User Tools

Site Tools


consent_shambhala_database_administrators

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
consent_shambhala_database_administrators [2019/03/06 16:13]
spigolo [As a Shambhala Database (SDB) user you are agreeing to the following:]
consent_shambhala_database_administrators [2020/11/18 18:57] (current)
alicetoohey [Inactive users]
Line 1: Line 1:
-====== SDB Code of Conduct ======+====== Consent agreement for SDB users ======
  
 +As a user (administrator) you agree to the following SDB Code of Conduct and the specific rules listed below.
  
 +====== SDB Code of Conduct ======
  
   * **Be the digital guardian in your area**: As an officer of Shambhala, protect and advocate for the protection of individuals (their digital rights and data about them).   * **Be the digital guardian in your area**: As an officer of Shambhala, protect and advocate for the protection of individuals (their digital rights and data about them).
   * **Be virtuous**: Shambhala gathers, records, and processes accurate data about people for their benefit. Therefore, do not send unwanted email or contact people without their consent.  Never mis-represent them or use Shambhala data or email to harass, abuse, or harm another person.    * **Be virtuous**: Shambhala gathers, records, and processes accurate data about people for their benefit. Therefore, do not send unwanted email or contact people without their consent.  Never mis-represent them or use Shambhala data or email to harass, abuse, or harm another person. 
 +  * **Be precise**: Having good data requires precision and attention. As an SDB user you are responsible for the data's quality. Please comply to any recommendations that you might receive from the IT staff.  
   * **Obey applicable laws and regulations**: never use Shambhala email for spamming or for commercial or political purposes.   * **Obey applicable laws and regulations**: never use Shambhala email for spamming or for commercial or political purposes.
   * **Follow Shambhala’s policies**: Only use Shambhala data for official purposes and delete when no longer needed. Only share Shambhala data with trusted people who will also be bound by these terms of use. Unless required for purposes such as organizing local practice events, registration or financial management, data extracts from the SDB to be used in independent databases are not permitted.   * **Follow Shambhala’s policies**: Only use Shambhala data for official purposes and delete when no longer needed. Only share Shambhala data with trusted people who will also be bound by these terms of use. Unless required for purposes such as organizing local practice events, registration or financial management, data extracts from the SDB to be used in independent databases are not permitted.
   * **Be security minded**: Never share your password with others or bypass mechanisms designed to enforce these terms of use.   * **Be security minded**: Never share your password with others or bypass mechanisms designed to enforce these terms of use.
-  * **Enforcement**: These terms of use are enforceable by Shambhala (Kalapa Media staff) and your local authorities.  Your privileges may be revoked if you do not comply.+  * **Enforcement**: These terms of use are enforceable by Shambhala (Shambhala Global Services staff) and your local authorities.  Your privileges may be revoked if you do not comply. Please follow recommendations from the IT staff and agree to keep yourself informed by consulting the online manual when necessary.
   * **Persistent obligation**: Your obligation to comply with these terms of use does not end when you cease being a DBA or are not connected with Shambhala.   * **Persistent obligation**: Your obligation to comply with these terms of use does not end when you cease being a DBA or are not connected with Shambhala.
  
-Why does Shambhala have these “terms of use”? To make privacy and other rules clear to everyone so that Shambhala’s tax status is protected, our email is not blacklisted, and we are able to get our message out to the world.  These terms of use were approved by the Shambhala Digital Oversight Commission in November, 2018+Why does Shambhala have these “terms of use”? To make privacy and other rules clear to everyone so that Shambhala’s tax status is protected, our email is not blacklisted, and we are able to get our message out to the world.  These terms of use were approved by the Shambhala Digital Oversight Commission in November, 2018 and updated on February 212019.
- +
-====== As a Shambhala Database (SDB) user you are agreeing to the following: ====== +
- +
-John here I would like to have a list of "down-to-earth" recommandations.  +
- +
-  * **Do not share your password with anyone** +
-  * **Do not use another system to manage Shambhalians personal data and communications** (using Mailchimp synched with the SDB is not considered as another system) +
-  * **Do not send emails outside of a newsletter channel unless there is a good reason** +
-  * **Inform us if you don't need to access the SDB anymore** +
-  * **Connect on a regular basis (once a week) to the SDB to execute your "data Rota" ** +
-  * **Read and agree to the latest code of conduct at least once a year** (you will be automatically reminded to do so) +
- +
- +
- +
-Hello Bernard and John, +
- +
-I think it's a good idea to have all the rules and hints in one place. +
- +
-I wonder if  this point: +
-Do not use another system to manage Shambhalians personal data and communications (using Mailchimp synched with the SDB is not considered as another system) +
-could not be a little looser because I believe in practice centers use their own systems (for example for managing donorsmanaging libraries etc.)?+
  
