summaryrefslogtreecommitdiffstats
path: root/comm/suite/locales/en-US/chrome/common/help/privacy_help.xhtml
blob: 67ea412bfc5b3935a5f87adcb4f8a467168badf4 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
<?xml version="1.0" encoding="utf-8"?>
<!-- This Source Code Form is subject to the terms of the Mozilla Public
   - License, v. 2.0. If a copy of the MPL was not distributed with this
   - file, You can obtain one at http://mozilla.org/MPL/2.0/. -->


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
  "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd"[
  <!ENTITY % brandDTD SYSTEM "chrome://branding/locale/brand.dtd" >
  %brandDTD;
]>

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Privacy on the Internet</title>
<link rel="stylesheet" href="helpFileLayout.css"
  type="text/css"/>
</head>
<body>

<h1 id="using_privacy_features">Using Privacy Features</h1>

<p>Your browser includes features you can use to enhance the privacy and
  security of your personal information. The sections that follow describe how
  your browser can help you control cookies, passwords, and images while you
  are surfing the Internet.</p>

<p>For information about related &brandShortName; security features, see
  <a href="mailnews_security.xhtml">Signing &amp; Encrypting Messages</a> and
  <a href="using_certs_help.xhtml">Using Certificates</a>.</p>

<div class="contentsBox">Privacy topics:
  <ul>
    <li><a href="#privacy_on_the_internet">Privacy on the Internet</a></li>
    <li><a href="using_priv_help.xhtml#using_the_cookie_manager">Using the
      Cookie Manager</a></li>
    <li><a href="using_priv_help.xhtml#using_the_password_manager">Using the
      Password Manager</a></li>
    <li><a href="using_priv_help.xhtml#clearing_private_data">Clearing Private
      Data</a></li>
    <li><a href="using_priv_help.xhtml#browsing_in_a_private_window">Browsing
      in a Private Window</a></li>
    <li><a href="using_priv_help.xhtml#encrypting_stored_sensitive_information">Encrypting
      Stored Sensitive Information</a></li>
    <li><a href="using_priv_help.xhtml#managing_images">Managing Images</a></li>
    <li><a href="cs_priv_prefs_popup.xhtml#controlling_popups">Controlling Popups</a></li>
    <li><a href="privsec_help.xhtml">Privacy &amp; Security Preferences</a></li>
  </ul>
</div>

<h1 id="privacy_on_the_internet">Privacy on the Internet</h1>

<p>This section summarizes some background information about privacy on the
  Internet. It also describes several things you can do to help safeguard your
  own privacy. It is not intended to provide a complete description of Internet
  privacy issues.</p>

<div class="contentsBox">In this section:
  <ul>
    <li><a href="#what_information_does_my_browser_give_to_a_website">What
      Information Does My Browser Give to a Website?</a></li>
    <li><a href="#what_are_cookies_and_how_do_they_work">What Are Cookies, and
      How Do They Work?</a></li>
    <li><a href="#why_and_how_are_websites_tracking_me">Why and How Are
      Websites Tracking Me?</a></li>
    <li><a href="#how_can_i_control_web_pages_in_email_messages">How Can I
      Control Web Pages in Email Messages?</a></li>
    <li><a href="#how_can_i_make_sure_unauthorized_people_dont_use_information_about_me">How
      Can I Make Sure Unauthorized People Don&apos;t Use Information About
      Me?</a></li>
    </ul>
</div>

<h2 id="what_information_does_my_browser_give_to_a_website">What Information
  Does My Browser Give to a Website?</h2>

<p>When your browser displays a web page&mdash;for example, each time you click
  a link or type a URL, or when a web page is displayed in an email
  message&mdash;it gives certain kinds of information to the website. This
  information may include (but is not limited to) your operating environment,
  your Internet address, and the page you&apos;re coming from.</p>

<h3>Operating Environment</h3>

<p>The website is told something about your operating environment, such as your
  browser type and operating system. This helps the website present the page in
  the best way for your screen. For example, the website might learn that you
  use &brandShortName;&nbsp;2.19 on a Windows&nbsp;7 computer.</p>

<h3 id="internet_address">Internet Address</h3>

<p>Your browser must tell the website your Internet address (also known as the
  Internet Protocol, or IP address) so the website knows where to send the page
  you are requesting. The website can&apos;t present the page you want to see
  unless it knows your IP address.</p>

<p>Your IP address can be either temporary or fixed (static).</p>

<p>If you connect to the Internet through a standard modem that&apos;s attached
  to your phone line, then your Internet service provider (ISP) may assign you
  a temporary IP address each time you log on. You use the temporary IP address
  for the duration of your Internet session&mdash;for example, until you sign
  off or hang up your dial-up connection, or otherwise end your computer&apos;s
  live connection with the Internet. Each ISP has many IP addresses, and they
  assign the addresses at random to users.</p>

<p>If you have DSL, a cable modem, or a fiber-optic connection, you may have a
  fixed IP address that you use every time you connect.</p>

