
<p>If you want, you can <a href="using_priv_help.xhtml#cookies">adjust your
cookie preferences</a> so that websites can store ordinary cookies but not
third-party ones, or only for those sites that you have previously visited.
</p>
<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>
<h2 id="why_and_how_are_websites_tracking_me">Why and How Are Websites
Tracking Me?</h2>
<p>Websites are frequently interested in how they are used and by whom.
Thus, they may perform analytics on your browsing behavior, either by
themselves, or by utilizing a third-party service.</p>
<p>Motivations for such user tracking may be a more personalized browsing
experience, e.g., by offering you services or products corresponding to your
previous browsing pattern, thus making it more likely that you are interested
in those. Third-party services are mostly interested in placing advertisements
that match your interests, thus making it more likely that you would click on
those ads, which in turn generates revenue.</p>
<p>Of course, this list isn't all inclusive, other reasons may exist to
track the user's browsing behavior. To summarize, the trade-off is:</p>
<ul>
<li><strong>Pros</strong>: Tracking of the user's browsing activity
allows the website to provide a more specific browsing experience, by
analyzing and matching your interests. You may even get offers you
wouldn't receive without prior knowledge of your usage pattern.</li>
<li><strong>Cons</strong>: In most cases, especially with third-party
tracking services, the information is gathered without the user's
consent, and its usage is not transparent. Comprehensive user profiling
across websites and over long periods of time may be considered intrusive
and a questionable practice violating the user's privacy.</li>
</ul>
<h3>What Are the Mechanisms of User Tracking?</h3>
<p>There isn't any single tracking mechanism, rather several methods
exist. For example, a website may employ one or more of these methods:</p>
<ul>
<li><a href="#what_are_cookies_and_how_do_they_work">Cookies</a>: This is
the most direct form of user tracking. When visiting a website for the
first time, a random but unique identifier is created by that site and
stored as a cookie in &brandShortName;. When returning to the website,
this cookie associates you with any previous visit to that site. This is
especially effective for third-party tracking given that such a service
can collect data from multiple websites they have contracts with based on
just a single tracking cookie.</li>
<li><a href="#internet_address">Internet Address</a>: The IP address
identifies your location on your provider's network. It may also
serve as a reference to your geographical location. Even without cookies,
multiple accesses to one or more websites from the same location can be
associated with each other in this way.</li>
<li><a href="#what_information_does_my_browser_give_to_a_website">Browser
Fingerprinting</a>: This method attempts to identify specific users based
on the characteristics of the browser that they are using. Such
characteristics include browser type and version, platform used, language
preferences, and possibly installed plugins or add-ons.</li>
</ul>
<h3>What Can I Do to Prevent User Tracking?</h3>
<p>In general, there is no complete protection against unwanted tracking of
one's browsing activities. However, there are a couple of ways to make
it harder to get tracked:</p>
<ul>
<li><a href="privsec_help.xhtml#privacy_and_security">Do Not Track</a>:
This is a method that allows users to explicitly opt out of their
browsing behavior being tracked. &brandShortName; supports sending
<q>Do Not Track</q> requests to websites, but they are <em>not</em>
obligated to honor such requests.</li>
<li><a href="privsec_help.xhtml#privacy_and_security">Site blocking</a>:
&brandShortName; can block content that has been identified as serving
the purpose of user tracking based on a list downloaded periodically
from a server. In this way, connections to such <em>known</em> tracking
sites can be prevented upfront.</li>
<!-- NOTE: link "Data Manager" below once bug 599097 has been fixed -->
<li><a href="using_priv_help.xhtml#cookies">Cookies</a>: The power of
tracking cookies is their persistence across sessions. Thus, when you
restart &brandShortName;, the identifying cookie will still be sent to
the website performing the analytics. One measure against third-party
tracking is to prohibit third-party cookies altogether; another option is
the restriction of cookies to the current session only. Some websites may
no longer function correctly, but you can add exceptions to such sites in
the Data Manager or with the Cookie Manager options in the Tools menu.</li>
<li><a href="nav_help.xhtml#plugins">Plugins</a>: Obscure plugins make
browser fingerprinting easier. Thus, if you need such plugins for some
websites but not in general, disable them in the Add-ons Manager until
you need them, to avoid that they are disclosed to tracking sites.</li>
<li><a href="customize_help.xhtml#add-ons">Add-ons</a>: There is a variety
of extensions available for privacy & security support. Some of them
will block unwanted content from advertisers or tracking services, others
provide more control on private data collected by plugins (e.g., Flash
cookies), or when and how to run scripts or embedded content.</li>
</ul>
<p><strong>Note</strong>: The issues related to user tracking are complex.
This description is not intended to be complete but to provide you with some
basic information on this topic.</p>
<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>
<h2 id="how_can_i_control_web_pages_in_email_messages">How Can I Control Web
Pages in Email Messages?</h2>
<p>You can disable cookies, images, and plugins completely (JavaScript is
always disabled) for web pages that are received as part of email
messages.</p>
<p>While it may be convenient to enable some or all of these capabilities when
you're browsing the web, they may not be necessary in single web pages
sent as attachments to messages.</p>
<p>For information on enabling or disabling cookies, images, and plugins in
email messages, see the following sections:</p>
<ul>
<li><a href="using_priv_help.xhtml#cookies">Privacy & Security
Preferences - Cookies</a></li>
<li><a href="mailnews_preferences.xhtml#message_display">Mail & Newsgroups
Preferences - Message Display</a></li>
<li><a href="cs_nav_prefs_advanced.xhtml#scripts_and_plugins">Advanced
Preferences - Scripts & Plugins</a></li>
</ul>
<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>
<h2 id="how_can_i_make_sure_unauthorized_people_dont_use_information_about_me">How
Can I Make Sure Unauthorized People Don't Use Information About Me?</h2>
<p>The best way to keep your information private is to read the privacy
policies for the websites you visit and the Internet services you use, and
to be cautious about giving out your personal information online.</p>
<p>The Internet is a public network. When you send your name, phone number,
address, and other personal information over the network (via a web page,
email, or any other method), it is possible that someone else may be able to
intercept it.</p>
<p>Here are some questions you might ask about a website's privacy
policy:</p>
<ul>
<li>What kinds of personal information is this website gathering?</li>
<li>How will the website use the information?</li>
<li>Will the website share the information with others and do I have choices
regarding the use of any shared information?</li>
<li>Can I access some or all of the information a website gathers about me, in
order to inspect or update it?</li>
<li>How does the website protect the information?</li>
<li>How do I contact the website if I have questions or problems?</li>
</ul>
<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>
</body>
</html>
|