Scope of this Notice

This Privacy Statement is intended to describe the CentOS Project’s privacy practices and to provide information about the choices you have regarding the ways in which information is collected by the CentOS Project is used and disclosed. For Convenience, the CentOS Project is referred to in this document as “CentOS”.

Our Commitment to Privacy

At CentOS, your privacy is important to us. To better protect your privacy, we have provided this Statement explaining our information practices and the choices you can make about the way your personal information is collected, used and disclosed. To make this Statement easy to find, we have made it available on our homepage and at every location where personally-identifiable information may be requested.

The Information We Collect

This Privacy Statement applies to all information collected by or submitted to CentOS, including personal data. “Personal data” is data that can be used to identify an individual.

CentOS collects personal data when:

CentOS may also collect personal data from individuals (with their consent) at conventions, trade shows and expositions. The types of personal data collected may include (but is not limited to):

Publicly Available Personal Data

In keeping with the open nature and spirit of CentOS, some personal data attached to CentOS accounts is made public by default. Specifically:

If you wish for this information to be kept private, you can opt-out of displaying this information publicly in your account preferences. If you choose to opt out, CentOS will still have access to this information, but it will not be displayed to others, and will be considered private. The only exceptions to this are for your name and email address, as these may still be visible in some services such as our bug tracking system.

Using your Personal Data

CentOS uses the personal data you provide to:

We also use this personal data to provide you with information related to your account and the projects or services you acquire from us, to improve our service, and to personalize communications, and to comply with or fulfill any contractual obligations to you. It is in CentOS’s legitimate business interests to provide you with the information, communications, and services you request; to create a public record of the data and content produced by CentOS’s services, and to maintain the integrity of that data and content for historical, scientific, and research purposes.

Sharing your Personal Information

Unless you assent, CentOS will never share the personal data you provide us except as described below:

CentOS may share your data to third parties under any of the following circumstances:

Receiving E-mail

CentOS may send you e-mail about your account, to inform you of important upcoming CentOS events (e.g. Dojo event changes), or in response to your questions. For your protection, CentOS may contact you in the event that we find an issue that requires your immediate attention. CentOS processes your personal data in these cases to fulfill and comply with its contractual obligations to you, to provide the services you have requested, and to ensure the security of your account.

Cookies and other Browser Information

CentOS’s online services automatically capture IP addresses. We use IP addresses to help diagnose problems with our servers, to administer our website, and to help ensure the security of your interaction with our services. Your IP address is used to help identify you and your location. in order to provide you data and content from our services as quickly as possible. It is in CentOS’s legitimate business interest to maximize the efficiency and effectiveness of its services for all users.

As part of offering and providing customizable and personalized services, CentOS uses cookies to store and sometimes track information about you. A cookie is a small amount of data that is sent to your browser from a Web server and stored on your computer’s hard drive. All sections of centos.org where you are prompted to log in or that are customizable require your browser to accept cookies.

Generally, we use cookies to:

If you do not want your personal information to be stored by cookies, you can configure your browser so that it always rejects these cookies or asks you each time if you accept them or not. However, you must understand that the use of cookies may be necessary to provide certain services, and choosing to reject cookies will reduce the performance and functionality of the site. Your browser documentation includes instructions explaining how to enable, disable, or delete cookies at the browser level(usually located in the “Help”, “Tools”, or “Edit” facility).

Our Commitment to Data Security

CentOS trains its administrators on our privacy policy guidelines and makes our privacy policy available to our partners. Our website uses Secure Socket Layer (SSL) technology, which encrypts your personal data when you send your personal information on our website. In addition, CentOS and its partners enter into confidentiality agreements which require that care and precautions be taken to prevent loss, misuse, or disclosure of your personal data.

Public Forums Reminder

CentOS often makes chat rooms, forums, mailing lists, message boards, and/or news groups available to its users. Please remember that any information that is disclosed in these areas becomes public information. Exercise caution when deciding to disclose your personal data. Although we value individual ideas and encourage free expression, CentOS reserves the right to take necessary action to preserve the integrity of these areas, such as removing any posting that is vulgar or inappropriate. It is in CentOS’s legitimate business interests to provide all users an accurate record of data and content provided in the public forums it maintains and uses; to maintain the integrity of that data and content for historical, scientific, and research purposes; and to provide an environment for the free exchange of ideas relevant and constructive to the development and propagation of open source software.

Our commitment to Children’s Online Privacy

Out of special concern for children’s privacy, CentOS does not knowingly accept online personal information from children under the age of 13. CentOS does not knowingly allow children under the age of 13 to become registered members of our sites. CentOS does not knowingly collect or solicit personal information about children under 13.

In the event that CentOS ever decides to expand its intended site audience to include children under the age of 13, those specific web pages will, in accordance with the requirements of the Children’s Online Privacy Protection Act (COPPA), be clearly identified and provide an explicit privacy notice addressed to children under 13. In addition, CentOS will provide an appropriate mechanism to obtain parental approval, allow parents to subsequently make changes to or request removal of their children’s personal information, and provide access to any other information as required by law.

About Links to other sites

This site contains links to other sites. CentOS does not control the information collection of sites that can be reached through links from the various CentOS websites. If you have questions about the data collection procedures of linked sites, please contact those sites directly.

Your Rights and Choices in the EEA

Where the EU General Data Protection Regulation 2016/679 (“GDPR”) applies to the processing of your personal data, especially when you access the website from a country in the European Economic Area (“EEA”), you have the following rights, subject to some limitations, against CentOS:

If you would like to exercise any of these rights, you may do so via email at centos-pdr@centos.org. Please understand, however, the rights enumerated above are not absolute in all cases.

Where the GDPR applies, you also have the right to withdraw any consent you have given to uses of your personal data. If you wish to withdraw consent that you have previously provided to CentOS, you may do so via email at centos-pdr@centos.org. However, the withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

How to Access, Modify, or Update your Information

CentOS gives you the ability to access, modify or update your personal data at any time. You may log in and make changes to your login information (change your password), your contact information, your general preferences and your personalization settings. If necessary, you may also contact us and describe the changes you want made to the personal data you have previously provided by emailing us at centos-pdr@centos.org.

If you wish to remove your personal data from CentOS, you may contact us via email at centos-pdr@centos.org and request that we remove this information from the CentOS Account System. Other locations where you may have used your personal data as an identifier (e.g. Bug submissions or comments, list postings in the archives, wiki change history, and spec changelogs) will not be altered.

How to Contact Us

If you have any questions about any of these practices or CentOS’s use of your personal information, please feel free to contact us by email at centos-tm@centos.org or by mail at:

Assistant General Counsel
        Red Hat, Inc.
        100 East Davie Street
        Raleigh, NC 27601
        fax: +1 919-754-3704