<p>Your IP address is not the same as your email address.</p>

<h3>Referring Page</h3>

<p>The website is also told which page you were reading when you clicked a link
  to see one of the website&apos;s pages. This allows the website to know which
  website referred you. Or, as you traverse the website, it allows the website
  to know which of its pages you came from.</p>

<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>

<h2 id="what_are_cookies_and_how_do_they_work">What Are Cookies, and How Do
  They Work?</h2>

<p>A cookie is a small bit of information used by some websites. When you
  visit a website that uses cookies, the website might ask your browser to place
  one or more cookies on your hard disk.</p>

<p>Later, when you return to the website, your browser sends back the cookies
  that belong to the website.</p>

<p>When you are using the default cookie settings, this activity is invisible
  to you, and you won&apos;t know when a website is setting a cookie or when
  your browser is sending a website&apos;s cookie back. However, you can set
  your preferences so that you will be asked before a cookie is set. For
  information on how to do this, see
  <a href="using_priv_help.xhtml#cookies">Privacy &amp; Security Preferences -
    Cookies</a>.</p>

<h3>How Do Websites Use Cookie Information?</h3>

<p>Cookies allow a website to know something about your previous visits. For
  example, if you typically search for local weather or purchase books at a
  website, the website may use cookies to remember what city you live in or what
  authors you like, so it can make your next visit easier and more useful.</p>

<p>Some websites publish privacy policies that describe how they use the
  information they gather.</p>

<h3 id="what_are_third-party_cookies">What Are Third-Party Cookies?</h3>

<p>If your browser stores a website&apos;s cookie, it will return the cookie
  only to that particular website. Your browser will not provide one website
  with cookies set by another. Since a website can only receive its own cookies,
  it can learn about your activities while you are at that website but not your
  activities in general while surfing the Web.</p>

<p>But sometimes a website displays content that is hosted on another website.
  That content can be anything from an image to text or an advertisement.
  The other website that hosts such elements also has the ability to store a
  cookie in your browser, even though you don&apos;t visit the website directly.
</p>

<p>Cookies that are stored by a website other than the one you are visiting are
  called <strong>third-party cookies</strong> or <strong>foreign
  cookies</strong>. Websites sometimes use third-party cookies with
  <strong>transparent GIFs</strong>, which are special images that help websites
  count users, track email responses, learn more about how visitors use the
  website, or customize your browsing experience. (Transparent GIFs are also
  known as web beacons or web bugs.)</p>

<p>If you want, you can <a href="using_priv_help.xhtml#cookies">adjust your
  cookie preferences</a> so that websites can store ordinary cookies but not
  third-party ones, or only for those sites that you have previously visited.
</p>

<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>

<h2 id="why_and_how_are_websites_tracking_me">Why and How Are Websites
  Tracking Me?</h2>

<p>Websites are frequently interested in how they are used and by whom.
  Thus, they may perform analytics on your browsing behavior, either by
  themselves, or by utilizing a third-party service.</p>

<p>Motivations for such user tracking may be a more personalized browsing
  experience, e.g., by offering you services or products corresponding to your
  previous browsing pattern, thus making it more likely that you are interested
  in those. Third-party services are mostly interested in placing advertisements
  that match your interests, thus making it more likely that you would click on
  those ads, which in turn generates revenue.</p>

<p>Of course, this list isn&apos;t all inclusive, other reasons may exist to
  track the user&apos;s browsing behavior. To summarize, the trade-off is:</p>

<ul>
  <li><strong>Pros</strong>: Tracking of the user&apos;s browsing activity
    allows the website to provide a more specific browsing experience, by
    analyzing and matching your interests. You may even get offers you
    wouldn&apos;t receive without prior knowledge of your usage pattern.</li>
  <li><strong>Cons</strong>: In most cases, especially with third-party
    tracking services, the information is gathered without the user&apos;s
    consent, and its usage is not transparent. Comprehensive user profiling
    across websites and over long periods of time may be considered intrusive
    and a questionable practice violating the user&apos;s privacy.</li>
</ul>

<h3>What Are the Mechanisms of User Tracking?</h3>

<p>There isn&apos;t any single tracking mechanism, rather several methods
  exist. For example, a website may employ one or more of these methods:</p>

<ul>
  <li><a href="#what_are_cookies_and_how_do_they_work">Cookies</a>: This is
    the most direct form of user tracking. When visiting a website for the
    first time, a random but unique identifier is created by that site and
    stored as a cookie in &brandShortName;. When returning to the website,
    this cookie associates you with any previous visit to that site. This is
    especially effective for third-party tracking given that such a service
    can collect data from multiple websites they have contracts with based on
    just a single tracking cookie.</li>
  <li><a href="#internet_address">Internet Address</a>: The IP address
    identifies your location on your provider&apos;s network. It may also
    serve as a reference to your geographical location. Even without cookies,
    multiple accesses to one or more websites from the same location can be
    associated with each other in this way.</li>
  <li><a href="privsec_help.xhtml#location_aware_browsing">Geolocation</a>:
    Much more detailed information about the user&apos;s location can be
    obtained with location aware browsing services. Based on additional
    information gathered by the browser, such as wireless access points,
    a user&apos;s position and (in certain situations) heading and speed can
    be determined and used by the website to track the user.</li>
  <li><a href="#what_information_does_my_browser_give_to_a_website">Browser
    Fingerprinting</a>: This method attempts to identify specific users based
    on the characteristics of the browser that they are using. Such
    characteristics include browser type and version, platform used, language
    preferences, and possibly installed plugins or add-ons.</li>
</ul>

