Introduction

This document states the OpenHistoricalMap (OHM) '''privacy policy''' for services formally operated and provided through the openhistoricalmap.org domain and subdomains. In particular these are

• The OHM website (openhistoricalmap.org) and associated services and APIs

It describes what personal information we may be gathering from you, who can see this information, and what options you have for controlling this. We value your privacy and strive to achieve a balance between the legitimate interests of the OpenHistoricalMap project and your interests and rights.

This document is mainly intended for OpenHistoricalMap contributors.

Why do we store and process personal data?

The purpose of the OpenHistoricalMap project is to provide open historical geographic data, such as street maps or historical building outlines, railways, trails, etc, to anyone.

To fulfill the goal of distributing data that is truly open, untethered by rights of third parties and of high quality, we do not support anonymous contributions and retain additional, non-geographic, data on a legitimate interest basis (see GDPR article 6.1f), to enable:

• Identifying all the contributions made by an account
• Contacting the contributor in the case of questions in respect to the nature and source of the contributions
• Detection, removal and correction of spam accounts, vandallism and violations of the rights of third parties
• Facilitating the communication between OpenHistoricalMap contributors
• Research and analysis on aggregate contributions to improve or prioritise OHM services, such as evaluating mapping efficacy map completeness, determining if locations or mappers are disproportionately represented

What data do we store and process?

Data from contributions to OpenHistoricalMap.

Besides the geographic data contributed (points, lines, and areas with associated attributes and GPS trace data), and communications related data (diary posts and comments, the user page, changeset comments, messages) we store:

• Editing session meta-data. For example comments added by the user, any version and similar information added by the editing application, which editing application and which aerial imagery layers where used.
• User id and login name of the author of every change to an object and a timestamp when that change occured.
• The e-mail address associated with your account
• Any blocks the user has received and associated messages
• Network access data (example IP addresses) for the systems and services operated by OHM.

Who has access to the data

We do not share email addresses associated with accounts with any third party. User to user messages are visible to the sender and recipient, other access is limited to our operations staff and only if required for operational reasons, to enforce our acceptable use policies, to fulfil any legal obligations and most notably to prevent SPAM.

Similarly, network access data is only used for internal purposes and access is limited to operating personnel for operational and vandalism and SPAM protection purposes.

The other data is made available, depending on the use case, via the website, via the editing API and from our data dumps, to users with accounts and to the general public. Some of the non-geographic data may be available only by some methods, however this is subject to change.

Where do we store the data

The website, API servers, databases and the servers for auxiliary services are currently hosted on Amazon Web Services in the East Coast Region of the United States.

Map tiles are provided by a global network of cache servers, which tile server your browser or app access is determined dynamically by geolocation of the IP address and selection of the cache server "nearest" to you. While in general this means that you will be using the tile cache physically nearest to you, this can be affected by:

• Uncertainties in determining the location of the client from its IP address
• Operational issues (server downtime etc)
• Network topology and load

How can you control the processing of your data and reduce privacy related issues

While not required by law, we provide the following mechanism to reduce the exposure of potentially privacy related information for you:

• You can select a non identifying login name and change it at any time you want
• You are not required to include personal data in diary posts, comments, email listserv, the wiki, or other OHM communications methods, and you may delete diary posts at any time through your account
• You can request your account to be deleted (restrictions see below). Typically there's no need to close/delete an account on openstreetmap.org. It's no problem to simply leave it lying dormant. Want to remove identifying information? It's easy to change your display name, and edit your profile description. If you do want to completely delete your account for some reason: log-in, go to My Settings and use the 'Delete Account...' button. Please take note of the warning: The account deletion process is final, and cannot be reversed! You will also see details of exactly what is being deleted.

You should not enable gravatar support or use an e-mail address you have associated with a gravatar with if privacy is a concern.

You can further reduce exposure by not adding personal information to the map data (personal names and similar). Such information is in general not considered to be an useful addition to our data and you should refrain from adding it.

Right to Object

You have a right to object against processing based on legitimate interests of the data controller.

Detailed Information

GPS Trace Data

The uploading of GPS data is entirely optional and not a prerequisite for contributions to OpenHistoricalMap. If you do submit GPS data, it is uploaded in the form of individual GPX files. These are kept as raw files, as well as imported into the database. GPX files can be marked public by the uploader; this is completely unrelated to the option of making one's ''edits'' "public".

When GPS data for an area is downloaded via the API no indication is provided of which user uploaded a point, or of the timestamp that was associated with the point. Points are however returned in timestamp order. GPS data downloaded in this way will include points from traces which were not marked as public.

If a GPS trace is marked as public when it is uploaded then the raw trace may be downloaded from the web site or using an API call. In this case the user's display name is shown (regardless of whether the user has made their ''edits'' public) and the timestamps in the GPX file will be included. Also, any additional information placed in the GPX file will still be present, e.g. waypoints with their names and/or notes entered, associated symbols, elevation data, etc. You should remove any such information from the data and trim enough information from beginning and end of the trace to obscure start and destination before uploading it if you have privacy concerns.

