What follows is a condensed version of Protecting Library Patron Confidentiality-- Checklist of Best Practices by Trina J. Magi, University of Vermont. Find the complete document at www.aallnet.org/products/pub_sp0709/pub_sp0709_Handout.pdf. The checklist was reprinted from the following book:  Magi, T. (2005). Protecting our precious liberties: What every educator needs to know about libraries, privacy and freedom of inquiry. Bloomington, IN: Phi Delta Kappa International.

• Conduct a privacy/confidentiality audit.
• Gather the minimum amount of patron information needed for library operations.
• Retain information connecting a user to a particular transaction only as long as needed for normal operations.
• Restrict access to patron information to a limited number of appropriate library personnel.
• Write use and privacy policies that tell patrons what they can do to protect their privacy.
• Educate staff on confidentiality policies.
• Rather than using sign-up sheets for people using library computers, use a "pass system" in which the patron shows an ID, but the ID is not recorded.
• Avoid practices and procedures that place patron information on public view.
• If the library uses an outside Internet Service Provider, choose one whose practices best match the library's privacy policy.
• When using commercial document suppliers, make sure the library is not required to identify patrons requesting information.
• If the library buys an Internet filtering product, be sure the company will not sell its database of Web sites visted by patrons in the library.
• Don't include patron names on interlibrary loan requests sent to other libraries.
• Find ways to separate patrons' names from interlibrary loan records.
• Set automated circulation systems to purge borrower information when items are returned.
• Delete old Web server logs.
• Check with software vendors to see if they have tools for making the library system logs anonymous.
• On public workstations, use boot routines to clear caches, temp directories, and recent history browsing files.
• Use image programs to wipe out and recreate hard drives of public terminals each night. This will get rid of installed programs, cookies, and other identifiers.
• Delete cookie files or set browsers to reject cookies.

 Create your own free wiki!Support CommunityPublic, not yet premium Privacy Policy RSS