<h3>What Can I Do to Prevent User Tracking?</h3>

<p>In general, there is no complete protection against unwanted tracking of
  one&apos;s browsing activities. However, there are a couple of ways to make
  it harder to get tracked:</p>

<ul>
  <li><a href="privsec_help.xhtml#privacy_and_security">Do Not Track</a>:
    This is a method that allows users to explicitly opt out of their
    browsing behavior being tracked. &brandShortName; supports sending
    <q>Do Not Track</q> requests to websites, but they are <em>not</em>
    obligated to honor such requests.</li>
  <li><a href="privsec_help.xhtml#privacy_and_security">Site blocking</a>:
    &brandShortName; can block content that has been identified as serving
    the purpose of user tracking based on a list downloaded periodically
    from a server. In this way, connections to such <em>known</em> tracking
    sites can be prevented upfront.</li>
  <!-- NOTE: link "Data Manager" below once bug 599097 has been fixed -->
  <li><a href="privsec_help.xhtml#location_aware_browsing">Location Aware
    Browsing</a>: Disabling geolocation services prevents a website from
    obtaining location information beyond what can be derived from the IP
    address of the access alone. Note though that this is always an opt-in
    service, thus you will get a notification for each request unless you
    gave a website permanent permission to use geolocation services.</li>
  <!-- NOTE: link "Data Manager" below once bug 599097 has been fixed -->
  <li><a href="using_priv_help.xhtml#cookies">Cookies</a>: The power of
    tracking cookies is their persistence across sessions. Thus, when you
    restart &brandShortName;, the identifying cookie will still be sent to
    the website performing the analytics. One measure against third-party
    tracking is to prohibit third-party cookies altogether; another option is
    the restriction of cookies to the current session only. Some websites may
    no longer function correctly, but you can add exceptions to such sites in
    the Data Manager or with the Cookie Manager options in the Tools menu.</li>
  <li><a href="nav_help.xhtml#plugins">Plugins</a>: Obscure plugins make
    browser fingerprinting easier. Thus, if you need such plugins for some
    websites but not in general, disable them in the Add-ons Manager until
    you need them, to avoid that they are disclosed to tracking sites.</li>
  <li><a href="customize_help.xhtml#add-ons">Add-ons</a>: There is a variety
    of extensions available for privacy &amp; security support. Some of them
    will block unwanted content from advertisers or tracking services, others
    provide more control on private data collected by plugins (e.g. cookies),
    or when and how to run scripts or embedded content.</li>
</ul>

<p><strong>Note</strong>: The issues related to user tracking are complex.
  This description is not intended to be complete but to provide you with some
  basic information on this topic.</p>

<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>

<h2 id="how_can_i_control_web_pages_in_email_messages">How Can I Control Web
  Pages in Email Messages?</h2>

<p>You can disable cookies, images, and plugins completely (JavaScript is
  always disabled) for web pages that are received as part of email
  messages.</p>
  
<p>While it may be convenient to enable some or all of these capabilities when
  you&apos;re browsing the web, they may not be necessary in single web pages
  sent as attachments to messages.</p>

<p>For information on enabling or disabling cookies, images, and plugins in
  email messages, see the following sections:</p>
  
<ul>
  <li><a href="using_priv_help.xhtml#cookies">Privacy &amp; Security
    Preferences - Cookies</a></li>
  <li><a href="mailnews_preferences.xhtml#message_display">Mail &amp; Newsgroups
    Preferences - Message Display</a></li>
  <li><a href="cs_nav_prefs_advanced.xhtml#scripts_and_plugins">Advanced
    Preferences - Scripts &amp; Plugins</a></li>
</ul>

<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>

<h2 id="how_can_i_make_sure_unauthorized_people_dont_use_information_about_me">How
  Can I Make Sure Unauthorized People Don&apos;t Use Information About Me?</h2>

<p>The best way to keep your information private is to read the privacy
  policies for the websites you visit and the Internet services you use, and
  to be cautious about giving out your personal information online.</p>

<p>The Internet is a public network. When you send your name, phone number,
  address, and other personal information over the network (via a web page,
  email, or any other method), it is possible that someone else may be able to
  intercept it.</p>

<p>Here are some questions you might ask about a website&apos;s privacy
  policy:</p>

<ul>
  <li>What kinds of personal information is this website gathering?</li>
  <li>How will the website use the information?</li>
  <li>Will the website share the information with others and do I have choices
    regarding the use of any shared information?</li>
  <li>Can I access some or all of the information a website gathers about me, in
    order to inspect or update it?</li>
  <li>How does the website protect the information?</li>
  <li>How do I contact the website if I have questions or problems?</li>
</ul>

<p>[<a href="#privacy_on_the_internet">Return to beginning of section</a>]</p>

</body>
</html>