The web is usually seen as a vast array of public sites, but behind the scenes is a quiet world of private areas which hold much of the value found online.

Private areas, so-called "intranets," can be used to provide services for all members (but not the public), a given group of members (say full members but not associate members or the public), the board of directors (but not non-directors), and staff.

The ability to include or exclude has important applications. For instance, it may be that a library or database is a major resource and having it online would be a valued service to members. At the same time, placing the library in a public area would de-value the worth of membership since anyone would have free access to the information. In such circumstances, a private area can be used both to create a member benefit and to protect site owner interests.

Private areas are also good for posting documents, forms, data, background information, studies, board minutes, and member directories -- information that has value for members but which is not intended for broad distribution.

Or, it may be desirable to create an "extranet," an online "place" to do business with certain outsiders. A vendor can post bills, update order information, and check the status of an invoice on an extranet -- the area is private even though there is access by both the vendor and site owner management.

In considering such areas, it should be understood that the term "private" is a relative expression. It does not mean "totally secure" or "impenetrable."

An area is "private" only to the extent members do not give out passwords, ex-employees do not maintain online access, and hackers do not target a site. Privacy concerns can be largely (if imperfectly) overcome with the use of firewalls, message encryption schemes, digital certificates, and good policy-making. For example, to maintain privacy and exclusivity, as a matter of policy change member passwords at least annually -- say when membership renewal periods expire....