This document explains what degree of privacy you can expect while you surf on the world-wide web, and this site, in particular; and how you can control what information is given out about you. The important point to note is that you are in control-- personal information can only be obtained when you explicitly allow a site to do so. Phrases specifically related to this site are in bold.
There are various ways that a site has of obtaining information about you. When you request a page from a site, a certain amount of information is automatically disclosed in the page-request that your browser makes on your behalf. Once you've received the page, the site could ask your browser for some additional information. While you are getting the page, the site could be tracking you by taking notes about your behavior and storing those notes in an area of your hard disk (cookies) which it can read back later. And whenever you fill out and submit a form, the information on that form is sent to the site. Each of these aspects are described below in detail.
When you request a page from a site, a small amount of information about you is given to that site by the browser requesting the page. In particular, the site is told the three items listed below. Beyond that, the site is unable to obtain any other information about you with out your knowledge-- it does not know your e-mail address and certainly does not know your name.
The site is told something about your operating environment such as the type of browser you are using and the operating system on which you are running. If a site uses this information, as we do, they will present the page that you are requesting in a way that will best display on your screen. As an example, a site might be told that you are using the English version of Google Chrome and are running under a Windows operating system. Such information is not in any way personal so your privacy is not compromised by having it divulged; and your experience on the site should usually be the better for it.
The site is told the internet address that you are currently using. This is referred to as your IP (or Internet Protocol) address. The site needs your IP address so that it knows where to send the page that you are requesting. IP addresses are usually registered to internet service providers and not to individuals; each time you dial up an internet service provider, you are assigned one of their many IP addresses at random to use for the duration of your session. So the site you are visiting can determine, for example, that an AOL member just requested a page but it cannot determine which AOL member. IP's are sometimes used to determine the country of the ISP provider, which usually indicates your country also.
Your IP address is not your e-mail address-- they are two different things. Your e-mail address is the address to which your incoming e-mail is sent and uniquely identifies you in cyberspace just as your social security number identifies you in the real world. Your IP address, on the other hand, is a temporary address that you are using for the duration of a session in order to get the pages you are requesting. It is no more a part of your identity than is the phone number of a pay telephone which you happen to be using when making a phone call. For most people, it changes each time you get online.
This site shows you the IP address that you are currently surfing with on some pages; for example, at the base of the member login page. The site also logs ip addresses to help us determine unique visitors. But if you are concerned and want to block your IP address from being given out, see the section on Hiding Your Internet Address.
The site is also told where you just came from. In other words, it knows which page you were reading when you clicked on the link to the page you are now requesting. This allows the site to know which other site referred you to it. Also, as you traverse the site, it allows the site to know where in the site you were most recently. Some browser versions do not pass this property accurately; but nevertheless, the information is part of request for a page on the web. This site may use referrer information to help it analyze overall traffic flow for the site, or present statistics to its users.
After you receive a page from a site, that page is displayed. The page might contain programming, such as JavaScript code, which will then execute on your machine. Javascript code has the ability to request some information about your machine and to send such information back to the site. This is generally used to determine how to best present a page to you. Different browsers and browser versions interpret scripting and stylesheets differently; so determining your browser type is essential to preserve the web site intent and present content appropriate to your particular browser, version and platform.
If you do not want any additional information given out, you can easily prevent it. Whether or not your browser allows JavaScript code to execute is controlled by your preference settings. That preference is initially set to allow JavaScript to execute. By changing that preference, you will be preventing the site from requesting and transmitting this information.
The information that the site can request by using JavaScript code includes such things as whether or not your browser can execute programs written in a language called java, the number and type of plugins you have installed in your browser, the height and width of the browser window, etc. JavaScript is also the code usually responsible for the eye-catching image rollovers on the web. JavaScript is used mostly for interactivity on the web and now also acts as a much faster bridge between the server and your action within the web page.
