HathiTrust respects the privacy of all visitors and users of its services. Information about privacy in different areas of HathiTrust is given below.
Data HathiTrust Collects
Your identity, when you log in. At a minimum, this includes a pseudonymous identifier and your institutional affiliation, if any. Depending on the information sent to us by your institution when you log in, HathiTrust may collect additional information such as your name and e-mail address as well.
Information about the searches you perform, items you view, and other actions you perform. This includes your IP address, the date and time of the action, your user identification (if logged in), and the action performed.
Information about you and the items in your personalized collections you create. When you create a personalized collection, HathiTrust records your user identifier and the items you add to the collection. Depending on the information sent to us by your institution when you log in, HathiTrust may include your e-mail address and name with your collection as well. This information will be visible to others if you choose to make your collection public.
HathiTrust retains log information as required by University of Michigan information security policies:
How To Request Deletion of Your Data
If you wish to request deletion of any data HathiTrust has about you, you may contact us through our feedback form
. HathiTrust will delete any personalized collections you may have created. HathiTrust is not able to delete log information for individual users.
How HathiTrust Uses Your Data
Surveys and Assessments
Information and data obtained by HathiTrust in support of assessment of services, collections, resources, etc., or in support of research related to repository services, are considered confidential and will not be shared except in aggregations or with the express permission of participants, to protect privacy.
HathiTrust's access systems (e.g., the temporary bibliographic catalog, full text search, Collection Builder, and PageTurner) frequently track or "log" the actions performed by users of those systems. In some cases, specialized services or enhancements to system functionality require retaining the transaction logging. In other cases, data that can be tied to individuals will be kept intact only for a limited period of time. Its use will be restricted to trouble-shooting and problem resolution related to system functions and service transactions. It is HathiTrust's policy that no transaction logging containing personal information will be shared with third parties.
Information from transaction logs may be aggregated for reporting on types of use and use of materials. For this purpose, information regarding individual identities or the source of the transaction will be removed. In the case of logs kept for a limited period of time (i.e., where transaction logging is not retained for services or enhancements), the precise duration of the period needed for storing full transaction level logging will be determined on a case-by-case basis. When the information is no longer reasonably useful for problem resolution, the original transaction logging information will be destroyed, and backups and other stored forms of the data will not be retained.
HathiTrust uses Security Assertion Markup Language (SAML) authentication with Shibboleth
to allow individuals affiliated with partner institutions to authenticate into HathiTrust. More about SAML, including privacy, is available on HathiTrust's SAML authentication implementation page
Individuals not affiliated with partner institutions can authenticate to create permanent collections in HathiTrust's Collection Builder using a University of Michigan Friend Account
. Friend Accounts require a valid email address. Information about privacy and security for information at the University of Michigan can be found at http://cio.umich.edu/policy/
. Users may choose a username to build collections in HathiTrust. If users choose to make collections public, the username is displayed on the public list of collections on the Collection Builder home page
. No information is displayed if collections are made private.
If you choose, you can opt out of this tracking by using one of the following methods:
Personally identifiable information in works in the repository
It is HathiTrust's general policy, in consultation with depositing institutions, to remove access to works or portions of works when significant personally identifiable information is exposed that creates a cause for concern (e.g., Social Security numbers of living individuals). Works where access is limited in this way will be indicated as "Limited (search-only)" in HathiTrust search interfaces, and the landing page for an item itself or relevant portions of the item will indicate that the item has been closed due to privacy concerns.
Our Digital Library
Emergency Temporary Access Service
Searching, Reading, Building Collections, and Accessibility
Technology, Standards, and Specifications
Getting Content Into HathiTrust
HathiTrust Metadata Management System
Data Availability and APIs
Acceptable Use of the HathiTrust Website and Digital Library
Metadata Sharing Policy 2019
Access and Use Policy
Bibliographic Metadata Correction Policy
Deletion from HathiTrust
Digital Preservation Policy
Guidelines for Digital Object Deposit
Statistics and Visualizations