Moodle LMS
Moodle is the world's most customisable and trusted Learning Management System that empowers educators to improve our world.
Website: https://moodle.org
Type of Digital Public Good
- Open content
- Open data
- ✅ Open software
- Open standard
- Open AI model
1. Is it relevant to one of the Sustainable Development Goals?
- 4. Quality Education
Evidence: Moodle is the world's most customisable and trusted eLearning solution that empowers educators to improve our world.
Link to Evidence: https://moodle.com/about/
2. Does it use an appropriate open license?
Yes, this project is licensed under the following license(s):
3. Is ownership clearly defined?
Is the ownership of the project and everything that the project produces clearly defined and documented?
Yes
If yes - please link to the relevant copyright, trademarks, or ownership documentation for the project.
4. Does the license of libraries/dependencies undermine the openess of the project?
Does this open project have mandatory dependencies (i.e. libraries, hardware) that create more restrictions than the original license?
No
If yes - are the open source components able to demonstrate independence from the closed component(s) and/or are there functional, open alternatives?
Not Applicable
If yes - please describe how the open source components are independent and/or list the open alternatives for the closed component:
Not Applicable
5. Is there documentation?
Does some documentation exist of the source code, use cases, and/or functional requirements. For software projects, this should be present as technical documentation that would allow a technical person unfamiliar with the project to launch and run the software. For datasets and data projects, this should be present as documentation that describes all the fields in the set, and provides context on how the data was collected and how it should be interpreted. For content collections, this should indicate any relevant compatible apps, software, hardware required to access the content and any instructions about how to use it.
Yes
If yes - please link to the relevant documentation:
- Installation guide - https://docs.moodle.org/400/en/Installation_quick_guide
- https://docs.moodle.org
6. Is non PII data and/or content accessible?
Does this project collect or use non-personally identifiable information (non-PII) data and/or content?
Yes
If yes - is there a mechanism for extracting or importing non-personally identifiable information (non-PII) from the system in a non-proprietary format?
Yes
If yes - describe the mechanism for extracting or importing non-personally identifiable information from the system in a non-proprietary format:
Backup, restores, different open data extraction formats or SQL queries against the DB. Reference - https://docs.moodle.org/400/en/Migration_from_Moodle
7. Does the project adhere to privacy and other applicable international and domestic laws?
Has this project taken steps to ensure adherence with relevant privacy, domestic, and international laws? For example, the General Data Protection Regulation (GDPR) in the European Union or the Supplementary Act A/SA.1/01/10 on Personal Data Protection for the Economic Community of West African States (ECOWAS) (yes/no)
Yes
If yes, please list some of relevant laws that the project complies with:
- GDPR
If yes, please describe the steps this project has taken to ensure adherence (include links to terms of service, privacy policy, or other relevant documentation):
- Moodle's data protection pledge of commitment - https://moodle.com/news/moodles-data-protection-pledge-commitment/
- https://docs.moodle.org/400/en/GDPR
8. Does the project adhere to standards and best practices?
Does this project support standards? (i.e. Web Content Accessibility Guidelines (WCAG) 2.1 or other standards such as those listed on W3C)
Yes
Which standards does this project support (please list)
- JWT
- Oauth2
- XSD
- XAPI
- XSLT
- XML
Can you point to evidence of your support? (i.e. please link to your validator, open test suite, etc.)
- https://docs.moodle.org/400/en/LTI_and_Moodle
- https://docs.moodle.org/400/en/Migration_from_Moodle
- https://docs.moodle.org/dev/Experience_API_(xAPI)
- https://moodle.com/security-privacy/
- https://docs.moodle.org/dev/Privacy_API
- https://www.imsglobal.org/activity/learning-tools-interoperability
- https://www.imsglobal.org/question/index.html
- https://xapi.com/overview/
Was this project built and developed according to or in adherence with any design, technical and/or sector best practices or principles? i.e. the Principles for Digital Development?
Yes
Which principles and best practices does this project support (please list)
- Principles for Digital Development: Design with the user, Understand the existing ecosystem, Design for scale, Build for sustainability, Be data driven, Use open standard, open data, open source and open innovation, Reuse and improve, Address privacy and security, Be collaborative
9. Does the project do no harm by design?
Has this project taken steps to anticipate, prevent and do no harm by design?
On the whole, does this project take steps to ensure that it anticipates, prevents and does no harm by design?
Yes
Is there any additional information you would like to share about the mechanisms, processes or policies that this project uses to avoid doing harm by design?
9.a. Data Privacy & Security
Does this project collect or store personally identifiable information (PII) data and/or content?
Yes
If yes - please list the types of data and/or content collected and/or stored by the project:
- Student personal information
- Student results
If yes - does this project share this data and/or content with third parties?
Yes
Please describe the circumstances with which this project shares data and/or content with third parties. Please add links as relevant.
- Moodle is a piece of open-source software, so we don't generally host the tool nor have access to student or content data. The hosting entity (typically the institution itself or a company providing this service) does have access to the content and student data. The tool is so built that privacy is at its core, plus a series of plugins are maintained to allow for extra functionality in this regard:
- https://moodle.org/plugins/tool_dataprivacy (Moodle HQ)
- https://moodle.org/plugins/local_gdpr_deleteuserdata (external contributor)
- https://moodle.org/plugins/local_revoke_consent (external contributor)
- https://moodle.org/plugins/block_blurnames (external contributor)
In general, Moodle is built on the principle that users must have sovereignty over their data, so disclosures to third-parties are not allowed. The institutions that typically deploy Moodle also value integrity and security as a reason to choose Moodle, for example government agencies or military branches, schools with data of minors or tech agencies working on behalf of the Ministries of Education, be them global or regional.
If yes - does the project ensure the privacy, security and integrity of this data and/or content collection and has it taken steps to prevent adverse impacts resulting from its collection, storage and distribution.
Yes
If yes - please describe the steps, and include a link to the privacy policy and/or terms of service:
9.b. Inappropriate & Illegal Content
Does this project collect, store or distribute content?
Yes
If yes - what kinds of content does this project, collect, store or distribute? (i.e. childrens books)
Learning materials - The project is neutral regarding content, and all moderation is left to the institution deploying the software.
If yes - does this project have policies that describe what is considered innappropriate content? (i.e. child sexual abuse materials)
No
If yes - please link to the relevant policy/guidelines/documentation.
Not Applicable
If yes - does this project have policies and processes for detecting and moderating innappropriate/illegal content?
No
If yes - please describe the policies and processes for detecting, reporting and removing innapropriate/illegal content (Please include the average response time for assessment and/or action. Link to any policies or descriptions of how inappropriate content is handled):
Learning materials - The project is neutral regarding content, and all moderation is left to the institution deploying the software.
9.c. Protection from harassment
Does this project facilitate interactions with or between users or contributors?
Yes
If yes - does the project take steps to address the safety and security of underage users?
Yes
If yes - please describe the steps this project takes to address risk or prevent access by underage users:
If yes - does the project help users and contributors protect themselves against grief, abuse, and harassment?
Yes
If yes - please describe the steps taken to help users protect themselves.
Development & deployment countries
List of countries this project was developed in.
- Australia
- Spain
- United States of America
List of countries this project is actively deployed in.
Not Applicable