Javascript code is normally incapable of obtaining any information about you that would seriously compromise your privacy. However, with a special kind of script, called a "signed script", usually only deployed for private applications. Given your express permission, a "signed-script" can obtain much more personal information. In fact, it could even read information from arbitrary files on your hard disk and transfer that information back to the site. This site does NOT employ a signed script. All our scripts are regular, harmless, but important JavaScript to make your surfing as pleasant, easy, interactive, and enjoyable as possible.
When you are requesting a file (as opposed to a viewable page), your e-mail address might be divulged as a courtesy to the site. It is very typical when doing "anonymous" downloads via ftp, that your email is provided as a passcode. This is so that you don't have to know a particular passcode. When you are requesting a file, its address starts with "ftp://" instead of "http://", which is reserved for web pages.
One of your preference settings determines if your e-mail address should be sent as your password when you request files.
Specific downloads are accessible only to logged-in, legitimate buyers or resellers.
Since the site does not know who you are, it cannot possibly be collecting any information on you and has no knowledge of any previous times that you visited the site. It does not even know what you've done while on the site other than knowing where on the site you just came from.
However there are times when it would be to your advantage to allow a site to know something about your previous visits to the site. For example, if you were previously reading a long document and got as far as page 19, it would be nice if the site could take you immediately to page 20 on your next visit. Most membership or account-based web site uses cookies for session management and account access, so that you don't have to log in for every page you visit that it restricted. Without cookies, your visits to restricted pages would be a hassle, as you would have to log in each time you refreshed a page or linked to another or sorted, or interacted with the page.
The only way a site has of remembering information that it can associate with you is to store the information onto your hard disk and to read it back each time you interact with the site. Such pieces of information are called cookies for lack of a better name. Of course the site cannot store a cookie directly but instead asks your browser to do that on its behalf. And your browser will not store a cookie without your permission (see the section on Controlling Your Cookies). Once a site has stored a cookie, it can read that cookie in the future without having to get permission from you. But the site can read only the cookies that it has stored-- it cannot read the cookies that other sites have stored.
Don't be alarmed-- a site cannot write to arbitrary places on your disk. The cookies that it stores go into one specific file, called your cookie file. And the site can't even write there unless you give it permission to do so. Similarly, the site can't read arbitrary information from your disk either.
If a site can store a cookie, it can keep track of all the things that you've done by simply writing these things into a cookie which it keeps updating. By this means it can build up a profile on you. This may be a good thing or a bad thing depending on what the site intends to do with the information. For example, it would be a good thing if a book-seller knew that you frequently looked for information on dogs so that it could tell you if a new dog book became available since your last visit. It would be a bad thing if it then sold that information to the local dog pound so they could cross-check for potential dog owners who do not have valid dog licenses.
This site uses cookies for administrative, session, and login purposes. We send a header along with the cookies to tell your browser what the cookie is intended for. These cookies help us protect your session, and are essential to the working of the site.
When a site stores a cookie, it is the only site that is able to read that cookie in the future. That permits a site to build up a profile on your behavior while you are at that site but not on your behavior in general while surfing the web. So at least you have some assurance that the data that is collected on you (with your permission of course) is site specific and nobody can build up a universal database on you.
Very often, sites display advertising or sponsors' graphics that are linked to CGI scripts that set a cookie from the sponsor or advertiser's site, that tells them you at least saw their ad on whatever site you were visiting. While this is usually harmless, there are companies, such as Doubleclick (now owned by Google), which manage click-through statistics for many advertisers, and can build a surfing profile based on information they collect with cookies over many, many web sites. Obviously, the more clients such a marketing company can persuade to display their images, the more encompassing the profile could be on you, if you accepted their cookies.
Such cookies that are stored by the site other than the one that you think you are visiting are called "foreign" cookies, or "third party" cookies. If you are concerned about the privacy implications of foreign cookies but not concerned about ordinary cookies, you could give permission for sites to store just cookies for that web site, but not store foreign ones.
This site may use Google Analytics, which may store its own cookies, or may allow third party advertiser cookies. It is not imperative that you accept these third party cookies, and you can set your browser to ignore third-party cookies. It is important, however, for you accept this site's cookies for the site.