Map Data

All edits made to the map are recorded in the database with the user ID of the user making the change, and a timestamp at the time of change upload. In general all of this information is also made available to everyone via the website, including links to allow everyone to easily cross-reference which user has made which edit.

Editing programs (such as JOSM and iD) can store further data in the database that may be relevant to your privacy. Please refer to the respective authors and distributors of the programs for more information. For example, iD and JOSM may add the language settings of your device to the metadata of each changeset and the make and operating system of the device may be visible from the transmitted version strings.

User 'home' location

If a user sets a home location then they will appear on the "nearby mappers" list for other people with a home location near theirs. This is an option on your account settings page.

Email Addresses

The registered email address for an OHM user account will never intentionally be published on the internet anywhere, shared with third party organisations, or revealed directly to other users. Email addresses will be used by the server to notify the user if another user has sent a message through the website, and for other system generated notifications.

Only System Administrators will have direct access to email address data associated with the OHM account. It may be used by these people to contact users directly about their edits or other OpenHistoricalMap related issues.

Email addresses associated with wiki, forum and help site accounts are stored separately from the OHM user account data in the respective systems. These address are used for notifications and user to user communication (if enabled). These addresses are not publicly visible or shared with third parties, but may be visible to the administrators of the systems.

Gravatar

The openhistoricalmap.org website supports the display of Gravatars, these are retrieved from gravatar.com by generating a globally unique key from your e-mail address. Our website software will check on the initial signup and on every email address change if you have a Gravatar for the new address and start displaying it if one exists. You can stop this behaviour by explicitly turning Gravatar support off in your account settings. You should be aware that, if a Gravatar is displayed, the key can be used to track your account over any website that has Gravatar support.

Data you may voluntarily add to your profile or diary posts

You are not required to fill out your profile or make diary posts. By voluntarily entering personal data in your user profile or diary posts, you consent to that information being publicly available and stored by OHM as long as you maintain an OHM account. You may edit your public profile or your diary posts at any time to remove such information if you change your mind.

Data we receive automatically

OHM operates a number of services for the OHM community, examples are the openhistoricalmap.org website, the standard OHM vector tiles online map, the OHM API and the nominatim search facility.

When you visit an OHM website, access any of the services via a browser or via applications that utilize the provided APIs, records of that use are produced, we collect information about your browser or application and your interaction with our website, including (a) IP address, (b) browser and device type, © operating system, (d) referring web page, (e) the date and time of page visits, and (f) the pages accessed on our websites.

Further we may operate user interaction tracking software that will generate additional records of user activity, for example Piwik.

Services that use Geo-DNS or similar mechanisms to distribute load to geographically distributed servers will potentially generate a record of your location at a large scale.

These records are used or can be used in the following ways:

• In support of the operation of the services from a technical, security and planning point of view
• As anonymised, summarised data for research and other purposes. Such data may be offered publicly via https://planet.openhistoricalmap.org or other channels and used by 3rd parties
• To improve the OpenHistoricalMap dataset. For example by analysing nominatim queries for missing addresses and postcodes and providing such data to the OHM community

The data collected on the systems will be accessible by the system administrators. No personal information or information that is linked to an individual will be released to third parties, except as required by law.

IP addresses stored by Piwik are shortened to two bytes and detailed usage information is retained for 180 days.

Given the temporary nature of this storage, it is generally not feasible for us to provide access to IP addresses or the logs associated with them.

The above mentioned data is processed on a legitimate interest basis (see GDPR article 6.1f).

Account Removal

You can request your account to be removed and we will honor such requests as far as possible.

If you have not actively contributed to the project we will not retain any records, user page, diary posts and similar will be removed.

If you have contributed your account will be renamed to user_''USERID'' (where USERID is your old OHM username) and contributions and changeset comments will be retained with this name, diary entries and your user page will be removed. Because we do not allow anonymous edits we will non-publicly retain your email address in case you need to be contacted with respect to your contributions.

Wiki and forum accounts will be renamed to a pseudo-anonymous name, but otherwise will remain as is. You can unsubscribe yourself from any mailing lists, however you need to realize that personal copies held by the recipients of any mails you sent to the lists and the archives on lists.openstreetmap.org can not be removed.

In your request for account removal you need to identify all accounts that are affected as we do not have information on which accounts belong to which OpenHistoricalMap users.

Cookies

Numerous OHM operated services use cookies to store information on your login and site navigation state. We also use cookies and similar technologies to recognize and improve your use of our websites. You may delete cookies from your computer, and most browsers provide the option to block them. If you block cookies placed by us (first party cookies), you will not be able to access parts of the OHM websites and services that require a login. However, your access to our websites will not be affected if you disable cookies placed by third parties.

Contact

If you have questions or concerns with respect to this policy, please contact OHM admins at ohm-admins@googlegroups.com.

If you believe that we hold information that would allow us to correct, amend, or delete inaccurate information about you or if you believe that information about you has been processed in violation of this privacy policy please email us at ohm-admins@googlegroups.com.
Note that you may change your username, email associated with your account, and ‘home’ location through your account without contacting the OHM.