privacy : limit the data uploaded to your server

I definitely second this. There is absolutely no reason the os username needs to be known to RescueTime, and full window titles can fall under the the umbrella of "extremely sensitive information".

Wow. This could be a deal breaker. Love the app, but the window_title and os_username fields are not something I feel comfortable sending to your servers.

Good response. :) I think just being able to turn those things off would be enough.

Limiting window_title on a per-application basis would be the most useful.

Hi, what is the progress on this?

I have uninstalled RescueTime and will install it back only when it is possible to make data fields such as os_username and window_title optional.

Could you give a time frame of when I can expect a version with this?

[In answer to your email]

Hi Tony,

Thank you for taking the time to reply via email, although in the end I managed to get this as a thread in the forum.

Knowing how much time I spend on each application is a good start, even if this is not broken down further. Do not underestimate this information (as it is the main information available in RescueTime at the moment anyway!), it has got some value on its own!

Concerning privacy issues, here are some examples of file names I would like to keep private: "due_diligence_companyA.doc" or "Action plan Sales November.xls" or "Lotus Notes - Compose: Market share company A 3.4% for the month of October". In fact, pretty much any file that I open at work is sensitive. I do not mean the content of the file, but the file name (or window name) in itself reveals pretty much a lot of information.

Still, I understand that you want to add more value through your interface, and go 1 step beyond just giving the time spent on each application. In this case, could you just not tag folders locally on the computer. For example, if I tag "folderA" as "work", "folderB" as "fun", then if I open a file burried in folderA, could RescueTime report (upload to your servers) only "work" instead of the actual file name? Same thing goes for OS name.

Best regard.

________________________________
> Date: Sun, 9 Dec 2007 10:20:56 -0800

> Subject: Re: RESCUETIME CONTACT FORM
>
> Hi there-
>
> (sorry for the delay in response-- we've been buried in emails!)
>
> We're collecting this information in anticipation of some upcoming features... For many applications (like Microsoft Word), understanding how much time you spend in the application just isn't very valuable and needs to be broken down a bit more... We're aiming to allow for breakdowns by document name and/or directory.
>
> We're VERY sensitive to privacy issues (which is why we expose what we're collecting in an XML format)... Can you tell me a scenario where a filename would be sensitive information? I suppose if someone were working on a "bankruptcy_announcement.doc" or somesuch, maybe?
>
> Your suggestion of "optional" collection features is a good one, however. Can't hurt to have a few checkboxes (with a firm announcement that you'll get a lot less value if you collect less data).
>
> Thanks for the great feedback!
>
> Cheers,

Hi,

you may be thankful for my feedback, but has anything been done about this? I un-installed Rescuetime more than 3 monthes ago, and I still waiting for an aswer from the development team (besides "wow, this is a great idea, etc.etc.")

Quote: "allowing users to NOT send OS Username and Window Title. These are scheduled for the next release, which is probably a week or two out."
If I read you well, this should have been out before 24 March. Did you finally release this, or is RescueTime still sending all this sensible information to your servers?

Thanks for your honest answer. No problem, as long as you let me know about issues you are stuggling with.

I prefer to wait thatyou flatten-out most problems before you release the first version. Sorry, I have no time to fool around with test versions at the moment. I'll just be patient and wait for the official release. But please, post a message here when it is released, I don't have the time to read through the developement blog.

Thanks.

Hi,

I installed rescue time and I must say that it does solve the privacy issue while keeping the interface straight forward and not bloated with options. Well done!

Still, I had something slightly different in mind. By checking "Do not record window titles", Rescue time only sends to the server the name of the app. As someone from you team suggested, there is more useful information than that.

For example, if I work with Microsoft Word, I may work on personal files, or work related files. I want to know the difference between the two.

As I am not confident sending to your servers the name on the files I work on, I would like the Rescue Time Data Collector to detect the category of file and then send that information to the server. In other words, instead of sending

window_title: 'unlisted'

I prefer

window_title: 'work'
or
window_title: 'personal'

Rescue Time Data collector uploads the data, then you make all the processing on the server. I prefer to make all the processing locally on my machine, and upload to the server only the processed information that I want to upload.

This requires tagging folders locally on the PC, not just defining tags on your server. Example:
- folder "D:\documents and Settings\USER\My Documents\Contracts" is "work"
- "D:\documents and Settings\USER\My Documents\Photos\Rome 2008"is "private"
- al other folders are "Other".

In fact, you already do this pretty well with websites and the whitelist. Rescue Time Data collector checks the site versus the whitelist and decides to upload the name or not, depending if it is in the list or not.

It would be nice if you could do the same for file and folder names (adding folder tagging).

Please give us more control over the data uploaded to your servers !