Update: New Privacy Policy - now including Opt-Out Options

https://www.plex.tv/about/privacy-policy-changes/

Main additions are:

1. Generalization, duration and bit rate gets rounded in order to prevent fingerprinting
2. New Opt-Out Options for Playback Data, Third-Party Online Behavioral or Interest-Based Advertising on Websites/Mobile Applications, Promotional Communications, Options for Sharing What You Watch
3. New Privacy tab which includes all product events data that is being collected with the intention of providing full transparency

Full Privacy Policy here:
https://www.plex.tv/about/privacy-policy-update/

Cautiously optimistic. I’ll wait until the actual new policy is available before I return my pitchfork to the pitchfork shed

one more addendum would make me put away my pitchfork, which would be the permanent publishing of all metrics collection fully qualified host names, and a promise that it will remain segmented from any other function or service in regards to local playback and functionality. In the FAQ. I know that it is currently metrics.plex.com, but that may change. I wanted documented and updated so that we can blackhole it or block it without having to sniff our traffic periodically.

This is for those of us that would rather lose third party functionality than near-total anonymity.

Massive thank you @elan and co for listening to the feedback and responding so promptly with something so substantial.

Having the option to opt-out of playback data collection, and it being more generalised by default when opted in (which is the default) are both very gratifying to see, and demonstrates an understanding of the concerns being raised.

The upcoming complete list of usage statistics is absolutely gravy on top, and very much appreciated. It’s also quite cunning, as if I can see what it is exactly that you’re wanting to collect, I’m a lot more likely to opt in

There have been a lot of pitchforks recently but not enough recognition of this rather rapid response. Thank you for taking users concerns seriously.

I ABSOLUTELY OBJECT to data collection aka “telemetry” or “metrics” of any kind, period!

I OBJECT to having to “log in” to my own servers in my own home that do not and never will share anything outside of my house or stream to anyone or anything outside of my house, EVER. I have no use in the universe for watching crap on my phone away from my house. I don’t watch anything on my phone INSIDE of my house, ever.

The furtherest I could roll back the server apps on my Mac and still have HVEC playback is 1.7.2.x.bla.bla
But it absolutely will not function unless I log into YOUR servers first. That is BULLSHIT.

I only access my Plex server from my Rokus from within my house, period. But it requires me to maintain an always logged in connection to Plex. That’s BULLSHIT. On my currently functioning older version of the server (which I had to downgrade to because it was completely screwed up and would not record/DVR anything from my HDHomerun) I have always opted out (but have I really?) of data collection but now that this has all come up it made me rethink everything and now I can not, do not and never will trust you people ever again.

Why the mandatory log in? There is no need in the universe to force me to log in to your system just so I can access my stuff on my lan within my own home. I don’t use apps or plugins inside of Plex and never will, I have no need to.
And you have no need to require people to log in to your system to use their own servers within their own homes.

I became a Plexpass subscriber to have the ability to DVR tv shows from MY HDHomerun that’s connected to MY tv antenna.
When my monthly renewal comes up in two weeks I will not renew. I’m buying a Tablo 4 tuner DVR so I can then have live OTA TV on all my Rokus without having to give a penny to you** ANTI-PRIVACY-DATA-NAZIS**. BTW, what’s the real point of the Plex DVR if it can’t run live TV to my Rokus but it can to my iPhone? Really, who watches anything on a cell phone with a 4" screen when they have a house full of 55" screens in every room? That’s stupid ! You can run live TV to my iPhone but not my Roku? BAH!! Done with you…

You’ve demonstrated that you people only care about being parasites for the sake of enrichment.
Your backpedaling is not to be trusted and I reject it.

Personally I am looking for another solution to stream my stuff to my Rokus that doesn’t require a mandatory always on connection to somewhere outside of my home, that doesn’t spy on me or require me to log into my own server through someone else’s servers first.

I do not trust you people, at all. There is NOTHING you can do to regain my trust short of completely removing the mandatory logins and connections to your systems. And we all know that will never happen.

Goodbye DATA-NAZIS.

I am satisfied, my suggestion on Reddit was pretty much what was changed.

reddit.com/r/PleX/comments/6ukwc6/privacy_policy_update_notice/dlun17c/

@A_Preston said:
I ABSOLUTELY OBJECT to data collection aka “telemetry” or “metrics” of any kind, period!

That’s largely already been resolved.

The furtherest I could roll back the server apps on my Mac and still have HVEC playback is 1.7.2.x.bla.bla
But it absolutely will not function unless I log into YOUR servers first. That is BULLSHIT.

