summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--configure.ac4
-rw-r--r--contrib/Makefile.am50
-rw-r--r--contrib/pp/Makefile109
-rw-r--r--contrib/pp/README58
-rw-r--r--contrib/pp/en/0.epubbin0 -> 14822 bytes
-rw-r--r--contrib/pp/en/0.html188
-rw-r--r--contrib/pp/en/0.pdfbin0 -> 75235 bytes
-rw-r--r--contrib/pp/en/0.txt219
-rw-r--r--contrib/pp/en/0.xml177
-rw-r--r--contrib/pp/locale/de/LC_MESSAGES/pp.po511
-rw-r--r--contrib/pp/pp.rst186
-rw-r--r--contrib/tos/Makefile109
-rw-r--r--contrib/tos/README58
-rw-r--r--contrib/tos/conf.py282
-rw-r--r--contrib/tos/en/0.epubbin0 -> 16289 bytes
-rw-r--r--contrib/tos/en/0.html272
-rw-r--r--contrib/tos/en/0.pdfbin0 -> 79435 bytes
-rw-r--r--contrib/tos/en/0.txt287
-rw-r--r--contrib/tos/en/0.xml271
-rw-r--r--contrib/tos/locale/de/LC_MESSAGES/tos.po517
-rw-r--r--contrib/tos/tos.rst265
-rwxr-xr-xcontrib/update-pp.sh28
-rwxr-xr-xcontrib/update-tos.sh28
-rw-r--r--debian/anastasis-httpd.install2
-rw-r--r--debian/changelog6
-rw-r--r--debian/control1
-rwxr-xr-xdebian/rules2
-rw-r--r--src/backend/anastasis.conf14
28 files changed, 3641 insertions, 3 deletions
diff --git a/configure.ac b/configure.ac
index 6830242..6d51fb9 100644
--- a/configure.ac
+++ b/configure.ac
@@ -62,8 +62,8 @@ AC_CHECK_HEADERS([stdint.h stdlib.h string.h unistd.h])
ANASTASIS_LIB_LDFLAGS="-export-dynamic -no-undefined"
ANASTASIS_PLUGIN_LDFLAGS="-export-dynamic -avoid-version -module -no-undefined"
-AC_SUBST(TALER_LIB_LDFLAGS)
-AC_SUBST(TALER_PLUGIN_LDFLAGS)
+AC_SUBST(ANASTASIS_LIB_LDFLAGS)
+AC_SUBST(ANASTASIS_PLUGIN_LDFLAGS)
# check for libgnurl
diff --git a/contrib/Makefile.am b/contrib/Makefile.am
index c0ab873..a360ab5 100644
--- a/contrib/Makefile.am
+++ b/contrib/Makefile.am
@@ -3,10 +3,44 @@
SUBDIRS = .
+# English (en)
+tosendir=$(datadir)/anastasis/tos/en
+
+# English (en)
+ppendir=$(datadir)/anastasis/pp/en
+
+tosen_DATA = \
+ tos/en/0.txt \
+ tos/en/0.pdf \
+ tos/en/0.epub \
+ tos/en/0.xml \
+ tos/en/0.html
+
+ppen_DATA = \
+ pp/en/0.txt \
+ pp/en/0.pdf \
+ pp/en/0.epub \
+ pp/en/0.xml \
+ pp/en/0.html
+
+
+
pkgdatadir= $(prefix)/share/anastasis/
EXTRA_DIST = \
$(pkgdata_DATA) \
+ $(tosen_DATA) \
+ $(ppen_DATA) \
+ tos/Makefile \
+ tos/README \
+ tos/tos.rst \
+ tos/conf.py \
+ tos/locale/de/LC_MESSAGES/tos.po \
+ pp/Makefile \
+ pp/README \
+ pp/pp.rst \
+ pp/conf.py \
+ pp/locale/de/LC_MESSAGES/pp.po \
pogen.sh \
uncrustify.cfg \
uncrustify_precommit \
@@ -30,3 +64,19 @@ pkgdata_DATA = \
redux.xy.json \
redux.countries.json \
provider-list.json
+
+# Change the set of supported languages here. You should
+# also update tos'XX'data and EXTRA_DIST accordingly.
+TOS_LANGUAGES="en de"
+PP_LANGUAGES="en de"
+
+# Change the terms-of-service version (Etag) to generate here!
+# This value should be incremented whenever there is a substantive
+# change in the original text (but not for the translations).
+TOS_VERSION=0
+PP_VERSION=0
+
+update-tos:
+ VERSION=$(TOS_VERSION) ./update-tos.sh $(TOS_LANGUAGES)
+update-pp:
+ VERSION=$(PP_VERSION) ./update-pp.sh $(PP_LANGUAGES)
diff --git a/contrib/pp/Makefile b/contrib/pp/Makefile
new file mode 100644
index 0000000..ab29543
--- /dev/null
+++ b/contrib/pp/Makefile
@@ -0,0 +1,109 @@
+# Makefile for Sphinx documentation
+#
+# You can set these variables from the command line.
+SPHINXOPTS =
+SPHINXBUILD = sphinx-build
+PAPER =
+BUILDDIR = _build
+
+# User-friendly check for sphinx-build
+ifeq ($(shell which $(SPHINXBUILD) >/dev/null 2>&1; echo $$?), 1)
+$(error The '$(SPHINXBUILD)' command was not found. Make sure you have Sphinx installed, then set the SPHINXBUILD environment variable to point to the full path of the '$(SPHINXBUILD)' executable. Alternatively you can add the directory with the executable to your PATH. If you don't have Sphinx installed, grab it from http://sphinx-doc.org/)
+endif
+
+# Internal variables.
+PAPEROPT_a4 = -D latex_paper_size=a4
+PAPEROPT_letter = -D latex_paper_size=letter
+ALLSPHINXOPTS = -d $(BUILDDIR)/doctrees $(PAPEROPT_$(PAPER)) $(SPHINXOPTS) .
+# the i18n builder cannot share the environment and doctrees with the others
+I18NSPHINXOPTS = $(PAPEROPT_$(PAPER)) $(SPHINXOPTS) .
+
+.PHONY: help clean html json epub latex latexpdf text man doctest gettext
+
+help:
+ @echo "Please use \`make <target>' where <target> is one of"
+ @echo " html to make a single large HTML file"
+ @echo " json to make JSON files"
+ @echo " epub to make an epub"
+ @echo " latex to make LaTeX files, you can set PAPER=a4 or PAPER=letter"
+ @echo " pdf to make LaTeX files and run them through pdflatex"
+ @echo " txt to make text files"
+ @echo " man to make manual pages"
+ @echo " texinfo to make Texinfo files"
+ @echo " info to make Texinfo files and run them through makeinfo"
+ @echo " gettext to make PO message catalogs"
+ @echo " xml to make Docutils-native XML files"
+ @echo " pseudoxml to make pseudoxml-XML files for display purposes"
+ @echo " doctest to run all doctests embedded in the documentation (if enabled)"
+
+clean:
+ rm -rf $(BUILDDIR)/*
+
+
+# The html-linked builder does not support caching, so we
+# remove all cached state first.
+html:
+ $(SPHINXBUILD) -b html $(ALLSPHINXOPTS) $(BUILDDIR)/html
+ @echo
+ @echo "Build finished. The HTML page is in $(BUILDDIR)/html."
+
+json:
+ $(SPHINXBUILD) -b json $(ALLSPHINXOPTS) $(BUILDDIR)/json
+ @echo
+ @echo "Build finished; now you can process the JSON files."
+
+epub:
+ $(SPHINXBUILD) -b epub $(ALLSPHINXOPTS) $(BUILDDIR)/epub
+ @echo
+ @echo "Build finished. The epub file is in $(BUILDDIR)/epub."
+
+latex:
+ $(SPHINXBUILD) -b latex $(ALLSPHINXOPTS) $(BUILDDIR)/latex
+ @echo
+ @echo "Build finished; the LaTeX files are in $(BUILDDIR)/latex."
+ @echo "Run \`make' in that directory to run these through (pdf)latex" \
+ "(use \`make latexpdf' here to do that automatically)."
+
+pdf:
+ $(SPHINXBUILD) -b latex $(ALLSPHINXOPTS) $(BUILDDIR)/pdf
+ @echo "Running LaTeX files through pdflatex..."
+ $(MAKE) -C $(BUILDDIR)/pdf all-pdf
+ @echo "pdflatex finished; the PDF files are in $(BUILDDIR)/pdf."
+
+txt:
+ $(SPHINXBUILD) -b text $(ALLSPHINXOPTS) $(BUILDDIR)/txt
+ @echo
+ @echo "Build finished. The text files are in $(BUILDDIR)/txt."
+
+man:
+ $(SPHINXBUILD) -b man $(ALLSPHINXOPTS) $(BUILDDIR)/man
+ @echo
+ @echo "Build finished. The manual pages are in $(BUILDDIR)/man."
+
+texinfo:
+ $(SPHINXBUILD) -b texinfo $(ALLSPHINXOPTS) $(BUILDDIR)/texinfo
+ @echo
+ @echo "Build finished. The Texinfo files are in $(BUILDDIR)/texinfo."
+ @echo "Run \`make' in that directory to run these through makeinfo" \
+ "(use \`make info' here to do that automatically)."
+
+info:
+ $(SPHINXBUILD) -b texinfo $(ALLSPHINXOPTS) $(BUILDDIR)/info
+ @echo "Running Texinfo files through makeinfo..."
+ make -C $(BUILDDIR)/texinfo info
+ @echo "makeinfo finished; the Info files are in $(BUILDDIR)/info."
+
+gettext:
+ $(SPHINXBUILD) -b gettext $(I18NSPHINXOPTS) $(BUILDDIR)/locale
+ @echo
+ @echo "Build finished. The message catalogs are in $(BUILDDIR)/locale."
+
+doctest:
+ $(SPHINXBUILD) -b doctest $(ALLSPHINXOPTS) $(BUILDDIR)/doctest
+ @echo "Testing of doctests in the sources finished, look at the " \
+ "results in $(BUILDDIR)/doctest/output.txt."
+
+xml:
+ $(SPHINXBUILD) -b xml $(ALLSPHINXOPTS) $(BUILDDIR)/xml
+ @echo
+ @echo "Build finished. The XML files are in $(BUILDDIR)/xml."
diff --git a/contrib/pp/README b/contrib/pp/README
new file mode 100644
index 0000000..d221b14
--- /dev/null
+++ b/contrib/pp/README
@@ -0,0 +1,58 @@
+This directory contains the privacy policy (template) for Anastasis
+operators.
