|
Tag: Redirect target changed |
| (2 intermediate revisions by one other user not shown) |
| Line 1: |
Line 1: |
| __NOTOC__
| | #REDIRECT [[PCP:Privacy]] |
| | |
| This page describes how Pharmacopedia.wiki handles your data: what we collect, how we store it, who controls it, and how long we keep it.
| |
| | |
| Pharmacopedia.wiki is operated by the Pharmacopedia Collective, a nonprofit. The named data controller is Mark Elliott, MD (mark@pharmacopedia.wiki).
| |
| | |
| == What Pharmacopedia.wiki stores ==
| |
| | |
| === Account data ===
| |
| | |
| When you create an account on Pharmacopedia.wiki, we store:
| |
| | |
| * Username
| |
| * Email address (optional; used for password recovery and notifications if you choose)
| |
| * Hashed password (bcrypt; we never store your password in cleartext)
| |
| * Account creation date
| |
| | |
| === Assessment data ===
| |
| | |
| If you complete assessments on Pharmacopedia.wiki, we store your responses and computed scores. Assessment data is linked to your account. You can view your assessment history at [[Special:MyProfile]].
| |
| | |
| Assessment data is used for:
| |
| | |
| * Showing you your own results and history
| |
| * Internal research and analysis (see "Research use" below)
| |
| | |
| Assessment data is never sold, licensed, or shared with commercial entities. See [[Pharmacopedia:Refusals]] for the full list of commitments on data use.
| |
| | |
| === MyLifeStory data ===
| |
| | |
| If you use [[Special:MyLifeStory]], your timeline entries (events, episodes, observations, stories, relationships, and attributes) are stored with the visibility level you choose:
| |
| | |
| * '''Private''' (default): visible only to you.
| |
| * '''Public + attribution''': visible to others with your display name.
| |
| * '''Public + username''': visible to others with your username.
| |
| * '''Public, no byline''': visible to others with no identifying information.
| |
| | |
| Private entries are never shared, exported, or made available to any other service. Public entries are visible on Pharmacopedia.wiki according to the level you select. You can change an entry's visibility at any time.
| |
| | |
| === Derived data ===
| |
| | |
| Some data is generated from your account activity:
| |
| | |
| * Derived timeline events (auto-generated from your medications, diagnoses, and experience reports, visible in MyLifeStory)
| |
| * Profile statistics (assessment completion counts, timeline entry counts)
| |
| | |
| === Adverse experience reports ===
| |
| | |
| If you submit a reader-experience report through the form on a medicine page, we store your report content, the medicine it references, and the timestamp. Reports are linked to your account but never published individually; only anonymized aggregate signals that meet a minimum count threshold may surface on the relevant medicine page.
| |
| | |
| This feature is not a regulated adverse event reporting program. See [[Pharmacopedia:Adverse Event Reporting]] for the full explanation of what the feature is, what it is not, and where to file an official report if you need to.
| |
| | |
| === Page edits and contributions ===
| |
| | |
| Edits to wiki pages are logged with your username, edit timestamp, and edit summary. This is standard MediaWiki behavior and the edit history is publicly visible. We do not offer anonymous editing; all edits are attributed to a logged-in account.
| |
| | |
| == Data controller model ==
| |
| | |
| Pharmacopedia.wiki is one part of the Pharmacopedia Collective, which also operates Oyami (oyami.org), Trykl (trykl.org), and PubSci (pubsci.io). Your Pharmacopedia.wiki account works across all four services.
| |
| | |
| The data controller model is layered:
| |
| | |
| * '''Pharmacopedia.wiki''' is the data controller of the shared layer: your account identity and your assessment data at rest.
| |
| * '''Each service''' (Oyami, Trykl, PubSci) is the data controller of its own service-specific data (for example, Oyami session records, Trykl transaction records, PubSci submissions and reviews).
