Trust and Safety Product/Temporary Accounts/FAQ/uk

What is a temporary account?

With a temporary account, your IP address can only be accessed by authorized staff and community members, as outlined in the updated Privacy policy.

See also:

Why does everyone need to have a username?

The license used on the Wikimedia wikis requires each edit to be attributed to a user identifier.

What does a temporary username look like?

~2024-12345-67.

Why are you working on temporary accounts at all?

We're working on this project for legal reasons. There are risks we can't afford to ignore.

Wikimedians began discussing the exposure of IP addresses as a privacy issue shortly after MediaWiki was developed. For example, there is a thread dating back to 2004. For many years, there was no strong incentive to change this, so the Wikimedia Foundation wasn't working on it. But in the meantime, in many countries, new laws and new standards were introduced. Finally, in 2018, the Foundation's Legal department determined that the indefinite public storage of IP addresses presents serious risks. This includes legal risks to the projects and risks to the users. Today, this project is one of the priorities of the Foundation's leadership.

See also:

Why a temporary account is the right solution to the problem?

There are some hard requirements that led to the design of the temporary accounts. Some of them are of legal, and some are of technical nature:

Is the Wikimedia Foundation monitoring the effect of using temporary accounts on our communities?

As of February 2024, not yet, because temporary accounts haven't been introduced on any wiki yet.

The teams involved in this work are monitoring some "guardrail" metrics. These include how many users get blocked, how many pages get deleted, how many edits get reverted, and the number of requests for assistance from CheckUsers.

What if a temporary account holder does something bad and needs to be blocked?

Temporary accounts' IPs will be stored, IP blocks will continue to work, and temporary accounts will be subject to IP blocks.

IP addresses appear in the history of many pages. Will those past uses be modified?

No.

Historical IP addresses that were published on wiki before the switch to temporary accounts will not be modified. The Wikimedia Foundation Legal department has approved this decision.

When will these changes reach my wiki?

As of November 2023, temporary accounts may become available on a test wiki in March 2024.

Bot operators and tool developers are encouraged to test their tools as early as possible.

As of November 2023, the first deployment to a public pilot wiki (e.g., a low-traffic Wikipedia) is expected no earlier than April/May 2024.

What if a community wants to keep using IP addresses?

After temporary accounts become available, displaying IP addresses for subsequent contributions will no longer be permitted. All communities need to prepare for the change to temporary accounts.

Would disallowing or limiting anonymous editing be a good alternative?

No.

In the past, the Wikimedia Foundation has supported research into requiring registration for all editors editing Wikipedia articles. The results have been mixed. We can't say that disabling not logged-in editing of articles is clearly an equally good solution.

Even if it was, we would need to disable not logged-in editing of any page. That would be against a founding principle. (To read more about it, look at the table above.)

Some communities currently have public pages for documenting the activities of some bad actors, including their IP addresses (e.g., Long-term abuse). Will this documentation still be permitted?

Yes.

The communities should treat the IPs of logged in users and temporary account holders the same on the Long-term abuse list. They may list the IP addresses when necessary, but they should refer to the abusers by their temporary account usernames.

See also:

Can we publicly document the IP addresses used by suspected (but not confirmed) bad actors who are using temporary accounts?

In general, no, but sometimes yes, temporarily.

When possible, patrollers with access to IP addresses should document the temporary account name(s) instead of the IP addresses. The exception is when the IP addresses are necessary for the purpose of protecting the wiki from abusive actions. Necessity should be determined on a case-by-case basis. If a disclosure later becomes unnecessary, then the IP address should be promptly removed.

For example, if a suspected vandal is exonerated during an investigation, then the report showing the user's IP address can be removed through oversight. That way, the IP address is only revealed while it is needed, and then is suppressed later, after it has been shown to not be needed any longer. See the related policy for more information.

Are temporary accounts deployed anywhere? Where can I test it?

• Beta German Wikipedia
• Beta Persian Wikipedia

Keep in mind that these are testing wikis. Software there may not work as expected.

How long does my temporary account last?

Your temporary account will work for as long as the cookie exists.

The cookie is currently set to expire after one year from the first edit.

The following are the most common scenarios in which a temporary account will be irretrievably lost:

Can't an abuser just clear cookies?

Yes, they can. Temporary accounts are not intended to solve any anti-abuse problems.

We know the problem of abusers making edits through a pool of changing IPs while masking browser agent data. This cannot be solved through temporary accounts. This is not a design goal for this project either. Otherwise, we would need to use trusted tokens, disabling anonymous edits, or fingerprinting, all of which are very involved, complicated measures that have significant community and technical considerations.

However, abuse from a user that clears cookies will be no harder or easier to detect and mitigate than before the rollout of temporary accounts. Tools will be adapted to ensure that bidirectional mappings between temporary accounts and IPs can be safely and efficiently navigated by trusted functionaries.

How do I login to my temporary account? What is the password for my temporary account?

It is impossible to log in to a temporary account. There are no passwords for temporary accounts.

What can I do with my temporary account?

Your temporary account will work at all of the Wikipedias and other SUL-connected wikis hosted by the Wikimedia Foundation.

Note: When you create a free registered account, the edit history, notifications, and messages in your old temporary account will not be transferred to your new registered account.

Will the temporary username be unique across different wikis?

Yes.

If you see User:~2024-12345-67 at multiple SUL-connected wikis, you can be confident that this is the same account.

Who will be able to see the IP address of temporary accounts?

Stewards, CheckUsers, global sysops, admins, and patrollers who meet qualifying thresholds, as well as certain staff at the Wikimedia Foundation.

There are privacy risks associated with IP addresses. This is why they will be visible only to people who need to have that information for effective patrolling.

See also:

I have a qualified account. How can I see the IP addresses?

Go to Special:Preferences and opt in.

Will I need to sign any non-disclosure agreement?

No.

There is the access to nonpublic personal data policy (ANPDP). It is a legal policy from the Wikimedia Foundation about how checkusers and people with certain other roles must protect non-public personal data that they obtain in the course of their duties.

However, you will need to opt-in to access to IP addresses through Special:Preferences at your local wiki.

How will autoblocks work with temporary accounts?

Autoblocks stop vandals and other high-risk users from continuing to disrupt the projects by immediately creating a new account.

Autoblocks for temporary accounts are the same as autoblocks for registered users.