Plaxo's Personal Card: Plaxo Privacy Policy

In addition to more support of third party web applications, we're also launching the next generation social network, Pulse. Unlike other social networks, Pulse is built from your own address book, a true social network where you can selectively share and converse with people you really know and care about. Pulse feeds you information about your contacts from a growing list of social web sites they use. This aggregation of life news about the people you truly know builds on the idea of keeping you connected.

And with the introduction of these new features of Plaxo 3.0, we remain faithful to our Privacy Principles because it's what you would continue to expect when sharing your personal information. Simply put, these principles comprise of:

Control over your information,

Freedom from unwanted communications, and

Trust that your information will not be shared or sold.

In the spirit of openness, we’d like to explain some minor changes we’ve made to the Privacy Policy with the launch of Plaxo 3.0.

Expanded Synchronization Functionality
Because we've expanded the Plaxo service's sync capabilities to include sync with third party web applications like GMail, Yahoo! Mail, Hotmail and a growing list of additional end points, we now need to maintain your credentials to those third party web services. As a result, the definition of "Your Account Information" has been expanded to cover these passwords for third party services; it has also been expanded to cover profile information such as photos and physical location.

Lost Password and Password Reset
One of the big changes we made was our Password Renewal Process. In the old process, a user attempting to reset their lost password would have to answer a security question (set by the user during registration) before we would send an email to user's registered email address. This email would contain a link to a secure page where the user can reset their password. This 2-stage approach required that the user remembered their security answer as well as have access to their registered email address. The failure rate, and user complaints, on the renewal process was very high because users would often forget their security answer.

As we studied how the industry handled the lost-password problem, we soon realized that many of the big ISPs and ecommerce sites used a much simpler email round-trip confirmation approach. It's essentially like our previous approach, but without asking a security answer. And because the password renewal process on partner sites used this same round-trip confirmation method, we decided to adopt it. Through a lengthy beta test, user complaints are non-existent and password reset requests have a high success rate.

Other Clarifications
Finally, different sections of the Privacy Policy have been expanded to further clarify their intent, based on questions, feedbacks and suggestions from members, enterprise partners and privacy advocates.

We clarified the use of aggregated and anonymous demographic information with our business partners for purposes such as spam and fraud prevention. However, no such information will be linked directly to your personally identifiable information. You may elect not to have Your Information used for such purposes.

We may use Your Information (which is, collectively, your account information, your contact list and PIM information) to better provide you with personalized content programming, instructions and services, for license reporting, to better understand our product usage on an aggregated basis, to verify access rights, to provide you with information about Plaxo and to allow you to purchase and use Plaxo.

We clarified that our Privacy Policy also applies to data from people using our services through third parties integrating Plaxo functionality through our application programmer interfaces ("APIs") or otherwise.

We clarified the Rights of Others (Your Contact List) who may fail to recognize you as a known contact and what actions Plaxo may take.

If you have any questions, concerns or feedbacks, please feel free to contact me at redgee @t plaxo.com or visit the Privacy and Security section in our community forums and join a public discussion – I’ll see you there. Finally, I hope that you give the new Plaxo 3.0 a test drive. It’s our best one yet.

Redgee Capili
Sr. Director Client Services &
Chief Privacy Officer

Posted by redgee at October 12, 2007 @ 01:18 PM | permalink

TrackBack

TrackBack URL for this entry:

http://blogadmin.plaxo.com/mt-tb.cgi/177

In June we introduced the public beta of an all-new Plaxo, and we’ve been working hard ever since to get it ready for a full migration for all users. Plaxo 3.0 bridges the gap between the most popular communications tools and services across the web. This "sync and share" vision allows our users to synchronize their address book, calendars, tasks and notes to more sync points than ever before - like Hotmail, Google Mail, Yahoo! Mail and LinkedIn - with more on the way. These will now join the familiar sync points we've supported in the past (Outlook, Outlook Express, Macintosh Address Book, Thunderbird, AOL and AIM). In addition to more support of third party web applications, we're also launching the next generation social network, Pulse. Unlike other social networks, Pulse is built from your own address book, a true social network where you can selectively share and converse with people you really know and care about. Pulse feeds you information about your contacts from a growing list of social web sites they use. This aggregation of life news about the people you truly know builds on the idea of keeping you connected. And with the introduction of these new features of Plaxo 3.0, we remain faithful to our Privacy Principles because it's what you would continue to expect when sharing your personal information. Simply put, these principles comprise of:

Control over your information,
Freedom from unwanted communications, and
Trust that your information will not be shared or sold.

Having already one of the strongest privacy polices in the industry, we continue the effort to keep the policy simple, easy to understand and clear on in its intent. And of course, our privacy practices will continue to be validated and certified by one of the most trusted third party privacy watchdog, TRUSTe. In the spirit of openness, we’d like to explain some minor changes we’ve made to the Privacy Policy with the launch of Plaxo 3.0. Expanded Synchronization Functionality Because we've expanded the Plaxo service's sync capabilities to include sync with third party web applications like GMail, Yahoo! Mail, Hotmail and a growing list of additional end points, we now need to maintain your credentials to those third party web services. As a result, the definition of "Your Account Information" has been expanded to cover these passwords for third party services; it has also been expanded to cover profile information such as photos and physical location. Lost Password and Password Reset One of the big changes we made was our Password Renewal Process. In the old process, a user attempting to reset their lost password would have to answer a security question (set by the user during registration) before we would send an email to user's registered email address. This email would contain a link to a secure page where the user can reset their password. This 2-stage approach required that the user remembered their security answer as well as have access to their registered email address. The failure rate, and user complaints, on the renewal process was very high because users would often forget their security answer. As we studied how the industry handled the lost-password problem, we soon realized that many of the big ISPs and ecommerce sites used a much simpler email round-trip confirmation approach. It's essentially like our previous approach, but without asking a security answer. And because the password renewal process on partner sites used this same round-trip confirmation method, we decided to adopt it. Through a lengthy beta test, user complaints are non-existent and password reset requests have a high success rate. Other Clarifications Finally, different sections of the Privacy Policy have been expanded to further clarify their intent, based on questions, feedbacks and suggestions from members, enterprise partners and privacy advocates.

We clarified the use of aggregated and anonymous demographic information with our business partners for purposes such as spam and fraud prevention. However, no such information will be linked directly to your personally identifiable information. You may elect not to have Your Information used for such purposes.
We may use Your Information (which is, collectively, your account information, your contact list and PIM information) to better provide you with personalized content programming, instructions and services, for license reporting, to better understand our product usage on an aggregated basis, to verify access rights, to provide you with information about Plaxo and to allow you to purchase and use Plaxo.
We clarified that our Privacy Policy also applies to data from people using our services through third parties integrating Plaxo functionality through our application programmer interfaces ("APIs") or otherwise.
We clarified the Rights of Others (Your Contact List) who may fail to recognize you as a known contact and what actions Plaxo may take.

As our company continues to grow and provide compelling new features, it’s imperative that we uphold the same values and principles that got us here. You can find out more about our privacy pledge by visiting our Privacy page. This page contains anything and everything that you need to know about our Privacy Policy, a history of changes to the policy and other resources to help you better understand our position on data ownership and security safeguards, as well as helpful frequently asked questions specific to the matter. If you have any questions, concerns or feedbacks, please feel free to contact me at redgee @t plaxo.com or visit the Privacy and Security section in our community forums and join a public discussion – I’ll see you there. Finally, I hope that you give the new Plaxo 3.0 a test drive. It’s our best one yet. Redgee Capili Sr. Director Client Services & Chief Privacy Officer