| |
| * '''Each service''' is also an independent data controller of its own processing of data it accesses from the shared Pharmacopedia.wiki layer. When Oyami accesses your assessment data to power its matching features, Oyami is making its own processing decisions and is a controller for that activity.
| |
| | |
| The named data controller on all services is Mark Elliott, MD.
| |
| | |
| For rights related to your account or assessment data, contact mark@pharmacopedia.wiki or visit [[Special:MyProfile]]. For rights related to your activity on a specific service, that service's privacy page is the authority.
| |
| | |
| == How long we keep your data ==
| |
| | |
| === Active data ===
| |
| | |
| Your account, assessments, and timeline entries persist for as long as your account is active. You can delete individual timeline entries or assessment records at any time.
| |
| | |
| === Backups ===
| |
| | |
| Pharmacopedia.wiki maintains encrypted backups:
| |
| | |
| * Up to 7 days on the backend host
| |
| * Then up to 14 days in active off-site storage
| |
| * Then up to 180 additional days in the off-site provider's deletion-recovery layer
| |
| | |
| All backups are encrypted (GPG, AES-256). The off-site provider cannot read the backup contents. Total worst-case time before permanent deletion of a deleted record: approximately 201 days.
| |
| | |
| This is current operational reality. When we migrate to infrastructure with hard-delete capability, the retention window will shorten and this page will be updated.
| |
| | |
| === Account deletion ===
| |
| | |
| If you delete your account, your account data and assessment data are removed from the active database. Backup copies persist for the retention window described above, then are permanently deleted.
| |
| | |
| Page edits you made to public wiki pages remain in the edit history (attributed to your username) and are not deleted when your account is deleted. This is standard MediaWiki behavior.
| |
| | |
| == Research use ==
| |
| | |
| Assessment data may be used for internal research and analysis by Mark Elliott, MD. This research is internal to the Pharmacopedia Collective; we do not pursue peer-reviewed publication and therefore do not require IRB review. The research dataset is for Mark's internal analysis only.
| |
| | |
| Assessment data used for research is de-identified. Research results are never presented at an individual level.
| |
| | |
| == Third-party services ==
| |
| | |
| Pharmacopedia.wiki does not use third-party JavaScript on user-facing pages. Your browser talks only to Pharmacopedia infrastructure. See [[Pharmacopedia:Refusals]] for the full commitment.
| |
| | |
| Pharmacopedia.wiki uses OAuth 2.0 (with PKCE) to authenticate your account on connected services (Oyami, Trykl, PubSci). When you authorize a service, you see the specific data grants on the consent screen. You can manage your active grants at [[Special:OAuthManageMyGrants]].
| |
| | |
| == Your rights ==
| |
| | |
| You may:
| |
| | |
| * View all data associated with your account at [[Special:MyProfile]] and [[Special:MyLifeStory]]
| |
| * Delete individual assessment records or timeline entries
| |
| * Change the visibility of any MyLifeStory entry
| |
| * Revoke OAuth grants to connected services at [[Special:OAuthManageMyGrants]]
| |
| * Delete your account entirely by contacting mark@pharmacopedia.wiki
| |
| * Request a copy of your data by contacting mark@pharmacopedia.wiki
| |
| | |
| == Contact ==
| |
| | |
| For questions about this privacy notice or your data, contact Mark Elliott, MD at mark@pharmacopedia.wiki.
| |
| | |
| == Revision history ==
| |
| | |
| * 2026-05-24: Initial version.
| |
| * 2026-05-31: Corrected data controller model from "separate controllers" to layered controller model (Q6 decision, 2026-05-24). Removed premature cross-link to Oyami privacy document. Updated backup retention to reflect current 7+14+180 operational reality.
| |
| | |
| == See also ==
| |
| | |
| * [[Pharmacopedia:Refusals|Refusals]]
| |
| * [[Pharmacopedia:Reciprocity|Reciprocity (AI training posture)]]
| |
| * [[Pharmacopedia:Sources|Sources and licensing]]
| |
| | |
| [[Category:Pharmacopedia policy]] | |