+
+
+Dependencies
+============
+
+Generating a new Privacy Policy requires Sphinx, LaTeX with babel
+packages for all supported languages. On Debian, you should
+at least install:
+
+$ apt install python3-sphinx sphinx-intl texlive-lang-german texlive-lang-english
+
+(NOTE: List may be incomplete.)
+
+
+Updating the Privacy Policy
+===========================
+
+The master file with the Privacy Policy is 'pp.rst'.
+
+If you make substantial changes, you MUST change the "PP_VERSION"
+in contrib/Makefile.am to the new Etag.
+
+To begin the translation into other languages after editing the master
+file, run
+
+$ make gettext
+
+to generate the master PO file. Then, run
+
+$ sphinx-intl update -p _build/locale/ -l de -l fr -l it
+
+to update the PO files for the various languages (extend the list of
+languages as necessary). The PO files for the translators are kept
+at locale/$LANG/LC_MESSAGES/pp.po for the language $LANG.
+
+Once all PO files have been updated with new translations, run
+
+$ make update-pp
+
+in the "contrib/" directory to generate all of the formats. The
+respective make rule calls the '../update-pp.sh' script in the
+contrib/ directory, which calls the 'Makefile' in the pp/
+directory for the various supported languages and file formats
+and then moves the generated files to the target directory
+('contrib/pp/$LANG/$VERSION.$FORMAT')
+
+
+Adding a new language
+=====================
+
+To add a new language $LANG, add $LANG to "PP_LANGUAGES" in
+'contrib/Makefile.am' and run
+
+$ sphinx-intl update -p _build/gettext -l $LANG
+
+to generate the PO template.
diff --git a/contrib/pp/en/0.epub b/contrib/pp/en/0.epub
new file mode 100644
index 0000000..b77975b
--- /dev/null
+++ b/contrib/pp/en/0.epub
Binary files differ
diff --git a/contrib/pp/en/0.html b/contrib/pp/en/0.html
new file mode 100644
index 0000000..6f9fa46
--- /dev/null
+++ b/contrib/pp/en/0.html
@@ -0,0 +1,188 @@
+
+
+<html lang="en">
+ <head>
+ <meta charset="utf-8" />
+ <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+ <title>Privacy Policy &#8212; Taler Privacy Policy</title>
+ <link rel="stylesheet" href="_static/pygments.css" type="text/css" />
+ <link rel="stylesheet" href="_static/epub.css" type="text/css" />
+ <script id="documentation_options" data-url_root="./" src="_static/documentation_options.js"></script>
+ <script src="_static/jquery.js"></script>
+ <script src="_static/underscore.js"></script>
+ <script src="_static/doctools.js"></script>
+ </head><body>
+
+ <div class="document">
+ <div class="documentwrapper">
+ <div class="bodywrapper">
+ <div class="body" role="main">
+
+ <div class="section" id="privacy-policy">
+<h1>Privacy Policy<a class="headerlink" href="#privacy-policy" title="Permalink to this headline">¶</a></h1>
+<p>Last Updated: 07.09.2021</p>
+<p>This Privacy Policy describes the policies and procedures of Anastasis
+SARL (“we,” “our,” or “us”) pertaining to the collection, use, and
+disclosure of your information on our sites and related mobile
+applications and products we offer (the “Services”). This Privacy
+Statement applies to your personal data when you use our Services, and
+does not apply to online websites or services that we do not own or
+control.</p>
+<div class="section" id="overview">
+<h2>Overview<a class="headerlink" href="#overview" title="Permalink to this headline">¶</a></h2>
+<p>Your privacy is important to us. We follow a few fundamental
+principles: We don’t ask you for personally identifiable information
+(defined below). That being said, your contact information, such as
+your phone number, social media handle, or email address (depending on
+how you contact us), may be collected when you communicate with us,
+for example to report a bug or other error related to Anastasis. We
+don’t share your information with third parties except when strictly
+required to deliver you our Services and products, or to comply with
+the law. If you have any questions or concerns about this policy,
+please reach out to us at <a class="reference external" href="mailto:privacy&#37;&#52;&#48;anastasis&#46;lu">privacy<span>&#64;</span>anastasis<span>&#46;</span>lu</a>.</p>
+</div>
+<div class="section" id="how-you-accept-this-policy">
+<h2>How you accept this policy<a class="headerlink" href="#how-you-accept-this-policy" title="Permalink to this headline">¶</a></h2>
+<p>By using our Services or visiting our sites, you agree to the use, disclosure,
+and procedures outlined in this Privacy Policy.</p>
+</div>
+<div class="section" id="what-personal-information-do-we-collect-from-our-users">
+<h2>What personal information do we collect from our users?<a class="headerlink" href="#what-personal-information-do-we-collect-from-our-users" title="Permalink to this headline">¶</a></h2>
+<p>The information we collect from you falls into two categories: (i) personally
+identifiable information (i.e., data that could potentially identify you as an
+individual) (“Personal Information”), and (ii) non-personally identifiable
+information (i.e., information that cannot be used to identify who you are)
+(“Non-Personal Information”). This Privacy Policy covers both categories and
+will tell you how we might collect and use each type.</p>
+<p>We do our best to not collect any Personal Information from Anastasis
+users. The detailed Personal Information Anastasis asks from you during
+the regular backup and recovery process at the beginning is never shared
+with us and only used to create a cryptographic account identifier which
+does not allow us to recover any of your details.</p>
+<p>That being said, when using our Services to recover key material, we may
+inherently receive the following information (depending on your choice of
+authentication method):</p>
+<blockquote>
+<div><ul class="simple">
+<li><p>Bank account details necessary when receiving funds from you to authenticate via a SEPA transfer. We will store these as part of our business records for accounting, and our bank will also be legally obliged to store the details for many years.</p></li>
+<li><p>Your phone number when using SMS authentication. We rely on third party providers (such as your mobile network operator) to deliver the SMS to you. These third parties will see the SMS message sent to you and could thus learn that you are using Anastasis. SMS is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your SMS number on our systems, except maybe in short-term logs to diagnose errors.</p></li>
+<li><p>Your e-mail address when using E-mail authentication. We rely on the Internet and your E-mail provider to deliver the E-mail to you. Internet service providers will see the E-mail message sent to you and could thus learn that you are using Anastasis. E-mail is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your E-mail address on our systems, except maybe in short-term logs to diagnose errors.</p></li>
+<li><p>Your physical address when using postal mail authentication. We rely on external providers for printing and sending the letter to you. These providers will need to learn your address and could learn that you are using Anastasis. Physical mail has strict privacy protections by law, but governments are known to break postal secrecy. We do not store your physical address on our systems, except maybe in short-term logs to diagnose errors.</p></li>
+<li><p>When you contact us. We may collect certain information if you choose to contact us, for example to report a bug or other error with the Taler Wallet. This may include contact information such as your name, email address or phone number depending on the method you choose to contact us.</p></li>
+</ul>
+</div></blockquote>
+</div>
+<div class="section" id="how-we-collect-and-process-information">
+<h2>How we collect and process information<a class="headerlink" href="#how-we-collect-and-process-information" title="Permalink to this headline">¶</a></h2>
+<p>We may process your information for the following reasons:</p>
+<blockquote>
+<div><ul class="simple">
+<li><p>to authenticate you during secret recovery</p></li>
+<li><p>to support you using Anastasis when you contact us</p></li>
+</ul>
+</div></blockquote>
+</div>
+<div class="section" id="how-we-share-and-use-the-information-we-gather">
+<h2>How we share and use the information we gather<a class="headerlink" href="#how-we-share-and-use-the-information-we-gather" title="Permalink to this headline">¶</a></h2>
+<p>We may share your authentication data with other providers that assist
+us in performing the authentication. We will try to use providers that
+to the best of our knowledge respect your privacy and have good
+privacy practices. We reserve the right to change authentication
+providers at any time to ensure availability of our services.</p>
+<p>We primarily use the limited information we receive directly from you to
+enhance Anastasis. Some ways we may use your Personal Information are
+to: Contact you when necessary to respond to your comments, answer your
+questions, or obtain additional information on issues related to bugs or
+errors with the Anastasis application that you reported.</p>
+</div>
+<div class="section" id="agents-or-third-party-partners">
+<h2>Agents or third party partners<a class="headerlink" href="#agents-or-third-party-partners" title="Permalink to this headline">¶</a></h2>
+<p>We may provide your Personal Information to our employees, contractors,
+agents, service providers, and designees (“Agents”) to enable them to perform
+certain services for us exclusively, including: improvement and maintenance of
+our software and Services. By accepting this Privacy Policy, as outlined
+above, you consent to any such transfer.</p>
+</div>
+<div class="section" id="protection-of-us-and-others">
+<h2>Protection of us and others<a class="headerlink" href="#protection-of-us-and-others" title="Permalink to this headline">¶</a></h2>
+<p>We reserve the right to access, read, preserve, and disclose any information
+that we reasonably believe is necessary to comply with the law or a court
+order.</p>
+</div>
+<div class="section" id="what-personal-information-can-i-access-or-change">
+<h2>What personal information can I access or change?<a class="headerlink" href="#what-personal-information-can-i-access-or-change" title="Permalink to this headline">¶</a></h2>
+<p>You can request access to the information we have collected from
+you. You can do this by contacting us at <a class="reference external" href="mailto:privacy&#37;&#52;&#48;anastasis&#46;lu">privacy<span>&#64;</span>anastasis<span>&#46;</span>lu</a>. We will
+make sure to provide you with a copy of the data we process about
+you. To comply with your request, we may ask you to verify your
+identity. We will fulfill your request by sending your copy
+electronically. For any subsequent access request, we may charge you
+with an administrative fee. If you believe that the information we
+have collected is incorrect, you are welcome to contact us so we can
+update it and keep your data accurate. Any data that is no longer
+needed for purposes specified in the “How We Use the Information We
+Gather” section will be deleted after ninety (90) days.</p>
+</div>
+<div class="section" id="data-retention">
+<h2>Data retention<a class="headerlink" href="#data-retention" title="Permalink to this headline">¶</a></h2>
+<p>Information entered into our bug tracker will be retained indefinitely
+and is typically made public. We will only use it to triage the
+problem. Beyond that, we do not retain personally identifiable
+information about our users for longer than one week.</p>
+</div>
+<div class="section" id="data-security">
+<h2>Data security<a class="headerlink" href="#data-security" title="Permalink to this headline">¶</a></h2>
+<p>We are committed to making sure your information is protected. We employ
+several physical and electronic safeguards to keep your information safe,
+including encrypted user passwords, two factor verification and authentication
+on passwords where possible, and securing connections with industry standard
+transport layer security. You are also welcome to contact us using GnuPG
