changed xmpp retention to 1month; removed diaspora.
This commit is contained in:
parent
76ada2843c
commit
d763739e48
|
|
@ -72,9 +72,9 @@ If a user chooses to use any of the services provided by us, the following data
|
|||
|
||||
To protect your data we use the following security measures:
|
||||
|
||||
1. We use disk encryption on all servers to prevent data leak in case the servers are stolen, confiscated or in any way physically tampered with.
|
||||
2. We provide and require SSL/TLS encryption on all "user-to-server" and "server-to-server" communications on all provided services.
|
||||
3. We utilize "end-to-end" and/or "server-side" encryption technologies whenever it is made available by services that allow it to provide maximum security for the users.
|
||||
- We use disk encryption on all servers to prevent data leak in case the servers are stolen, confiscated or in any way physically tampered with.
|
||||
- We provide and require SSL/TLS encryption on all "user-to-server" and "server-to-server" communications on all provided services.
|
||||
- We utilize "end-to-end" and/or "server-side" encryption technologies whenever it is made available by services that allow it to provide maximum security for the users.
|
||||
|
||||
<a name="what_we_do_not"></a>
|
||||
|
||||
|
|
@ -122,7 +122,7 @@ We store all data in **our own servers**, located in a data center in the **Neth
|
|||
|
||||
- This service requires login with **Disroot** credentials.
|
||||
- The roster (your XMPP contact list) is stored on the server's database.
|
||||
- Chat history is stored on the server in the same form as on the chat itself, meaning unencrypted chat is stored in plain-text and encrypted chat is stored encrypted. Additionally, the chat history, if not specified by the user on per chatroom basis, is stored on the server for a period of three months. You can decide to not have any history stored on the server per chat.
|
||||
- Chat history is stored on the server in the same form as on the chat itself, meaning unencrypted chat is stored in plain-text and encrypted chat is stored encrypted. Additionally, the chat history, if not specified by the user on per chatroom basis, is stored on the server for a period of one month. You can decide to not have any history stored on the server per chat.
|
||||
- Server logs, which store information such as, but not limited to, your IP address and your username are stored for a period of 24 hours after which they are deleted from the server. No backup of log files is created. Logs are kept to prevent brute-force attacks on accounts and to provide quick insight when debugging issues.
|
||||
- Given that XMPP is a **federated** protocol, when interacting with users or chat-rooms hosted on third party servers, data is sent to other independently operated and owned servers in the network over which we have no control.
|
||||
- Files uploaded to the server are stored as is (plain-text or encrypted) for a period of three months.
|
||||
|
|
@ -202,19 +202,10 @@ We store all data in **our own servers**, located in a data center in the **Neth
|
|||
- **No log data** (IP address, session cookie, etc.) is stored on the server.
|
||||
- No user data is permanently stored on the server.
|
||||
|
||||
<a name="diaspora"></a>
|
||||
|
||||
## 4.12 - **Disroot Social (Diaspora\* pod)** (https://pod.disroot.org)
|
||||
|
||||
- This service requires to create a separate account.
|
||||
- Server logs, which store information such as, but not limited to, your IP address, your username, error messages and User Agent, are stored for a period of 24 hours after which they are deleted from the server. No backup of log files is created. Logs are kept to prevent brute-force attacks on accounts and to provide quick insight when debugging issues.
|
||||
- This service works on **federated protocols** which means your public posts are shared/transfered to other independently operated servers in the network over which we have no control.
|
||||
- Private posts/messages are sent to users on other servers only if you intentionally choose to interact with them.
|
||||
- All pod data (usernames, email addresses, posts and messages, polls, contacts, photos and images) are stored on the server in the database as is (plain-text).
|
||||
|
||||
<a name="git"></a>
|
||||
|
||||
## 4.13 - **Disroot GIT** (https://git.disroot.org)
|
||||
## 4.12 - **Disroot GIT** (https://git.disroot.org)
|
||||
|
||||
- This service requires to create a separate git account to interact with others.
|
||||
- Server logs, which store information such as, but not limited to, your IP address, your username, error messages and User Agent, are stored for a period of 24 hours after which they are deleted from the server. No backup of log files is created. Logs are kept to prevent brute-force attacks on accounts and to provide quick insight when debugging issues.
|
||||
|
|
@ -226,12 +217,12 @@ We store all data in **our own servers**, located in a data center in the **Neth
|
|||
|
||||
Under the **GDPR** you have a number of rights with regard to your personal data:
|
||||
|
||||
1. **Right to access** - The right to request (I) copies of your personal Data or (II) access to the information you submited and we hold at any time.
|
||||
2. **Right to correct** - The right to have your Data rectified if it is inaccurate or incomplete.*
|
||||
3. **Right to erase** - The right to request delete or remove your Data from our servers.
|
||||
4. **Right to restrict the use of your Data** - The right to restrict processing or limit the way we use your Data.
|
||||
5. **Right to Data portability** - The right to move, copy or transfer your Data.
|
||||
6. **Right to object** - The right to object to our use of your Data.
|
||||
- **Right to access** - The right to request (I) copies of your personal Data or (II) access to the information you submited and we hold at any time.
|
||||
- **Right to correct** - The right to have your Data rectified if it is inaccurate or incomplete.*
|
||||
- **Right to erase** - The right to request delete or remove your Data from our servers.
|
||||
- **Right to restrict the use of your Data** - The right to restrict processing or limit the way we use your Data.
|
||||
- **Right to Data portability** - The right to move, copy or transfer your Data.
|
||||
- **Right to object** - The right to object to our use of your Data.
|
||||
|
||||
> *Your* **Disroot username** *and* **Disroot email address** *are integral part of your user account and cannot be modified.*
|
||||
> *Usernames remain in the database, even after erasure request, to prevent old usernames being re-used by new users, compromising the privacy of both and enabling possible identity theft. For that reason, usernames of accounts that have been deleted remain in the database to avoid being reused. However, all the linked personal information is deleted permanently.*
|
||||
|
|
|
|||
Loading…
Reference in New Issue