About the website
The website is built on top of the Django framework and implements social log in with 3rd party providers using OAuth. I believe in transparancey so I think you should be able to review and study it. Therefore, you can find everything on my GitHub. Here's a quick summary if you don't want to be bothered by the details.
I DO NOT do the following:
I DO do the following:
My approach is to be open about what I do. The information I collect varies from platform to platform. A complete list can be found below in the What happens afterwards? section. Still got questions? Please get in touch.
How does it work?
The logic is pretty simple. I am asking you to contribute to my research by allowing me access to your location data in different social media and mapping platforms. Participation is entirely voluntary and you can control what you share with me. If you decide to share your location data (e.g. geotagged Instagram posts, OSM edits, etc), I need your explicit authorization. This is done on the provider's website. Here's an example of how it works:
Say you decide to share your Instagram posts with me
Visit the Social applications page to see the list of providers you can share with me.
What happens afterwards?
Once I receive the authorization tokens, I can collect geotagged information from your profiles. This is not automatic so you don't have to worry about me constantly spying on you. Typically, I will run the data collection process once for new people signing up on the website. I will also run a final data collection before conducting the final analysis, sometime in May - unless you revoke my authorization in the meantime. See below for a complete list of information I collect. If you prefer to get technie, check out the data collector class.
Platform specific information collected through this service:
This is sensitive information. What steps did you take to protect my data?
Excellent question! To ensure privacy, I have set up secure SSL certificates so your connection is encrypted. The website is running on an AWS EC2 instance in the cloud. Further, your user data (i.e. tokens) and location data (e.g. Insta posts) are stored in separate databases (Postgres AWS RDS instances) to make sure they can't be easily connected. Data is only accessible from the machine runnig the Django app and from the secure University of Florida network.
How can I opt out?
While seeing you leave makes me sad, it is your choice to opt out if you'd like. You have the following options: