Volunteer NDA

From Wikitech
Jump to: navigation, search

Volunteer NDA for Phabricator access related to private data (WMF-NDA project)

Some tasks in Wikimedia Phabricator require access to private and/or protected data.

For this reason, anyone being granted these types of permissions needs to sign an Non-Disclosure Agreement (NDA). All Wikimedia Foundation employees are covered by an NDA they must sign as they are hired. The rest of our contributors must sign a specific Trusted Volunteer Access & Confidentiality Agreement. Please note that volunteers requesting server access must follow the Requesting shell access NDA process instead.

Interested? Follow this process:

Create a request

Create a task in Phabricator under the WMF-NDA-Requests project with the following data:

  • A list of permissions requested and the reasoning behind your request
  • It is better to explain your use case and needs than it is to ask for specific permissions
  • Wikimedia Foundation employees supporting your request (CCed)

Any progress will be communicated in this task.

Get support

In order to move forward we will need:

  • At least one comment of support from a Wikimedia Foundation employee, explaining why it is a good idea to accept your request
  • A comment of approval from one Wikimedia Foundation manager (usually the manager of an employee supporting you).
  • Sign the Non-Disclosure Agreement online. Please sign "My Full Name - Country Of Origin". Add a comment to the Phabricator task that you have signed the NDA.
    • Note in order to sign this agreement, you must be at least 18 years old. In rare circumstances, WMF, in consultation with the legal team, may grant an exception for someone who is at least 16 years old.
  • (Have someone with access double-check the list of NDA signatures and confirm your signature in the Phabricator task.)
    • Note: this access is limited only to WMF's Legal, Phabricator administration, and Technical Operations teams.
  • (Have someone with access add you to the list of members of the Phabricator WMF-NDA project.)

Welcome to the NDA club!

After checking that your acceptance of the online agreement is in place, you will be added to the WMF-NDA project and you will be granted the permissions requested. The task you created will be closed as Resolved.


Volunteer NDA for privileged LDAP access or shell access

Volunteers who are seeking access to a service requiring privileged LDAP access (listed here: https://wikitech.wikimedia.org/wiki/LDAP_Groups) or who wish to obtain shell access to the production cluster need to sign a NDA with the Wikimedia Legal department. It's managed digitally via software called Cobblestone.

Interested? Follow this process:

Create a request

Create an "Ops-Access-Requests" task in Phabricator with the following information:

  • A list of permissions requested and the reasoning behind your request
  • It is better to explain your use case and needs than it is to ask for specific permissions
  • Wikimedia Foundation employees supporting your request (CCed)

Any progress will be communicated in this task.

Get support

In order to move forward we will need:

Get access

  • A member of the Technical Operations team will pick up your request (these are assigned on a weekly rotation) and contact the Legal department of the Wikimedia Foundation.
  • They'll reach out to you and prepare an NDA which you then need to sign
  • When that has been confirmed, the Operations person will grant you shell access or add you to the cn=nda LDAP group