+encrypted e-mail. Even with all these precautions, we cannot fully guarantee
+against the access, disclosure, alteration, or deletion of data through
+events, including but not limited to hardware or software failure or
+unauthorized use. Any information that you provide to us is done so entirely
+at your own risk.</p>
+</div>
+<div class="section" id="changes-and-updates-to-privacy-policy">
+<h2>Changes and updates to privacy policy<a class="headerlink" href="#changes-and-updates-to-privacy-policy" title="Permalink to this headline">¶</a></h2>
+<p>We reserve the right to update and revise this privacy policy at any time. We
+occasionally review this Privacy Policy to make sure it complies with
+applicable laws and conforms to changes in our business. We may need to update
+this Privacy Policy, and we reserve the right to do so at any time. If we do
+revise this Privacy Policy, we will update the “Effective Date” at the top
+of this page so that you can tell if it has changed since your last visit. As
+we generally do not collect contact information and also do not track your
+visits, we will not be able to notify you directly. However, Anastasis clients
+may inform you about a change in the privacy policy once they detect that the
+policy has changed. Please review this Privacy Policy regularly to ensure that
+you are aware of its terms. Any use of our Services after an amendment to our
+Privacy Policy constitutes your acceptance to the revised or amended
+agreement.</p>
+</div>
+<div class="section" id="international-users-and-visitors">
+<h2>International users and visitors<a class="headerlink" href="#international-users-and-visitors" title="Permalink to this headline">¶</a></h2>
+<p>Our Services are (currently) hosted in Germany. If you are a user
+accessing the Services from the Switzerland, Asia, US, or any other
+region with laws or regulations governing personal data collection,
+use, and disclosure that differ from the laws of Germany, please be
+advised that through your continued use of the Services, which is
+governed by the law of the country hosting the service, you are
+transferring your Personal Information to Germany and you consent to
+that transfer.</p>
+</div>
+<div class="section" id="questions">
+<h2>Questions<a class="headerlink" href="#questions" title="Permalink to this headline">¶</a></h2>
+<p>Please contact us at <a class="reference external" href="mailto:privacy&#37;&#52;&#48;anastasis&#46;lu">privacy<span>&#64;</span>anastasis<span>&#46;</span>lu</a> if you have questions about our
+privacy practices that are not addressed in this Privacy Statement.</p>
+</div>
+</div>
+
+
+ <div class="clearer"></div>
+ </div>
+ </div>
+ </div>
+ <div class="clearer"></div>
+ </div>
+ </body>
+</html> \ No newline at end of file
diff --git a/contrib/pp/en/0.pdf b/contrib/pp/en/0.pdf
new file mode 100644
index 0000000..805f725
--- /dev/null
+++ b/contrib/pp/en/0.pdf
Binary files differ
diff --git a/contrib/pp/en/0.txt b/contrib/pp/en/0.txt
new file mode 100644
index 0000000..72906ca
--- /dev/null
+++ b/contrib/pp/en/0.txt
@@ -0,0 +1,219 @@
+Privacy Policy
+**************
+
+Last Updated: 07.09.2021
+
+This Privacy Policy describes the policies and procedures of Anastasis
+SARL (“we,” “our,” or “us”) pertaining to the collection, use, and
+disclosure of your information on our sites and related mobile
+applications and products we offer (the “Services”). This Privacy
+Statement applies to your personal data when you use our Services, and
+does not apply to online websites or services that we do not own or
+control.
+
+
+Overview
+========
+
+Your privacy is important to us. We follow a few fundamental
+principles: We don’t ask you for personally identifiable information
+(defined below). That being said, your contact information, such as
+your phone number, social media handle, or email address (depending on
+how you contact us), may be collected when you communicate with us,
+for example to report a bug or other error related to Anastasis. We
+don’t share your information with third parties except when strictly
+required to deliver you our Services and products, or to comply with
+the law. If you have any questions or concerns about this policy,
+please reach out to us at privacy@anastasis.lu.
+
+
+How you accept this policy
+==========================
+
+By using our Services or visiting our sites, you agree to the use,
+disclosure, and procedures outlined in this Privacy Policy.
+
+
+What personal information do we collect from our users?
+=======================================================
+
+The information we collect from you falls into two categories: (i)
+personally identifiable information (i.e., data that could potentially
+identify you as an individual) (“Personal Information”), and (ii) non-
+personally identifiable information (i.e., information that cannot be
+used to identify who you are) (“Non-Personal Information”). This
+Privacy Policy covers both categories and will tell you how we might
+collect and use each type.
+
+We do our best to not collect any Personal Information from Anastasis
+users. The detailed Personal Information Anastasis asks from you
+during the regular backup and recovery process at the beginning is
+never shared with us and only used to create a cryptographic account
+identifier which does not allow us to recover any of your details.
+
+That being said, when using our Services to recover key material, we
+may inherently receive the following information (depending on your
+choice of authentication method):
+
+ * Bank account details necessary when receiving funds from you to
+ authenticate via a SEPA transfer. We will store these as part of
+ our business records for accounting, and our bank will also be
+ legally obliged to store the details for many years.
+
+ * Your phone number when using SMS authentication. We rely on third
+ party providers (such as your mobile network operator) to deliver
+ the SMS to you. These third parties will see the SMS message sent
+ to you and could thus learn that you are using Anastasis. SMS is
+ inherently insecure, and you should expect many governments and
+ private parties to be able to observe these messages. However,
+ we do not store your SMS number on our systems, except maybe in
+ short-term logs to diagnose errors.
+
+ * Your e-mail address when using E-mail authentication. We rely on
+ the Internet and your E-mail provider to deliver the E-mail to
+ you. Internet service providers will see the E-mail message sent
+ to you and could thus learn that you are using Anastasis. E-mail
+ is inherently insecure, and you should expect many governments
+ and private parties to be able to observe these messages.
+ However, we do not store your E-mail address on our systems,
+ except maybe in short-term logs to diagnose errors.
+
+ * Your physical address when using postal mail authentication. We
+ rely on external providers for printing and sending the letter to
+ you. These providers will need to learn your address and could
+ learn that you are using Anastasis. Physical mail has strict
+ privacy protections by law, but governments are known to break
+ postal secrecy. We do not store your physical address on our
+ systems, except maybe in short-term logs to diagnose errors.
+
+ * When you contact us. We may collect certain information if you
+ choose to contact us, for example to report a bug or other error
+ with the Taler Wallet. This may include contact information such
+ as your name, email address or phone number depending on the
+ method you choose to contact us.
+
+
+How we collect and process information
+======================================
+
+We may process your information for the following reasons:
+
+ * to authenticate you during secret recovery
+
+ * to support you using Anastasis when you contact us
+
+
+How we share and use the information we gather
+==============================================
+
+We may share your authentication data with other providers that assist
+us in performing the authentication. We will try to use providers that
+to the best of our knowledge respect your privacy and have good
+privacy practices. We reserve the right to change authentication
+providers at any time to ensure availability of our services.
+
+We primarily use the limited information we receive directly from you
+to enhance Anastasis. Some ways we may use your Personal Information
+are to: Contact you when necessary to respond to your comments, answer
+your questions, or obtain additional information on issues related to
+bugs or errors with the Anastasis application that you reported.
+
+
+Agents or third party partners
+==============================
+
+We may provide your Personal Information to our employees,
+contractors, agents, service providers, and designees (“Agents”) to
+enable them to perform certain services for us exclusively, including:
+improvement and maintenance of our software and Services. By accepting
+this Privacy Policy, as outlined above, you consent to any such
+transfer.
+
+
+Protection of us and others
+===========================
+
+We reserve the right to access, read, preserve, and disclose any
+information that we reasonably believe is necessary to comply with the
+law or a court order.
+
+
+What personal information can I access or change?
+=================================================
+
+You can request access to the information we have collected from you.
+You can do this by contacting us at privacy@anastasis.lu. We will make
+sure to provide you with a copy of the data we process about you. To
+comply with your request, we may ask you to verify your identity. We
+will fulfill your request by sending your copy electronically. For any
+subsequent access request, we may charge you with an administrative
+fee. If you believe that the information we have collected is
+incorrect, you are welcome to contact us so we can update it and keep
+your data accurate. Any data that is no longer needed for purposes
+specified in the “How We Use the Information We Gather” section will
+be deleted after ninety (90) days.
+
+
+Data retention
+==============
+
+Information entered into our bug tracker will be retained indefinitely
+and is typically made public. We will only use it to triage the
+problem. Beyond that, we do not retain personally identifiable
+information about our users for longer than one week.
+
+
+Data security
+=============
+
+We are committed to making sure your information is protected. We
+employ several physical and electronic safeguards to keep your
+information safe, including encrypted user passwords, two factor
+verification and authentication on passwords where possible, and
+securing connections with industry standard transport layer security.
+You are also welcome to contact us using GnuPG encrypted e-mail. Even
+with all these precautions, we cannot fully guarantee against the
+access, disclosure, alteration, or deletion of data through events,
+including but not limited to hardware or software failure or
+unauthorized use. Any information that you provide to us is done so
+entirely at your own risk.
+
+
+Changes and updates to privacy policy
+=====================================
+
+We reserve the right to update and revise this privacy policy at any
+time. We occasionally review this Privacy Policy to make sure it
+complies with applicable laws and conforms to changes in our business.
+We may need to update this Privacy Policy, and we reserve the right to
+do so at any time. If we do revise this Privacy Policy, we will update
+the “Effective Date” at the top of this page so that you can tell if
+it has changed since your last visit. As we generally do not collect
+contact information and also do not track your visits, we will not be
+able to notify you directly. However, Anastasis clients may inform you
+about a change in the privacy policy once they detect that the policy
+has changed. Please review this Privacy Policy regularly to ensure
+that you are aware of its terms. Any use of our Services after an
+amendment to our Privacy Policy constitutes your acceptance to the
+revised or amended agreement.