The way you give permission for a site to use (store and/or read) cookies is by your preference settings. Your preference could be that your browser should allow sites to use all (foreign as well as non-foreign) cookies, allow sites to use non-foreign cookies only, or not allow sites to use cookies. Furthermore, in your preference settings you could state that you want to be warned before your browser will store any cookie. When you first install your browser, your preferences are set to allow all sites to use all cookies with no warning given when a cookie is being stored; you will need to explicitly change your preference setting if that is not what you want.
If you don't want to allow any site to store cookies, you would change your preferences to not allow sites to use cookies. But there probably is at least a middle ground whereby you want to allow specific sites to store cookies (say your brokerage house, so you can see your investments; or your bank, or any site of which you are a member to allow you into the member area), while prohibiting other specific sites, and be asked about all remaining sites.
You can accomplish this middle ground by setting your preferences to allow sites to use cookies but warning you first. In that case, a box will pop up each time a site attempts to store a cookie. That box will identify the site (it might not be the site that you are currently visiting, as in the case of foreign cookies) and ask you if you want to allow the cookie to be stored. It will also ask you if you want to remember your decision on behalf of this site. If you accept the cookie and specify that you want the decision remembered, the browser will automatically grant all future cookie-storing attempts made by this particular site without giving any warning. On the other hand, if you reject the cookie and ask to have the decision remembered, the browser will automatically reject all future cookie-storing attempts from this site.
By using the Cookie Manager, you can bring up a list of cookies that have been stored on your hard disk as well as a list of sites for which you have asked to have the cookie-storing decisions remembered. And you can selectively delete any of the cookies or sites in these lists.
It should be mentioned that even if you have disabled cookies, the site still has ways of tracking you, at least while you remain at that site. Presented here is one example.
The site could store the information not in a cookie on your machine but rather in the links that it lets you fetch. Each link that it presents for you to click on contains the address of the next page to fetch. But the site could customize that link specifically for you so that it contains a little tracking information as well.
To make this clear, suppose that you visit a site called trackme.com. That site presents you with its home page and that page contains a link to a second page. What you see on your screen is some text describing the link (for example, "visit our second page"). In addition to the visible text, the link also contains the address of the second page, such as trackme.com/secondpage. But suppose the link on the home page doesn't contain just trackme.com/secondpage but contains something like trackme.com/secondpage?0 instead. The "?0" might be a code saying that you haven't visited the second page yet. Suppose you click on this link and view the second page. Then you click on a link on the second page that gets you back to the home page. The home page that the site presents to you this time differs from the one it sent you previously in that the link back to trackme.com/secondpage now contains trackme.com/secondpage?1. The site is now using the page itself (rather than a cookie) to keep track of where you've been and what things you've clicked on.
The good news is that this sort of tracking works only as long as you remain at the site and visit its related pages. Once you leave the site all of this information is lost. If you should then return again later you will be presented with the "trackme.com/secondpage?0" link all over again. (Of course if you bookmark a page from such a site, when you return to that page via the bookmark that tracking information will still be there.)
Fairly recent changes have made it possible for sites to request to store a little bit of data on your computer. The data is normally used for some of the same purposes as cookies have been traditionally used. However the information may be intended to be more permanent than a cookie, or it may be larger than the intended size of cookies. In any case, you may deny access to this "disk storage", or delete the disk storage whenever you want by going through your browser's (generally advanced) preferences.
At this time, this site does not use disk storage. If that changes, we will post it in this location in the privacy policy and notify network members and site users of an update.
Of course if you voluntarily chose to divulge information to the site, such as by submitting a form that the site presents to you, you are knowingly providing the site with whatever personal information you filled in. The site is then free to store that information in its data base and to use the information in any way it sees fit. For your protection, many sites are now voluntarily establishing privacy policies which dictate what they will and will not do with any information you give them. Each site determines its own privacy policy and makes that policy available for you to view.