Are you sure? Core functionality (IE, anything not requiring a PlexPass shouldn’t require login)

Why the mandatory log in? There is no need in the universe to force me to log in to your system just so I can access my stuff on my lan within my own home.

Plex uses this connection to validate you have a PlexPass. It’s a subscription service primarily, there aren’t many good ways to validate subscriptions that work well.

BTW, what’s the real point of the Plex DVR if it can’t run live TV to my Rokus but it can to my iPhone? Really, who watches anything on a cell phone with a 4" screen when they have a house full of 55" screens in every room? That’s stupid ! You can run live TV to my iPhone but not my Roku? BAH!! Done with you…

They brought the function to iPhone and Android first, then Apple TV and Android TV. More platforms I assume are on the way. As for who watches OTA TV broadcasts from a phone and not their TV? Well my TV has the ability to show me OTA TV already, I don’t need Plex for that. It’s useful to be able to continue watching a live broadcast when I have to leave home. Come Dine With Me omnibus Sundays in particular are good for this. Can still carry on with my life and not miss out

Personally I am looking for another solution to stream my stuff to my Rokus that doesn’t require a mandatory always on connection to somewhere outside of my home, that doesn’t spy on me or require me to log into my own server through someone else’s servers first.

You can head over to Emby, but it also requires this for premium functions. If you find something else that fits the bill, please do share. There are lots of interested people.

From the other thread that got locked 4 mins before I was able to post this:

@elan said:

@drinehart said:
@elan - Will these changes include clients as well? If these changes are limited to PMS only, the information from clients may still be shared. Will we still get to opt on on clients going forward?

Quite honestly, still discussing, but the thing which seems to make the most sense is a cloud-based option which applies everywhere.

This is very gratifying to hear. I’ve seen the toggle on clients get re-enabled through updates in the past, having that managed on the cloud side is good. Client-specific is also worth keeping, especially for users who opt out of all of the cloud services and only want to use Plex on their LANs though.

@elan said:

@“Frank R.” said:
However, please hire a good Community Manager. Again you’re truly dreadful at this. And your loss of revenue and all of this ill will is all squarely on one person. You.

Appreciate the feedback.

Directly engaging our community with direct talk and humor–and not just spouting canned PR lines–has been my go-to strategy for the last decade with Plex, and it’s generally served me well.

Please keep it up. Humanising is definitely preferable to parroting the same canned response over and over again. That said, it doesn’t really matter which way you go, people will complain either way. Nectar’s community manager tried that on Facebook when they announced partnering with the Daily Mail, which triggered a lot of people, and resulted in backlash to the seemingly tone-deaf PR people parroting the same lame response over and over. You can’t please all of the people all of the time

@hexluther said:
Read the privacy policy letter from Kevin, keeping careful attention on two sets of keywords:

“personal content” (what justifies personal content?)

“playback” (so only when something is played are the opt-out settings you set are adhered to – for any other function, such as scrapping, adding, indexing, reorganization, “maintenance”, etc. metadata is generated and sent?)

As much as I’d like to believe Plex as this point, they have to EARN it back. Trust and respect is EARNED, not freely given (well trust is at times, but I had already given them trust, now they have to earn it back). Or perhaps Plex of yesteryear is gone, never to return again.

I read the privacy policy, those terms are clearly defined.

Personal content:

Depending on your choice of how to use our Services, your personal content may be stored on your personal hardware (“Personal Local Content”) or stored in the cloud (“Personal Cloud Content”, collectively, “Personal Content”). For your Personal Content, except in the limited circumstances described below, we do not collect filenames or content titles of your Personal Content.

Playback and other than playback:

Metadata for Personal Content. Except for certain exceptions such as for Personal Cloud Content, Third-Party Control and Playback Mechanisms, and other similar services, as described below, we do not collect and store metadata (information about the specific file, cover art, subtitles, running length, etc.) for Personal Content stored on your personal Plex Media Server. However, your Plex Media Server may anonymously send us filenames or other identifiers for your Personal Content for the sole purpose of providing metadata back to your personal Plex Media Server. You may disable this metadata matching capability.

Anyway, thanks all. This thread has been interesting reading. And thanks again to @elan to his continued patience and good humour dealing with numerous personal attacks.

Thanks Plex for being open to listening to people and making optimizations/changes. Some companies would never do this. I do hope though that Plex learns from this experience how some people value privacy to the extreme, some are just so so and some just do not care but that a solution that covers most everyone should be though of and the best way to accomplish this is by asking the community. Plent of people on the forums and polls and stuff to gather input before making some decisions. And I actually do like the humor that Elan provides and recognize that he does not want Plex to become controlled by a standard PR response. Some take it offensively but I really believe people need to become less sensitive and relax more ( do not take things so personal and my side versus their side).