+
+
+International users and visitors
+================================
+
+Our Services are (currently) hosted in Germany. If you are a user
+accessing the Services from the Switzerland, Asia, US, or any other
+region with laws or regulations governing personal data collection,
+use, and disclosure that differ from the laws of Germany, please be
+advised that through your continued use of the Services, which is
+governed by the law of the country hosting the service, you are
+transferring your Personal Information to Germany and you consent to
+that transfer.
+
+
+Questions
+=========
+
+Please contact us at privacy@anastasis.lu if you have questions about
+our privacy practices that are not addressed in this Privacy
+Statement.
diff --git a/contrib/pp/en/0.xml b/contrib/pp/en/0.xml
new file mode 100644
index 0000000..b972e30
--- /dev/null
+++ b/contrib/pp/en/0.xml
@@ -0,0 +1,177 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE document PUBLIC "+//IDN docutils.sourceforge.net//DTD Docutils Generic//EN//XML" "http://docutils.sourceforge.net/docs/ref/docutils.dtd">
+<!-- Generated by Docutils 0.16 -->
+<document source="/research/anastasis/anastasis/contrib/pp/pp.rst">
+ <section ids="privacy-policy" names="privacy\ policy">
+ <title>Privacy Policy</title>
+ <paragraph>Last Updated: 07.09.2021</paragraph>
+ <paragraph>This Privacy Policy describes the policies and procedures of Anastasis
+ SARL (“we,” “our,” or “us”) pertaining to the collection, use, and
+ disclosure of your information on our sites and related mobile
+ applications and products we offer (the “Services”). This Privacy
+ Statement applies to your personal data when you use our Services, and
+ does not apply to online websites or services that we do not own or
+ control.</paragraph>
+ <section ids="overview" names="overview">
+ <title>Overview</title>
+ <paragraph>Your privacy is important to us. We follow a few fundamental
+ principles: We don’t ask you for personally identifiable information
+ (defined below). That being said, your contact information, such as
+ your phone number, social media handle, or email address (depending on
+ how you contact us), may be collected when you communicate with us,
+ for example to report a bug or other error related to Anastasis. We
+ don’t share your information with third parties except when strictly
+ required to deliver you our Services and products, or to comply with
+ the law. If you have any questions or concerns about this policy,
+ please reach out to us at <reference refuri="mailto:privacy@anastasis.lu">privacy@anastasis.lu</reference>.</paragraph>
+ </section>
+ <section ids="how-you-accept-this-policy" names="how\ you\ accept\ this\ policy">
+ <title>How you accept this policy</title>
+ <paragraph>By using our Services or visiting our sites, you agree to the use, disclosure,
+ and procedures outlined in this Privacy Policy.</paragraph>
+ </section>
+ <section ids="what-personal-information-do-we-collect-from-our-users" names="what\ personal\ information\ do\ we\ collect\ from\ our\ users?">
+ <title>What personal information do we collect from our users?</title>
+ <paragraph>The information we collect from you falls into two categories: (i) personally
+ identifiable information (i.e., data that could potentially identify you as an
+ individual) (“Personal Information”), and (ii) non-personally identifiable
+ information (i.e., information that cannot be used to identify who you are)
+ (“Non-Personal Information”). This Privacy Policy covers both categories and
+ will tell you how we might collect and use each type.</paragraph>
+ <paragraph>We do our best to not collect any Personal Information from Anastasis
+ users. The detailed Personal Information Anastasis asks from you during
+ the regular backup and recovery process at the beginning is never shared
+ with us and only used to create a cryptographic account identifier which
+ does not allow us to recover any of your details.</paragraph>
+ <paragraph>That being said, when using our Services to recover key material, we may
+ inherently receive the following information (depending on your choice of
+ authentication method):</paragraph>
+ <block_quote>
+ <bullet_list bullet="*">
+ <list_item>
+ <paragraph>Bank account details necessary when receiving funds from you to authenticate via a SEPA transfer. We will store these as part of our business records for accounting, and our bank will also be legally obliged to store the details for many years.</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>Your phone number when using SMS authentication. We rely on third party providers (such as your mobile network operator) to deliver the SMS to you. These third parties will see the SMS message sent to you and could thus learn that you are using Anastasis. SMS is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your SMS number on our systems, except maybe in short-term logs to diagnose errors.</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>Your e-mail address when using E-mail authentication. We rely on the Internet and your E-mail provider to deliver the E-mail to you. Internet service providers will see the E-mail message sent to you and could thus learn that you are using Anastasis. E-mail is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your E-mail address on our systems, except maybe in short-term logs to diagnose errors.</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>Your physical address when using postal mail authentication. We rely on external providers for printing and sending the letter to you. These providers will need to learn your address and could learn that you are using Anastasis. Physical mail has strict privacy protections by law, but governments are known to break postal secrecy. We do not store your physical address on our systems, except maybe in short-term logs to diagnose errors.</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>When you contact us. We may collect certain information if you choose to contact us, for example to report a bug or other error with the Taler Wallet. This may include contact information such as your name, email address or phone number depending on the method you choose to contact us.</paragraph>
+ </list_item>
+ </bullet_list>
+ </block_quote>
+ </section>
+ <section ids="how-we-collect-and-process-information" names="how\ we\ collect\ and\ process\ information">
+ <title>How we collect and process information</title>
+ <paragraph>We may process your information for the following reasons:</paragraph>
+ <block_quote>
+ <bullet_list bullet="*">
+ <list_item>
+ <paragraph>to authenticate you during secret recovery</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>to support you using Anastasis when you contact us</paragraph>
+ </list_item>
+ </bullet_list>
+ </block_quote>
+ </section>
+ <section ids="how-we-share-and-use-the-information-we-gather" names="how\ we\ share\ and\ use\ the\ information\ we\ gather">
+ <title>How we share and use the information we gather</title>
+ <paragraph>We may share your authentication data with other providers that assist
+ us in performing the authentication. We will try to use providers that
+ to the best of our knowledge respect your privacy and have good
+ privacy practices. We reserve the right to change authentication
+ providers at any time to ensure availability of our services.</paragraph>
+ <paragraph>We primarily use the limited information we receive directly from you to
+ enhance Anastasis. Some ways we may use your Personal Information are
+ to: Contact you when necessary to respond to your comments, answer your
+ questions, or obtain additional information on issues related to bugs or
+ errors with the Anastasis application that you reported.</paragraph>
+ </section>
+ <section ids="agents-or-third-party-partners" names="agents\ or\ third\ party\ partners">
+ <title>Agents or third party partners</title>
+ <paragraph>We may provide your Personal Information to our employees, contractors,
+ agents, service providers, and designees (“Agents”) to enable them to perform
+ certain services for us exclusively, including: improvement and maintenance of
+ our software and Services. By accepting this Privacy Policy, as outlined
+ above, you consent to any such transfer.</paragraph>
+ </section>
+ <section ids="protection-of-us-and-others" names="protection\ of\ us\ and\ others">
+ <title>Protection of us and others</title>
+ <paragraph>We reserve the right to access, read, preserve, and disclose any information
+ that we reasonably believe is necessary to comply with the law or a court
+ order.</paragraph>
+ </section>
+ <section ids="what-personal-information-can-i-access-or-change" names="what\ personal\ information\ can\ i\ access\ or\ change?">
+ <title>What personal information can I access or change?</title>
+ <paragraph>You can request access to the information we have collected from
+ you. You can do this by contacting us at <reference refuri="mailto:privacy@anastasis.lu">privacy@anastasis.lu</reference>. We will
+ make sure to provide you with a copy of the data we process about
+ you. To comply with your request, we may ask you to verify your
+ identity. We will fulfill your request by sending your copy
+ electronically. For any subsequent access request, we may charge you
+ with an administrative fee. If you believe that the information we
+ have collected is incorrect, you are welcome to contact us so we can
+ update it and keep your data accurate. Any data that is no longer
+ needed for purposes specified in the “How We Use the Information We
+ Gather” section will be deleted after ninety (90) days.</paragraph>
+ </section>
+ <section ids="data-retention" names="data\ retention">
+ <title>Data retention</title>
+ <paragraph>Information entered into our bug tracker will be retained indefinitely
+ and is typically made public. We will only use it to triage the
+ problem. Beyond that, we do not retain personally identifiable
+ information about our users for longer than one week.</paragraph>
+ </section>
+ <section ids="data-security" names="data\ security">
+ <title>Data security</title>
+ <paragraph>We are committed to making sure your information is protected. We employ
+ several physical and electronic safeguards to keep your information safe,
+ including encrypted user passwords, two factor verification and authentication
+ on passwords where possible, and securing connections with industry standard
+ transport layer security. You are also welcome to contact us using GnuPG
+ encrypted e-mail. Even with all these precautions, we cannot fully guarantee
+ against the access, disclosure, alteration, or deletion of data through
+ events, including but not limited to hardware or software failure or
+ unauthorized use. Any information that you provide to us is done so entirely
+ at your own risk.</paragraph>
+ </section>
+ <section ids="changes-and-updates-to-privacy-policy" names="changes\ and\ updates\ to\ privacy\ policy">
+ <title>Changes and updates to privacy policy</title>
+ <paragraph>We reserve the right to update and revise this privacy policy at any time. We
+ occasionally review this Privacy Policy to make sure it complies with
+ applicable laws and conforms to changes in our business. We may need to update
+ this Privacy Policy, and we reserve the right to do so at any time. If we do
+ revise this Privacy Policy, we will update the “Effective Date” at the top
+ of this page so that you can tell if it has changed since your last visit. As
+ we generally do not collect contact information and also do not track your
+ visits, we will not be able to notify you directly. However, Anastasis clients
+ may inform you about a change in the privacy policy once they detect that the
+ policy has changed. Please review this Privacy Policy regularly to ensure that
+ you are aware of its terms. Any use of our Services after an amendment to our
+ Privacy Policy constitutes your acceptance to the revised or amended
+ agreement.</paragraph>
+ </section>
+ <section ids="international-users-and-visitors" names="international\ users\ and\ visitors">
+ <title>International users and visitors</title>
+ <paragraph>Our Services are (currently) hosted in Germany. If you are a user
+ accessing the Services from the Switzerland, Asia, US, or any other
+ region with laws or regulations governing personal data collection,
+ use, and disclosure that differ from the laws of Germany, please be
+ advised that through your continued use of the Services, which is
+ governed by the law of the country hosting the service, you are
+ transferring your Personal Information to Germany and you consent to
+ that transfer.</paragraph>
+ </section>
+ <section ids="questions" names="questions">
+ <title>Questions</title>
+ <paragraph>Please contact us at <reference refuri="mailto:privacy@anastasis.lu">privacy@anastasis.lu</reference> if you have questions about our
+ privacy practices that are not addressed in this Privacy Statement.</paragraph>
+ </section>
+ </section>
+</document>
diff --git a/contrib/pp/locale/de/LC_MESSAGES/pp.po b/contrib/pp/locale/de/LC_MESSAGES/pp.po
new file mode 100644
index 0000000..f53add7
--- /dev/null
+++ b/contrib/pp/locale/de/LC_MESSAGES/pp.po
@@ -0,0 +1,511 @@
+# SOME DESCRIPTIVE TITLE.