Keep in mind that there is no policing of sites with regards to their privacy policies and they can say in it whatever they want. So when it comes right down to it, the final decision as to whether you want to voluntarily submit information to a site will depend on how much trust you have in the site. You might be inclined to believe what is said in the privacy policy of http://msn.com whereas you might be justified in being dubious about any policy offered by http://www.yeahrighttrustme.com
You will often find yourself entering the same information on the forms of many different sites. For example, all sites that sell you something will probably ask for your name, your shipping address, and your credit card number. It's tedious to have to type this in every time. Instead you can ask the Form Manager to save the information from a particular form and then pre-fill that information onto forms that you encounter in the future. The Form Manager saves the information on your local machine and not on any web site. When the Form Manager pre-fills a form with the saved information, that information is not sent to the site until you submit the form. Once again you are in control-- no information is released until you say so.
This site uses forms for various signups, for example: newsletter signups, advertising signups, membership signups, etc.; as well as for special downloads, and other opportunities tied to the site.
If you are like most users, you've registered for services at various sites. The registration consisted of selecting a user name and password. Each time you return to such a site, you fill out and submit a form containing the user name and password that you selected for that site. To avoid having to remember a different password for each site, especially those you don't visit often, you might have used the same password everywhere. And the same goes for your user name, providing somebody else hadn't already taken it.
So each site that you registered with has a record of two important pieces of information about you-- your user name and password. And if this is the same user name and password that you always use, an unscrupulous site administrator at any one of these sites has enough information to go impersonating you by logging in to other sites at which you are registered. You might not be concerned about this because it really doesn't hurt you if somebody logged in as you at some newspaper site and read what was going on in the world. But you might be concerned if somebody managed to guess which stockbroker you used, and logged in as you and made some stock transactions.
The way to protect yourself, of course, is to use a different password at every site that you register with. But this means you have to keep track of every password that you've ever used. The Password Manager in the browser can help you out by remembering the user name and password that you used when you last logged on to a site, and then pre-filling that information onto the log-in form the next time you visit that site. You can then either submit the log-in form with these pre-filled values, or change them before submitting if they are not what you want.
The Password Manager also allows you to see which user names you have stored for which sites. And it allows you to selectively delete any of these items if you wish. All major browsers have a password manager that can assist you with your individual passwords.
The TrafficMoola Site requires Users to log in with a password which is stored as an encrypted string on our servers. Your password is encrypted in route during login and compared against the encrypted string on our server. All logins are done through a Secure Socket Layer ("SSL"), using https protocol and security certificates, which you may validate, yourself, before "trusting" them. Your browser should display an "https" address in the browser, and a lock icon on the login page, and on pages with sensitive, personal information.
The TrafficMoola Site does not allow users to share their password, and will not take responsibility for the consequences should you share your password.
When you request to see a page from a site, your browser needs to tell the site your internet address (IP address) so the site knows where to send the page. This is in effect your return address. Your internet service provider has many IP addresses assigned to it and it selects one for you to use each time you start a session Every time you connect to your provider you will be given a new IP address.
Some users have their own fixed IP addresses which they use every time they connect to the Internet. But these users are in the minority and if you are one of them you undoubtedly know about it. So if you have not heard anything to the contrary, you can assume that you get a new IP address for each session.
Even though it's only a temporary address, you might not want that information to be given to a site you intend to visit. But if your browser doesn't provide this information, the site won't know where to deliver the requested page. So this is the one piece of information that you can't ask your browser not to reveal.
If you really want to hide your IP address from the site, you need to use some trusted intermediate site. You go to the intermediate site and tell it the name of the site whose page you want. The intermediate site requests the page on your behalf, using its own IP address as the return address. Then, when it gets the page, it forwards it on to you. The site that supplied the page never gets to see your IP address.
There are several sites that provide such services. Use your favorite search engine to find them-- try search words such as "anonymous" and "surfing".
Generally, speaking, this site uses any information collected from cookies or environmental variables or forms for internal use by the application, itself, and for analysis by the resellers, publishers, and advertisers whom the site serves. Specifics follow.