[apparmor] Data collection by AppArmor

[John Johansen]

On 5/26/19 4:09 PM, npdflr wrote:
> Hello,
> Does AppArmor collect any data from its users?
> Is there any privacy policy for AppArmor or is the ubuntu data privacy applicable for AppArmor?
> 

AppArmor does not collect data from its users.

The AppArmor security module will log violations to the audit subsystem, and those will be logged/forwarded/recorded on the users system(s) according to how the user has logging configured. Again this is not forwarded to or collected by the AppArmor project.

Users may submit information as part of an email, bug report or merge request, etc. and that will be recorded as part of the mailing list, bug/issue tracker, or git code repository but only as part of a user initiated action.

We currently don't have a public privacy policy posted, its something we should get up. Basically everyone who currently works on the project is a privacy and open source advocate and we have no plans oe intentions to collect information from, or on, our users beyond what is needed to run the various project components (ie. if you sign up to be on the mailing list, mail man needs the email address to relay messages to). In fact we deliberate still allow emailed patches and bug reporting so that our users do not have to create a gitlab or launchpad account. Nor do we require that they create a mailing list account with the understanding that mail from none members may be delayed as it needs to be moderated through.