+# Copyright (C) 2014-2020 Taler Systems SA (GPLv3+ or GFDL 1.3+)
+# This file is distributed under the same license as the pp package.
+# FIRST AUTHOR <EMAIL@ADDRESS>, 2020.
+#
+#, fuzzy
+msgid ""
+msgstr ""
+"Project-Id-Version: pp 0\n"
+"Report-Msgid-Bugs-To: \n"
+"POT-Creation-Date: 2021-09-07 21:42+0200\n"
+"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
+"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
+"Language-Team: LANGUAGE <LL@li.org>\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=utf-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+"Generated-By: Babel 2.9.1\n"
+
+#: ../../pp.rst:2
+msgid "Privacy Policy"
+msgstr ""
+
+#: ../../pp.rst:4
+msgid "Last Updated: 07.09.2021"
+msgstr ""
+
+#: ../../pp.rst:6
+msgid ""
+"This Privacy Policy describes the policies and procedures of Anastasis "
+"SARL (“we,” “our,” or “us”) pertaining to the collection, use, and "
+"disclosure of your information on our sites and related mobile "
+"applications and products we offer (the “Services”). This Privacy "
+"Statement applies to your personal data when you use our Services, and "
+"does not apply to online websites or services that we do not own or "
+"control."
+msgstr ""
+
+#: ../../pp.rst:16
+msgid "Overview"
+msgstr ""
+
+#: ../../pp.rst:18
+msgid ""
+"Your privacy is important to us. We follow a few fundamental principles: "
+"We don’t ask you for personally identifiable information (defined below)."
+" That being said, your contact information, such as your phone number, "
+"social media handle, or email address (depending on how you contact us), "
+"may be collected when you communicate with us, for example to report a "
+"bug or other error related to Anastasis. We don’t share your information "
+"with third parties except when strictly required to deliver you our "
+"Services and products, or to comply with the law. If you have any "
+"questions or concerns about this policy, please reach out to us at "
+"privacy@anastasis.lu."
+msgstr ""
+
+#: ../../pp.rst:31
+msgid "How you accept this policy"
+msgstr ""
+
+#: ../../pp.rst:33
+msgid ""
+"By using our Services or visiting our sites, you agree to the use, "
+"disclosure, and procedures outlined in this Privacy Policy."
+msgstr ""
+
+#: ../../pp.rst:38
+msgid "What personal information do we collect from our users?"
+msgstr ""
+
+#: ../../pp.rst:40
+msgid ""
+"The information we collect from you falls into two categories: (i) "
+"personally identifiable information (i.e., data that could potentially "
+"identify you as an individual) (“Personal Information”), and (ii) non-"
+"personally identifiable information (i.e., information that cannot be "
+"used to identify who you are) (“Non-Personal Information”). This Privacy "
+"Policy covers both categories and will tell you how we might collect and "
+"use each type."
+msgstr ""
+
+#: ../../pp.rst:47
+msgid ""
+"We do our best to not collect any Personal Information from Anastasis "
+"users. The detailed Personal Information Anastasis asks from you during "
+"the regular backup and recovery process at the beginning is never shared "
+"with us and only used to create a cryptographic account identifier which "
+"does not allow us to recover any of your details."
+msgstr ""
+
+#: ../../pp.rst:53
+msgid ""
+"That being said, when using our Services to recover key material, we may "
+"inherently receive the following information (depending on your choice of"
+" authentication method):"
+msgstr ""
+
+#: ../../pp.rst:57
+msgid ""
+"Bank account details necessary when receiving funds from you to "
+"authenticate via a SEPA transfer. We will store these as part of our "
+"business records for accounting, and our bank will also be legally "
+"obliged to store the details for many years."
+msgstr ""
+
+#: ../../pp.rst:59
+msgid ""
+"Your phone number when using SMS authentication. We rely on third party "
+"providers (such as your mobile network operator) to deliver the SMS to "
+"you. These third parties will see the SMS message sent to you and could "
+"thus learn that you are using Anastasis. SMS is inherently insecure, and "
+"you should expect many governments and private parties to be able to "
+"observe these messages. However, we do not store your SMS number on our "
+"systems, except maybe in short-term logs to diagnose errors."
+msgstr ""
+
+#: ../../pp.rst:61
+msgid ""
+"Your e-mail address when using E-mail authentication. We rely on the "
+"Internet and your E-mail provider to deliver the E-mail to you. Internet "
+"service providers will see the E-mail message sent to you and could thus "
+"learn that you are using Anastasis. E-mail is inherently insecure, and "
+"you should expect many governments and private parties to be able to "
+"observe these messages. However, we do not store your E-mail address on "
+"our systems, except maybe in short-term logs to diagnose errors."
+msgstr ""
+
+#: ../../pp.rst:63
+msgid ""
+"Your physical address when using postal mail authentication. We rely on "
+"external providers for printing and sending the letter to you. These "
+"providers will need to learn your address and could learn that you are "
+"using Anastasis. Physical mail has strict privacy protections by law, but"
+" governments are known to break postal secrecy. We do not store your "
+"physical address on our systems, except maybe in short-term logs to "
+"diagnose errors."
+msgstr ""
+
+#: ../../pp.rst:65
+msgid ""
+"When you contact us. We may collect certain information if you choose to "
+"contact us, for example to report a bug or other error with the Taler "
+"Wallet. This may include contact information such as your name, email "
+"address or phone number depending on the method you choose to contact us."
+msgstr ""
+
+#: ../../pp.rst:69
+msgid "How we collect and process information"
+msgstr ""
+
+#: ../../pp.rst:71
+msgid "We may process your information for the following reasons:"
+msgstr ""
+
+#: ../../pp.rst:73
+msgid "to authenticate you during secret recovery"
+msgstr ""
+
+#: ../../pp.rst:74
+msgid "to support you using Anastasis when you contact us"
+msgstr ""
+
+#: ../../pp.rst:78
+msgid "How we share and use the information we gather"
+msgstr ""
+
+#: ../../pp.rst:80
+msgid ""
+"We may share your authentication data with other providers that assist us"
+" in performing the authentication. We will try to use providers that to "
+"the best of our knowledge respect your privacy and have good privacy "
+"practices. We reserve the right to change authentication providers at "
+"any time to ensure availability of our services."
+msgstr ""
+
+#: ../../pp.rst:86
+msgid ""
+"We primarily use the limited information we receive directly from you to "
+"enhance Anastasis. Some ways we may use your Personal Information are to:"
+" Contact you when necessary to respond to your comments, answer your "
+"questions, or obtain additional information on issues related to bugs or "
+"errors with the Anastasis application that you reported."
+msgstr ""
+
+#: ../../pp.rst:94
+msgid "Agents or third party partners"
+msgstr ""
+
+#: ../../pp.rst:96
+msgid ""
+"We may provide your Personal Information to our employees, contractors, "
+"agents, service providers, and designees (“Agents”) to enable them to "
+"perform certain services for us exclusively, including: improvement and "
+"maintenance of our software and Services. By accepting this Privacy "
+"Policy, as outlined above, you consent to any such transfer."
+msgstr ""
+
+#: ../../pp.rst:104
+msgid "Protection of us and others"
+msgstr ""
+
+#: ../../pp.rst:106
+msgid ""
+"We reserve the right to access, read, preserve, and disclose any "
+"information that we reasonably believe is necessary to comply with the "
+"law or a court order."
+msgstr ""
+
+#: ../../pp.rst:112
+msgid "What personal information can I access or change?"
+msgstr ""
+
+#: ../../pp.rst:114
+msgid ""
+"You can request access to the information we have collected from you. You"
+" can do this by contacting us at privacy@anastasis.lu. We will make sure "
+"to provide you with a copy of the data we process about you. To comply "
+"with your request, we may ask you to verify your identity. We will "
+"fulfill your request by sending your copy electronically. For any "
+"subsequent access request, we may charge you with an administrative fee. "
+"If you believe that the information we have collected is incorrect, you "
+"are welcome to contact us so we can update it and keep your data "
+"accurate. Any data that is no longer needed for purposes specified in the"
+" “How We Use the Information We Gather” section will be deleted after "
+"ninety (90) days."
+msgstr ""
+
+#: ../../pp.rst:128
+msgid "Data retention"
+msgstr ""
+
+#: ../../pp.rst:130
+msgid ""
+"Information entered into our bug tracker will be retained indefinitely "
+"and is typically made public. We will only use it to triage the problem."
+" Beyond that, we do not retain personally identifiable information about"
+" our users for longer than one week."
+msgstr ""
+
+#: ../../pp.rst:137
+msgid "Data security"
+msgstr ""
+
+#: ../../pp.rst:139
+msgid ""
+"We are committed to making sure your information is protected. We employ "
+"several physical and electronic safeguards to keep your information safe,"
+" including encrypted user passwords, two factor verification and "
+"authentication on passwords where possible, and securing connections with"
+" industry standard transport layer security. You are also welcome to "
+"contact us using GnuPG encrypted e-mail. Even with all these precautions,"
+" we cannot fully guarantee against the access, disclosure, alteration, or"
+" deletion of data through events, including but not limited to hardware "
+"or software failure or unauthorized use. Any information that you provide"
+" to us is done so entirely at your own risk."
