Privacy Policy Research and What Data is Commonly Collected by WFH Services - absentee-neptune/Senior-Capstone GitHub Wiki

For each of the services we looked at, we also looked at their Privacy Policies, to see what data was collected, as well as what is the most commonly collected data between the services.

Canvas Privacy Policy

Within the privacy policy for Canvas the types of data collected are clearly listed, separated into two sections. The first section covers data that the user provided to Canvas voluntarily, such as full name, e-mail, gender, and professional title. In some instances, Canvas will also ask for more important information, such as payment information in some situations, which will be saved alongside other billing information. The messages and files sent and uploaded are also considered to be voluntary information that is collected and stored. The second section of the privacy policy regarding the users data, has to do with data collected via technology, specifically the servers that Canvas use which occasionally incorporate third parties for their hosting. The information that is collected here is more on the technical end of the spectrum, with the servers saving data pertaining to the users browser, IP address, domain name, and timestamp for activity. Some of the data collected may also pertain to the URLs navigated to as well as what was searched for by the user. This data is mostly stored in log files and created each time the user is signed on.

Zoom Privacy Policy

Zoom’s privacy policy regarding user data, is seperated into a chart that breaks down what type of data is collected, how it is collected, why it is collected, as well as the legal basis for the collection of the data. The first section of data that Zoom collects from the User relates to ‘Account User Data’ and includes data relating to the users name, phone number, email address, and meeting schedule, among other optional bits of information. This data is what is voluntarily collected when the user creates a free account with Zoom. The second type of data collected is ‘Paid Account Holder Data’, which includes data such as billing name, billing phone number, billing address, and payment information. This data is collected much like the user data previously, when the user created a paid Zoom account it was necessary to provide the billing information. The next section of Zoom’s chart has to do with ‘Operation Data’, such as configuration data, meeting metadata, feature usage data, performance data, and service logs. This data was automatically collected by Zoom when the software is run. The last section of the chart has to do with ‘Persistent Identifiers on Marketing Pages’ which covers data that was collected through the use of cookies and tools such as Google Analytics. The data that is provided to Zoom through this includes, IP address, Browser type, ISP, OS, Date and timestamps, as well as approximate physical location.

Google Privacy Policy

Google Meet follows the over encompassing Google Privacy Policy for all of its data collection. When it comes to personal information and data, Google collects browser type and settings, device type and settings, OS, IP, and date and time stamps. Google also has access to the user’s searches, so that they can recommend videos, and project more targeted ads at the user. All of this data is collected automatically by Google's servers, if on an Android mobile device the devices will intermittently send out information on the device and it’s settings to Google if any of their services are in use.