> "**In 5 years, KDE software enables and promotes privacy**"
Privacy is the new challenge for Free Software. KDE is in a unique position to offer users a complete software environment that helps them to protect their privacy. KDE, being a community-driven and user-focused problem has the opportunity to put privacy on top of the agenda, arguably, being in this position, KDE has the obligation to do this, in the interest of the users.
The effect is expected to be two-fold:
* Offer users the tools to protect privacy and to lead a private and safe digital life without compromising their identity, exposing their habits and communications
* Setting a high standard and example for others to follow, define the state of the art of privacy protection in the age of big data and force others to follow suit, thereby increasing pressure on the whole industry and eco-system to protect users privacy better
Leaking user data, allowing users to be tracked, collecting their most private information in databases across the world means that users lose control of their identity and what parts they want others to know, and what they want to keep for themselves. Worse, collecting data in so many places, often commercially, but also by governments means that the user has little way of knowing what is known about him or her, let alone being able to determine who should be able to control what. Data being persistently collected means that not only today's security measures and policies are relevant, but also the future's. This poses a great multiple great risks.
==Personal Risks for Users==
Risks that individual users run are, among others:
* The more data that is collected, the bigger the risk of Identity Theft becomes
* More collected data means that decisions will be made for the user based on skewed or incomplete information (imagine insurance policies)
* Collected data may end up in the hands of oppressive regimes, posing risks to the user when travelling, or even at home
* User's most private secrets may end up in the wrong hands
Socio-economic effects that effect how society, national and international communities work, are:
* Free speach is compromised
* Journalists need tools to communicate secretly, lacking that, freedom and independence of press cannot be guaranteed
* Trade-secrets cannot be kept, free markets cannot function without tools protecting privacy
* Sovereignty of nations cannot be guaranteed
* Cyber-attacks may lead to shift in power
=What it will take?=
* Privacy-respecting defaults
* Offering the right tools in the first place
We can only guarantee privacy if we also value security.
* Functioning code-review
* Quick turn-around times for software updates, especially security fixes
* Moving away from inherently insecure technologies, i.e. default to Wayland instead of X11
==Privacy Respecting Defaults==
KDE software supportig this goal should:
* Only collect and send data when necessary and clear and sensible from within the context. No hidden telemetry sending user stats, not HTTP connections downloading content, no search queries to online services without the users explicit consent (or where it's entirely clear from the context, e.g. web browsers, software updater, etc.).
* Prefer to use encrypted communication where possible, prefer HTTPS over HTTP where possible, avoid unencrypted connections at all costs.
* No collection of privacy-relevant data without clear purpose.
* Conservative defaults: a user should not have to make changes to the software configuration to avoid leaking data. Secure and private by default. (Software may be configured to be more leaky if that benefits the user, but the risk to that should be clear, either from context or explicitely stated.)
=How we know we succeeded=
* The NSA hate us.
<any links that will help people find more information and understand the goal better>
=I am willing to put work into this=
=I am interested=
* add your name