+msgstr ""
+
+#: ../../pp.rst:152
+msgid "Changes and updates to privacy policy"
+msgstr ""
+
+#: ../../pp.rst:154
+msgid ""
+"We reserve the right to update and revise this privacy policy at any "
+"time. We occasionally review this Privacy Policy to make sure it complies"
+" with applicable laws and conforms to changes in our business. We may "
+"need to update this Privacy Policy, and we reserve the right to do so at "
+"any time. If we do revise this Privacy Policy, we will update the "
+"“Effective Date” at the top of this page so that you can tell if it has "
+"changed since your last visit. As we generally do not collect contact "
+"information and also do not track your visits, we will not be able to "
+"notify you directly. However, Anastasis clients may inform you about a "
+"change in the privacy policy once they detect that the policy has "
+"changed. Please review this Privacy Policy regularly to ensure that you "
+"are aware of its terms. Any use of our Services after an amendment to our"
+" Privacy Policy constitutes your acceptance to the revised or amended "
+"agreement."
+msgstr ""
+
+#: ../../pp.rst:170
+msgid "International users and visitors"
+msgstr ""
+
+#: ../../pp.rst:172
+msgid ""
+"Our Services are (currently) hosted in Germany. If you are a user "
+"accessing the Services from the Switzerland, Asia, US, or any other "
+"region with laws or regulations governing personal data collection, use, "
+"and disclosure that differ from the laws of Germany, please be advised "
+"that through your continued use of the Services, which is governed by the"
+" law of the country hosting the service, you are transferring your "
+"Personal Information to Germany and you consent to that transfer."
+msgstr ""
+
+#: ../../pp.rst:183
+msgid "Questions"
+msgstr ""
+
+#: ../../pp.rst:185
+msgid ""
+"Please contact us at privacy@anastasis.lu if you have questions about our"
+" privacy practices that are not addressed in this Privacy Statement."
+msgstr ""
+
+#~ msgid "Last Updated: 11.12.2019"
+#~ msgstr ""
+
+#~ msgid ""
+#~ "This Privacy Policy describes the "
+#~ "policies and procedures of Taler Systems"
+#~ " SA (“we,” “our,” or “us”) pertaining"
+#~ " to the collection, use, and "
+#~ "disclosure of your information on our"
+#~ " sites and related mobile applications "
+#~ "and products we offer (the “Services”"
+#~ " or “Taler Wallet”). This Privacy "
+#~ "Statement applies to your personal data"
+#~ " when you use our Services, and "
+#~ "does not apply to online websites "
+#~ "or services that we do not own "
+#~ "or control."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "Your privacy is important to us. "
+#~ "We follow a few fundamental principles:"
+#~ " We don’t ask you for personally "
+#~ "identifiable information (defined below). That"
+#~ " being said, your contact information, "
+#~ "such as your phone number, social "
+#~ "media handle, or email address "
+#~ "(depending on how you contact us), "
+#~ "may be collected when you communicate"
+#~ " with us, for example to report "
+#~ "a bug or other error related to"
+#~ " the Taler Wallet. We don’t share "
+#~ "your information with third parties "
+#~ "except when strictly required to deliver"
+#~ " you our Services and products, or"
+#~ " to comply with the law. If you"
+#~ " have any questions or concerns about"
+#~ " this policy, please reach out to "
+#~ "us at privacy@taler-systems.net."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "We do our best to not collect "
+#~ "any Personal Information from Taler "
+#~ "Wallet users. We believe that the "
+#~ "Taler Wallet never transmits personal "
+#~ "information to our services without at"
+#~ " least clear implied consent, and we"
+#~ " only process and retain information "
+#~ "with a strict business need. That "
+#~ "being said, when using our Services, "
+#~ "we inherently have to collect the "
+#~ "following information:"
+#~ msgstr ""
+
+#~ msgid ""
+#~ "Bank account details necessary when "
+#~ "receiving funds from you to top-up"
+#~ " your wallet or to transfer funds "
+#~ "to you when you are being paid "
+#~ "via Taler. At the current experimental"
+#~ " stage, only the pseudonym and "
+#~ "password you entered in the bank "
+#~ "demonstrator is stored."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "The amounts being withdrawn or "
+#~ "deposited, with associated unique transaction"
+#~ " identifiers and cryptographic signatures "
+#~ "authorizing the transaction. Note that "
+#~ "for purchases, we cannot identify the"
+#~ " buyer from the collected data, so"
+#~ " when you spend money, we only "
+#~ "receive non-personal information."
+#~ msgstr ""
+
+#~ msgid "to transfer money as specified by our users (Taler transactions);"
+#~ msgstr ""
+
+#~ msgid ""
+#~ "to assist government entities in linking"
+#~ " income to the underlying contract"
+#~ msgstr ""
+
+#~ msgid "to support you using the Taler Wallet or to improve our Services"
+#~ msgstr ""
+
+#~ msgid ""
+#~ "We may share your Personal Data or"
+#~ " other information about you only if"
+#~ " you are a merchant receiving income,"
+#~ " with your bank, to the degree "
+#~ "necessary to execute the payment."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "We retain Personal Data to transfer "
+#~ "funds to the accounts designated by "
+#~ "our users. We may retain Personal "
+#~ "Data only for as long as mandated"
+#~ " by law and required for the "
+#~ "wire transfers."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "We primarily use the limited information"
+#~ " we receive directly from you to "
+#~ "enhance the Taler Wallet. Some ways "
+#~ "we may use your Personal Information "
+#~ "are to: Contact you when necessary "
+#~ "to respond to your comments, answer "
+#~ "your questions, or obtain additional "
+#~ "information on issues related to bugs"
+#~ " or errors with the Taler Wallet "
+#~ "that you reported."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "You can request access to the "
+#~ "information we have collected from you."
+#~ " You can do this by contacting "
+#~ "us at privacy@taler-systems.net. We will"
+#~ " make sure to provide you with "
+#~ "a copy of the data we process "
+#~ "about you. To comply with your "
+#~ "request, we may ask you to verify"
+#~ " your identity. We will fulfill your"
+#~ " request by sending your copy "
+#~ "electronically. For any subsequent access "
+#~ "request, we may charge you with an"
+#~ " administrative fee. If you believe "
+#~ "that the information we have collected"
+#~ " is incorrect, you are welcome to "
+#~ "contact us so we can update it "
+#~ "and keep your data accurate. Any "
+#~ "data that is no longer needed for"
+#~ " purposes specified in the “How We"
+#~ " Use the Information We Gather” "
+#~ "section will be deleted after ninety "
+#~ "(90) days."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "If you uninstall the Taler Wallet "
+#~ "mobile applications from your device, or"
+#~ " request that your information be "
+#~ "deleted, we still may retain some "
+#~ "information that you have provided to"
+#~ " us to maintain the Taler Wallet "
+#~ "or to comply with relevant laws."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "We reserve the right to update and"
+#~ " revise this privacy policy at any"
+#~ " time. We occasionally review this "
+#~ "Privacy Policy to make sure it "
+#~ "complies with applicable laws and "
+#~ "conforms to changes in our business. "
+#~ "We may need to update this Privacy"
+#~ " Policy, and we reserve the right "
+#~ "to do so at any time. If we"
+#~ " do revise this Privacy Policy, we"
+#~ " will update the “Effective Date” at"
+#~ " the bottom of this page so "
+#~ "that you can tell if it has "
+#~ "changed since your last visit. As "
+#~ "we generally do not collect contact "
+#~ "information and also do not track "
+#~ "your visits, we will not be able"
+#~ " to notify you directly. However, the"
+#~ " Taler Wallet may inform you about"
+#~ " a change in the privacy policy "
+#~ "once it detects that the policy "
+#~ "has changed. Please review this Privacy"
+#~ " Policy regularly to ensure that you"
+#~ " are aware of its terms. Any "
+#~ "use of our Services after an "
+#~ "amendment to our Privacy Policy "
+#~ "constitutes your acceptance to the "
+#~ "revised or amended agreement."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "Our Services are hosted in Switzerland."
+#~ " If you are a user accessing "
+#~ "the Services from the European Union,"
+#~ " Asia, US, or any other region "
+#~ "with laws or regulations governing "
+#~ "personal data collection, use, and "
+#~ "disclosure that differ from Swiss laws,"
+#~ " please be advised that through your"
+#~ " continued use of the Services, which"
+#~ " is governed by Swiss law, you "
+#~ "are transferring your Personal Information "
+#~ "to Switzerland and you consent to "
+#~ "that transfer."
+#~ msgstr ""
+
+#~ msgid ""
+#~ "Please contact us at privacy@taler-"
+#~ "systems.net if you have questions about"
+#~ " our privacy practices that are not"
+#~ " addressed in this Privacy Statement."
+#~ msgstr ""
+
diff --git a/contrib/pp/pp.rst b/contrib/pp/pp.rst
new file mode 100644
index 0000000..a8ff838
--- /dev/null
+++ b/contrib/pp/pp.rst
@@ -0,0 +1,186 @@
+Privacy Policy
+==============
+
+Last Updated: 07.09.2021
+
+This Privacy Policy describes the policies and procedures of Anastasis
+SARL (“we,” “our,” or “us”) pertaining to the collection, use, and
+disclosure of your information on our sites and related mobile
+applications and products we offer (the “Services”). This Privacy
+Statement applies to your personal data when you use our Services, and
+does not apply to online websites or services that we do not own or
+control.
+
+
+Overview
+--------
+
+Your privacy is important to us. We follow a few fundamental
+principles: We don’t ask you for personally identifiable information
+(defined below). That being said, your contact information, such as
+your phone number, social media handle, or email address (depending on
+how you contact us), may be collected when you communicate with us,
+for example to report a bug or other error related to Anastasis. We
+don’t share your information with third parties except when strictly
+required to deliver you our Services and products, or to comply with
+the law. If you have any questions or concerns about this policy,
+please reach out to us at privacy@anastasis.lu.
+
+
+How you accept this policy
+--------------------------
+
+By using our Services or visiting our sites, you agree to the use, disclosure,
+and procedures outlined in this Privacy Policy.
+
+
+What personal information do we collect from our users?
+-------------------------------------------------------
+
+The information we collect from you falls into two categories: (i) personally
+identifiable information (i.e., data that could potentially identify you as an
+individual) (“Personal Information”), and (ii) non-personally identifiable
+information (i.e., information that cannot be used to identify who you are)
+(“Non-Personal Information”). This Privacy Policy covers both categories and
+will tell you how we might collect and use each type.
