Feedback Regarding PI of Non-Sanctuary Members?

[Arnox]

Before I go any further here, no. No one's gonna get infracted or anything here regardless of what we decide, so don't worry about that. This is just me wanting to know the community's thoughts regarding our own Rule #4.

As of this writing, and as we all (should) know, Rule 4 states,

You will be banned without warning and, if applicable, the offending posts will be removed for the following... Personal information (PI) of any users on Sanctuary, which is anything that can be used to identify a user or their family members IRL. The only exception to this is if someone posts their own PI publicly on the site. That is it.

The key words here are "any users on Sanctuary". This means that we only offer doxing protections for those who become a member of our site. For anyone else, they are entirely open to doxing by our community. This... Kinda bothers me. Sure, today, it's PirateSoftware getting roasted on the spit, but technically, anybody else can come in here and post PI of otherwise innocent people for whatever reason and our rules right now say that we cannot do anything about that. If they're not a Sanctuary member, they do not have Sanctuary protections.

On the other hand though... If we just changed the wording so instead of it reading, "any users on Sanctuary" to simply, "anyone", this starts to create a WHOLE lot of technical headaches. Under that new rule, Donald Trump's name would be PI then. His very picture would also qualify as PI. As one can see, this starts to get rather silly rather fast.

But all the same, I do not want Sanctuary turning into KiwiFarms Lite Edition. We are here to share ideas, discuss them, and debate them (and also share certain cool files). We are not here to get IRL targeting details on someone, no matter how much they might deserve it. So... What is everyone's thoughts on this?

 

[Vendor-Lazarus]

I think users of Sanctuary is fine as it is. Today, everyone and their mother posts under their name, or posts their PI under handles on social media everywhere, sadly.
I think the opposite approach would be better. Teaching people how to not post PI or how to hide or conflate already known PI. Privacy in general in fact.

 

[Gauche]

We are not here to get IRL targeting details on someone

Got ur dox

 

[Houseman]

I think more definition about what is considered "Personal Information" could be made. You could add the word "Private" to it.

There could be a distinction made between information that one publicly reveals about themselves, such as Donald Trump's real name and their photo, and information that they would like to keep hidden, such as information that they don't publicly reveal about themselves, such as your (Arnox's) real name and photo.

For example, username/email combo gained from a data breach that could be used to identify a user elsewhere would be considered "private".

 

[Battousai]

Got ur dox

pinpoint accuracy.

 

[Dale Gribble]

I like no personal information at all tbh. I don’t think this is a place to share that, even about yourself.

 

[Lost-Zeneration-99]

Im in the mindset that it on you for what you post, but I do think PI do not really belong here. As I do agree with @Vendor-Lazarus that teaching folks how to not post their PI and how to safe guard it online/not appear online. I mean we was all noobs our fist time online when it comes to privacy and the do and don't. Not counting let not get a target on our backs for say someone post a feds real name or something here.

 

[Arnox]

Whoops. Forgot to reply to this. lol

I'm open to just banning all PI on the site, period, but if we ARE going to do that, we REALLLLYYY need a good definition of what is PI and what is not, because as discussed, Donald Trump's name and photo, for example, should not be PI.

There could be a distinction made between information that one publicly reveals about themselves, such as Donald Trump's real name and their photo, and information that they would like to keep hidden, such as information that they don't publicly reveal about themselves, such as your (Arnox's) real name and photo.

On people's socials though, they sometimes also link their usernames to them. So say that I have the username of "Bradballs" with the real name of John Smith. I have an Instagram that has my real name, John Smith, attached to it, and also my username is listed on there for whatever reason. Now let's say I sign up for Forum Z with the username Bradballs as well but forget that that username is also attached to my Instagram. Someone also on Forum Z then does a quick search for it and finds my Instagram and posts it on Sanctuary. Oh no! Is Bradballs' real name still PI then? How would you define that if it is?

 

[Houseman]

On people's socials though, they sometimes also link their usernames to them.

Well then they evidently do not want to keep that information hidden.

 

[Arnox]

Well then they evidently do not want to keep that information hidden.

Yeah, but I think that's a bit too much of a hard-ass approach. People are human. They forget stuff. I don't think one person forgetting stuff deserves their getting doxed. Or maybe they did remember but simply didn't think people would care about their PI until it is too late.

 

[Vendor-Lazarus]

I think the worst doxxes are face, address, DoB, etc, personally. Many people have the same name. So, unique PII, in other words.

If they've posted info themselves, on an open site, then that's their choice to have it out there. Breaches of closed (or supposedly closed) databases are different though.