Good news. I am not very sensitive to data collection and have shared my data before these proposed changes, but I must say I was furious at removing the option when I am a plexpass supporter. People need to have the choice. Especially if they are paying customers. Good that you backtracked.

i36a4idi60ew.png971×358 43.6 KB

THAT is an even WORSE answer !! How about HELL NO !!!

Just stop with that DATA-■■■■ crap !

Anything to do with “cloud” crap means our stuff is still on your server or must connect to your servers somehow for permission to function !

WHAT PART OF THIS DO YOU NOT UNDERSTAND? NO DATA COLLECTION! NO PHONE HOME! NO REMOTE PERMISSION SLIPS !

100% STAND ALONE SERVER/CLIENT ABILITY THAT CAN OPERATE WITHOUT CONNECTION TO THE OUTSIDE WORLD!!

You had to have realized that Plex couldn’t possibly have been doing all this development @ $150 USD lifetime for some Plex Pass users. Data harvesting, 3rd party push content, and ad supported revenue has been the target of this platform for quite a while.

@deepseth said:

@A_Preston said:
I read the privacy policy, those terms are clearly defined.

Personal content:

Not the privacy policy, but as I said, the “privacy policy letter” from Kevin. I’m not going to refer to the “privacy policy” itself, as it’s been noted that will change. I was looking for clarification as elan knew them to be at this moment.

Though I do appreciate your attempt to assist me.

@hexluther said:

@deepseth said:

@A_Preston said:
I read the privacy policy, those terms are clearly defined.

Personal content:

Not the privacy policy, but as I said, the “privacy policy letter” from Kevin. I’m not going to refer to the “privacy policy” itself, as it’s been noted that will change. I was looking for clarification as elan knew them to be at this moment.

Though I do appreciate your attempt to assist me.

The “privacy policy letter” is just that a letter, letting us know it’s going to change and in layman’s terms how. The privacy policy itself is what you should refer to once it does come out. That will have all the legalese explaining what and how explicitly to include definitions and or what is covered under a vague term like “Personal Content”, I would assume. As stated in the letter, they have no legal obligation to notify us that the privacy policy is changing, though in common practice most (emphasis on most) companies notify their users.

@A_Preston said:

WHAT PART OF THIS DO YOU NOT UNDERSTAND? NO DATA COLLECTION! NO PHONE HOME! NO REMOTE PERMISSION SLIPS !

100% STAND ALONE SERVER/CLIENT ABILITY THAT CAN OPERATE WITHOUT CONNECTION TO THE OUTSIDE WORLD!!

Fully agree on that!

@latweek said:
You had to have realized that Plex couldn’t possibly have been doing all this development @ $150 USD lifetime for some Plex Pass users. Data harvesting, 3rd party push content, and ad supported revenue has been the target of this platform for quite a while.

No, not really. If I had thought that, I would have simply signed up for a hodgepodge of products. Streama and perhaps silicondust DVR.

I always thought plex might move toward a reoccurring subscription model (with lifetime users grandfathered in, of course). If I wanted to pay money for my data collected and to be advertised to, would it make more sense for me to sign up for Hulu and Netflix?

@M3LViN said:
Door-in-the-face technique - Wikipedia

Might be. But even then it might come at a very high costs. We can only speculate on how many Plex users installed emby for the first time this weekend.

Pandoras Box has been openend.

I agree. My point was that even the scaled back privacy change is not good enough.

Testing Emby now. Seems to be as good or even better than Plex. It’s refreshing to see something new.

I’d recommend try it out if you’re looking for an alternative.

Doing that as we speak …

@djumv said:

@latweek said:
You had to have realized that Plex couldn’t possibly have been doing all this development @ $150 USD lifetime for some Plex Pass users. Data harvesting, 3rd party push content, and ad supported revenue has been the target of this platform for quite a while.

No, not really. If I had thought that, I would have simply signed up for a hodgepodge of products. Streama and perhaps silicondust DVR.

I always thought plex might move toward a reoccurring subscription model (with lifetime users grandfathered in, of course). If I wanted to pay money for my data collected and to be advertised to, would it make more sense for me to sign up for Hulu and Netflix?

If you had been watching Plex’s lineage from its historical origin of XBMC up to today, it has been one long, circuitous, opportunistic route to monetization from the community.