+
+We do our best to not collect any Personal Information from Anastasis
+users. The detailed Personal Information Anastasis asks from you during
+the regular backup and recovery process at the beginning is never shared
+with us and only used to create a cryptographic account identifier which
+does not allow us to recover any of your details.
+
+That being said, when using our Services to recover key material, we may
+inherently receive the following information (depending on your choice of
+authentication method):
+
+ * Bank account details necessary when receiving funds from you to authenticate via a SEPA transfer. We will store these as part of our business records for accounting, and our bank will also be legally obliged to store the details for many years.
+
+ * Your phone number when using SMS authentication. We rely on third party providers (such as your mobile network operator) to deliver the SMS to you. These third parties will see the SMS message sent to you and could thus learn that you are using Anastasis. SMS is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your SMS number on our systems, except maybe in short-term logs to diagnose errors.
+
+ * Your e-mail address when using E-mail authentication. We rely on the Internet and your E-mail provider to deliver the E-mail to you. Internet service providers will see the E-mail message sent to you and could thus learn that you are using Anastasis. E-mail is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your E-mail address on our systems, except maybe in short-term logs to diagnose errors.
+
+ * Your physical address when using postal mail authentication. We rely on external providers for printing and sending the letter to you. These providers will need to learn your address and could learn that you are using Anastasis. Physical mail has strict privacy protections by law, but governments are known to break postal secrecy. We do not store your physical address on our systems, except maybe in short-term logs to diagnose errors.
+
+ * When you contact us. We may collect certain information if you choose to contact us, for example to report a bug or other error with the Taler Wallet. This may include contact information such as your name, email address or phone number depending on the method you choose to contact us.
+
+
+How we collect and process information
+--------------------------------------
+
+We may process your information for the following reasons:
+
+ * to authenticate you during secret recovery
+ * to support you using Anastasis when you contact us
+
+
+How we share and use the information we gather
+----------------------------------------------
+
+We may share your authentication data with other providers that assist
+us in performing the authentication. We will try to use providers that
+to the best of our knowledge respect your privacy and have good
+privacy practices. We reserve the right to change authentication
+providers at any time to ensure availability of our services.
+
+We primarily use the limited information we receive directly from you to
+enhance Anastasis. Some ways we may use your Personal Information are
+to: Contact you when necessary to respond to your comments, answer your
+questions, or obtain additional information on issues related to bugs or
+errors with the Anastasis application that you reported.
+
+
+Agents or third party partners
+------------------------------
+
+We may provide your Personal Information to our employees, contractors,
+agents, service providers, and designees (“Agents”) to enable them to perform
+certain services for us exclusively, including: improvement and maintenance of
+our software and Services. By accepting this Privacy Policy, as outlined
+above, you consent to any such transfer.
+
+
+Protection of us and others
+---------------------------
+
+We reserve the right to access, read, preserve, and disclose any information
+that we reasonably believe is necessary to comply with the law or a court
+order.
+
+
+What personal information can I access or change?
+-------------------------------------------------
+
+You can request access to the information we have collected from
+you. You can do this by contacting us at privacy@anastasis.lu. We will
+make sure to provide you with a copy of the data we process about
+you. To comply with your request, we may ask you to verify your
+identity. We will fulfill your request by sending your copy
+electronically. For any subsequent access request, we may charge you
+with an administrative fee. If you believe that the information we
+have collected is incorrect, you are welcome to contact us so we can
+update it and keep your data accurate. Any data that is no longer
+needed for purposes specified in the “How We Use the Information We
+Gather” section will be deleted after ninety (90) days.
+
+
+Data retention
+--------------
+
+Information entered into our bug tracker will be retained indefinitely
+and is typically made public. We will only use it to triage the
+problem. Beyond that, we do not retain personally identifiable
+information about our users for longer than one week.
+
+
+Data security
+-------------
+
+We are committed to making sure your information is protected. We employ
+several physical and electronic safeguards to keep your information safe,
+including encrypted user passwords, two factor verification and authentication
+on passwords where possible, and securing connections with industry standard
+transport layer security. You are also welcome to contact us using GnuPG
+encrypted e-mail. Even with all these precautions, we cannot fully guarantee
+against the access, disclosure, alteration, or deletion of data through
+events, including but not limited to hardware or software failure or
+unauthorized use. Any information that you provide to us is done so entirely
+at your own risk.
+
+
+Changes and updates to privacy policy
+-------------------------------------
+
+We reserve the right to update and revise this privacy policy at any time. We
+occasionally review this Privacy Policy to make sure it complies with
+applicable laws and conforms to changes in our business. We may need to update
+this Privacy Policy, and we reserve the right to do so at any time. If we do
+revise this Privacy Policy, we will update the “Effective Date” at the top
+of this page so that you can tell if it has changed since your last visit. As
+we generally do not collect contact information and also do not track your
+visits, we will not be able to notify you directly. However, Anastasis clients
+may inform you about a change in the privacy policy once they detect that the
+policy has changed. Please review this Privacy Policy regularly to ensure that
+you are aware of its terms. Any use of our Services after an amendment to our
+Privacy Policy constitutes your acceptance to the revised or amended
+agreement.
+
+
+International users and visitors
+--------------------------------
+
+Our Services are (currently) hosted in Germany. If you are a user
+accessing the Services from the Switzerland, Asia, US, or any other
+region with laws or regulations governing personal data collection,
+use, and disclosure that differ from the laws of Germany, please be
+advised that through your continued use of the Services, which is
+governed by the law of the country hosting the service, you are
+transferring your Personal Information to Germany and you consent to
+that transfer.
+
+
+Questions
+---------
+
+Please contact us at privacy@anastasis.lu if you have questions about our
+privacy practices that are not addressed in this Privacy Statement.
diff --git a/contrib/tos/Makefile b/contrib/tos/Makefile
new file mode 100644
index 0000000..ab29543
--- /dev/null
+++ b/contrib/tos/Makefile
@@ -0,0 +1,109 @@
+# Makefile for Sphinx documentation
+#
+# You can set these variables from the command line.
+SPHINXOPTS =
+SPHINXBUILD = sphinx-build
+PAPER =
+BUILDDIR = _build
+
+# User-friendly check for sphinx-build
+ifeq ($(shell which $(SPHINXBUILD) >/dev/null 2>&1; echo $$?), 1)
+$(error The '$(SPHINXBUILD)' command was not found. Make sure you have Sphinx installed, then set the SPHINXBUILD environment variable to point to the full path of the '$(SPHINXBUILD)' executable. Alternatively you can add the directory with the executable to your PATH. If you don't have Sphinx installed, grab it from http://sphinx-doc.org/)
+endif
+
+# Internal variables.
+PAPEROPT_a4 = -D latex_paper_size=a4
+PAPEROPT_letter = -D latex_paper_size=letter
+ALLSPHINXOPTS = -d $(BUILDDIR)/doctrees $(PAPEROPT_$(PAPER)) $(SPHINXOPTS) .
+# the i18n builder cannot share the environment and doctrees with the others
+I18NSPHINXOPTS = $(PAPEROPT_$(PAPER)) $(SPHINXOPTS) .
+
+.PHONY: help clean html json epub latex latexpdf text man doctest gettext
+
+help:
+ @echo "Please use \`make <target>' where <target> is one of"
+ @echo " html to make a single large HTML file"
+ @echo " json to make JSON files"
+ @echo " epub to make an epub"
+ @echo " latex to make LaTeX files, you can set PAPER=a4 or PAPER=letter"
+ @echo " pdf to make LaTeX files and run them through pdflatex"
+ @echo " txt to make text files"
+ @echo " man to make manual pages"
+ @echo " texinfo to make Texinfo files"
+ @echo " info to make Texinfo files and run them through makeinfo"
+ @echo " gettext to make PO message catalogs"
+ @echo " xml to make Docutils-native XML files"
+ @echo " pseudoxml to make pseudoxml-XML files for display purposes"
+ @echo " doctest to run all doctests embedded in the documentation (if enabled)"
+
+clean:
+ rm -rf $(BUILDDIR)/*
+
+
+# The html-linked builder does not support caching, so we
+# remove all cached state first.
+html:
+ $(SPHINXBUILD) -b html $(ALLSPHINXOPTS) $(BUILDDIR)/html
+ @echo
+ @echo "Build finished. The HTML page is in $(BUILDDIR)/html."
+
+json:
+ $(SPHINXBUILD) -b json $(ALLSPHINXOPTS) $(BUILDDIR)/json
+ @echo
+ @echo "Build finished; now you can process the JSON files."
+
+epub:
+ $(SPHINXBUILD) -b epub $(ALLSPHINXOPTS) $(BUILDDIR)/epub
+ @echo
+ @echo "Build finished. The epub file is in $(BUILDDIR)/epub."
+
+latex:
+ $(SPHINXBUILD) -b latex $(ALLSPHINXOPTS) $(BUILDDIR)/latex
+ @echo
+ @echo "Build finished; the LaTeX files are in $(BUILDDIR)/latex."
+ @echo "Run \`make' in that directory to run these through (pdf)latex" \
+ "(use \`make latexpdf' here to do that automatically)."
+
+pdf:
+ $(SPHINXBUILD) -b latex $(ALLSPHINXOPTS) $(BUILDDIR)/pdf
+ @echo "Running LaTeX files through pdflatex..."
+ $(MAKE) -C $(BUILDDIR)/pdf all-pdf
+ @echo "pdflatex finished; the PDF files are in $(BUILDDIR)/pdf."
+
+txt:
+ $(SPHINXBUILD) -b text $(ALLSPHINXOPTS) $(BUILDDIR)/txt
+ @echo
+ @echo "Build finished. The text files are in $(BUILDDIR)/txt."
+
+man:
+ $(SPHINXBUILD) -b man $(ALLSPHINXOPTS) $(BUILDDIR)/man
+ @echo
+ @echo "Build finished. The manual pages are in $(BUILDDIR)/man."
+
+texinfo:
+ $(SPHINXBUILD) -b texinfo $(ALLSPHINXOPTS) $(BUILDDIR)/texinfo
+ @echo
+ @echo "Build finished. The Texinfo files are in $(BUILDDIR)/texinfo."
+ @echo "Run \`make' in that directory to run these through makeinfo" \
+ "(use \`make info' here to do that automatically)."
+
+info:
+ $(SPHINXBUILD) -b texinfo $(ALLSPHINXOPTS) $(BUILDDIR)/info
+ @echo "Running Texinfo files through makeinfo..."