- Also, I would consider adding some recommendations:+====== As an authorized Shambhala Database (SDB) user you agree to follow these rules======
  
-- do not copy data if it's not necessary 
-- delete copied data when it's no more needed (don't forget about deleting old backups, USB drives, cloud backups etc.) 
-- do not share data with others if it's not necessary, do not send it via emails if it's not necessary. When you have to do it, use additional layers of protection, for example, set passwords, use confidential mode (Gmail) or encrypt emails 
-- protect your devices (and data kept) from random people access 
-- scan your devices against viruses and other malware on a regular basis 
-- regularly update software used on your devices (OS, browsers etc.) 
-- use firewalls when it's possible,  
-- use only strong, secure passwords and change them at least once a year, take care of the security of your passwords  
-- in case you notice any privacy or other threats related to SDB let us know 
-- report to us privacy breaches that you are aware of 
  
-I will think about it more... +  * **Do not share your password with anyone**.  Use only strong, secure passwords and change them at least once a year, take care of the security of your passwords  
-WarmlyPawel+  * **Do not use another system to manage Shambhala's data**. (Mailchimp and some other systems synchronize with the SDB and are approved for use.) 
 +  * **Do not copy/paste SDB data**; delete copied data when it's no longer needed (don't forget about deleting old backups, USB drives, cloud backups etc.) 
 +  * **Do not share SDB data with others** you have been authorized to do so by the IT staff; do not send SDB data via emails unless it's encrypted and password protected 
 +  * **Every email needs an opt-out footer**, so use a newsletter channel unless you explain the legitimate reason for your message. 
 +  * If your responsibilities include registration or approving edits by others, **you should log onto  the SDB on a regular basis (at least once a week)** 
 +  * **Inform us if you don't need to access the SDB anymore.** 
 +  * **Readcontemplate, and agree to the latest code of conduct at least once a year** (you will be automatically reminded to do so) 
 +  * **Protect your computer and other electronic devices from unauthorized access by others**; scan your devices for viruses and other malware on a regular basis. 
 +  * **Keep your software updated**  (OS, browsers etc.) and work behind a firewall if at all possible. 
 +  * **You must report any privacy breach** that you are aware of or if you notice any privacy or other threats related to SDB by contacting: [[mailto:[email protected]|[email protected]]].  
  
-  * Contact [[[email protected]]].   
   * See additional information here:   * See additional information here:
-    * You should [[https://docs.shambhala.name/sdb/do_not_share_an_sdb_password|never share an SDB Password]] +    * Shambhala maintains detailed information for DBAs on [[https://docs.shambhala.info/welcome|how to use its systems]].  Please consult the documentation. 
-    * Specific [[administrator_roles_and_privileges|roles and privileges]] according to your level of authorization. +    * You should [[https://docs.shambhala.info/sdb/do_not_share_an_sdb_password|never share an SDB Password]] 
-    * Shambhala is bound by the European Union's [[privacy:general_data_protection_regulation_gdpr|General Data Protection Regulation (GDPR)]].+    * Specific [[https://docs.shambhala.info/sdb/administrator_roles_and_privileges|roles and privileges]] according to your level of authorization. 
 +    * Shambhala is bound by the European Union's [[general_data_protection_regulation_gdpr|General Data Protection Regulation (GDPR)]].
  
 +====== Inactive Users ======
 +    * SDB admins who are inactive for more than 6 months will lose access.
 +    * Reactivation after a period of inactivity is readily available [[https://shambhala.org/sdb-or-website-authorisations-update-request/|here]].
 +    * This new policy (as of July 2020) is instituted to reduce the list of inactive users. This helps to keep our data secure. 
consent_shambhala_database_administrators.1551885195.txt.gz · Last modified: 2020/07/01 17:15 (external edit)