+ make -C $(BUILDDIR)/texinfo info
+ @echo "makeinfo finished; the Info files are in $(BUILDDIR)/info."
+
+gettext:
+ $(SPHINXBUILD) -b gettext $(I18NSPHINXOPTS) $(BUILDDIR)/locale
+ @echo
+ @echo "Build finished. The message catalogs are in $(BUILDDIR)/locale."
+
+doctest:
+ $(SPHINXBUILD) -b doctest $(ALLSPHINXOPTS) $(BUILDDIR)/doctest
+ @echo "Testing of doctests in the sources finished, look at the " \
+ "results in $(BUILDDIR)/doctest/output.txt."
+
+xml:
+ $(SPHINXBUILD) -b xml $(ALLSPHINXOPTS) $(BUILDDIR)/xml
+ @echo
+ @echo "Build finished. The XML files are in $(BUILDDIR)/xml."
diff --git a/contrib/tos/README b/contrib/tos/README
new file mode 100644
index 0000000..fde5305
--- /dev/null
+++ b/contrib/tos/README
@@ -0,0 +1,58 @@
+This directory contains the terms of service (template) for exchange
+operators.
+
+
+Dependencies
+============
+
+Generating new Terms of Service requires Sphinx, LaTeX with babel
+packages for all supported languages. On Debian, you should
+at least install:
+
+$ apt install python3-sphinx sphinx-intl texlive-lang-german texlive-lang-english
+
+(NOTE: List may be incomplete.)
+
+
+Updating the Terms of Service
+=============================
+
+The master file with the Terms of service is 'tos.rst'.
+
+If you make substantial changes, you MUST change the "TOS_VERSION"
+in contrib/Makefile.am to the new Etag.
+
+To begin the translation into other languages after editing the master
+file, run
+
+$ make gettext
+
+to generate the master PO file. Then, run
+
+$ sphinx-intl update -p _build/locale/ -l de -l fr -l it
+
+to update the PO files for the various languages (extend the list of
+languages as necessary). The PO files for the translators are kept
+at locale/$LANG/LC_MESSAGES/tos.po for the language $LANG.
+
+Once all PO files have been updated with new translations, run
+
+$ make update-tos
+
+in the "contrib/" directory to generate all of the formats. The
+respective make rule calls the '../update-tos.sh' script in the
+contrib/ directory, which calls the 'Makefile' in the tos/
+directory for the various supported languages and file formats
+and then moves the generated files to the target directory
+('contrib/tos/$LANG/$VERSION.$FORMAT')
+
+
+Adding a new language
+=====================
+
+To add a new language $LANG, add $LANG to "TOS_LANGUAGES" in
+'contrib/Makefile.am' and run
+
+$ sphinx-intl update -p _build/gettext -l $LANG
+
+to generate the PO template.
diff --git a/contrib/tos/conf.py b/contrib/tos/conf.py
new file mode 100644
index 0000000..2939255
--- /dev/null
+++ b/contrib/tos/conf.py
@@ -0,0 +1,282 @@
+"""
+ This file is part of GNU TALER.
+ Copyright (C) 2014-2020 Taler Systems SA
+
+ TALER is free software; you can redistribute it and/or modify it under the
+ terms of the GNU Lesser General Public License as published by the Free Software
+ Foundation; either version 2.1, or (at your option) any later version.
+
+ TALER is distributed in the hope that it will be useful, but WITHOUT ANY
+ WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
+ A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
+
+ You should have received a copy of the GNU Lesser General Public License along with
+ TALER; see the file COPYING. If not, see <http://www.gnu.org/licenses/>
+
+ @author Florian Dold
+ @author Benedikt Muller
+ @author Sree Harsha Totakura
+ @author Marcello Stanisci
+"""
+# -*- coding: utf-8 -*-
+#
+# neuro documentation build configuration file, created by
+# sphinx-quickstart on Sat May 31 13:11:06 2014.
+#
+# This file is execfile()d with the current directory set to its
+# containing dir.
+#
+# Note that not all possible configuration values are present in this
+# autogenerated file.
+#
+# All configuration values have a default; values that are commented out
+# serve to show the default.
+
+import sys
+import os
+
+sys.path.append(os.path.abspath('_exts'))
+
+#import taler_sphinx_theme
+
+# If extensions (or modules to document with autodoc) are in another directory,
+# add these directories to sys.path here. If the directory is relative to the
+# documentation root, use os.path.abspath to make it absolute, like shown here.
+#sys.path.insert(0, os.path.abspath('.'))
+
+# -- General configuration ------------------------------------------------
+
+# If your documentation needs a minimal Sphinx version, state it here.
+needs_sphinx = '1.8.5'
+
+# Add any Sphinx extension module names here, as strings. They can be
+# extensions coming with Sphinx (named 'sphinx.ext.*') or your custom
+# ones.
+extensions = [
+ 'sphinx.ext.todo',
+ 'sphinx.ext.imgmath',
+]
+
+# Add any paths that contain templates here, relative to this directory.
+templates_path = ['_templates']
+
+source_suffix = {
+ '.rst': 'restructuredtext',
+}
+
+# The encoding of source files.
+#source_encoding = 'utf-8-sig'
+
+# The master toctree document.
+master_doc = 'tos'
+
+# General information about the project.
+project = u'tos'
+copyright = u'2014-2020 Taler Systems SA (GPLv3+ or GFDL 1.3+)'
+
+# The version info for the project you're documenting, acts as replacement for
+# |version| and |release|, also used in various other places throughout the
+# built documents.
+#
+# The short X.Y version.
+version = '0'
+# The full version, including alpha/beta/rc tags.
+release = '0'
+
+# The language for content autogenerated by Sphinx. Refer to documentation
+# for a list of supported languages.
+# language = "en de"
+
+# There are two options for replacing |today|: either, you set today to some
+# non-false value, then it is used:
+#today = ''
+# Else, today_fmt is used as the format for a strftime call.
+#today_fmt = '%B %d, %Y'
+
+# List of patterns, relative to source directory, that match files and
+# directories to ignore when looking for source files.
+exclude_patterns = ['_build', '_exts', 'cf', 'prebuilt']
+
+# The reST default role (used for this markup: `text`) to use for all
+# documents.
+# default_role = "ts:type"
+
+locale_dirs = ['locale/']
+gettext_compact = False
+
+# If true, '()' will be appended to :func: etc. cross-reference text.
+#add_function_parentheses = True
+
+# If true, the current module name will be prepended to all description
+# unit titles (such as .. function::).
+#add_module_names = True
+
+# If true, sectionauthor and moduleauthor directives will be shown in the
+# output. They are ignored by default.
+#show_authors = False
+
+# The name of the Pygments (syntax highlighting) style to use.
+pygments_style = 'sphinx'
+
+# A list of ignored prefixes for module index sorting.
+#modindex_common_prefix = []
+
+# If true, keep warnings as "system message" paragraphs in the built documents.
+#keep_warnings = False
+
+# -- Options for HTML output ----------------------------------------------
+
+# The theme to use for HTML and HTML Help pages. See the documentation for
+# a list of builtin themes.
+html_theme = 'epub'
+
+#html_theme_path = taler_sphinx_theme.html_theme_path()
+
+#html_sidebars = {'**': ['logo-text.html', 'globaltoc.html', 'searchbox.html']}
+
+rst_epilog = ""
+
+html_show_sphinx = False
+
+html_theme_options = {
+ # Set the name of the project to appear in the sidebar
+ "relbar1": "false",
+ "footer": "false",
+}
+
+# Add any paths that contain custom themes here, relative to this directory.
+#html_theme_path = []
+
+# The name for this set of Sphinx documents. If None, it defaults to
+# "<project> v<release> documentation".
+html_title = "Taler Terms of Service"
+
+# A shorter title for the navigation bar. Default is the same as html_title.
+html_short_title = "Terms of Service"
+
+# The name of an image file (relative to this directory) to place at the top
+# of the sidebar.
+#html_logo = None
+
+# The name of an image file (within the static path) to use as favicon of the
+# docs. This file should be a Windows icon file (.ico) being 16x16 or 32x32
+# pixels large.
+#html_favicon = None
+
+# Add any paths that contain custom static files (such as style sheets) here,
+# relative to this directory. They are copied after the builtin static files,
+# so a file named "default.css" will overwrite the builtin "default.css".
+# html_static_path = ['_static']
+
+# Add any extra paths that contain custom files (such as robots.txt or
+# .htaccess) here, relative to this directory. These files are copied
+# directly to the root of the documentation.
+#html_extra_path = []
+
+# If not '', a 'Last updated on:' timestamp is inserted at every page bottom,
+# using the given strftime format.
+#html_last_updated_fmt = '%b %d, %Y'
+
+# If true, SmartyPants will be used to convert quotes and dashes to
+# typographically correct entities.
+#html_use_smartypants = True
+
+# Custom sidebar templates, maps document names to template names.
+#html_sidebars = {}
+
+# Additional templates that should be rendered to pages, maps page names to
+# template names.
+#html_additional_pages = {}
+
+# If false, no module index is generated.
+#html_domain_indices = True
+
+# If false, no index is generated.
+#html_use_index = True
+
+# If true, the index is split into individual pages for each letter.
+#html_split_index = False
+
+# If true, links to the reST sources are added to the pages.
+#html_show_sourcelink = True
+
+# If true, "Created using Sphinx" is shown in the HTML footer. Default is True.
+html_show_sphinx = False
+
+# If true, "(C) Copyright ..." is shown in the HTML footer. Default is True.
+#html_show_copyright = True
+
+# If true, an OpenSearch description file will be output, and all pages will
+# contain a <link> tag referring to it. The value of this option must be the
+# base URL from which the finished HTML is served.
+#html_use_opensearch = ''
+
+# This is the file name suffix for HTML files (e.g. ".xhtml").
+#html_file_suffix = None
+
+# -- Options for LaTeX output ---------------------------------------------
+
+latex_elements = {
+ # The paper size ('letterpaper' or 'a4paper').
+ #'papersize': 'letterpaper',
+
+ # The font size ('10pt', '11pt' or '12pt').
+ #'pointsize': '10pt',
+
+ # Additional stuff for the LaTeX preamble.
+ #'preamble': '',
+}
+
+# Grouping the document tree into LaTeX files. List of tuples
+# (source start file, target name, title,
+# author, documentclass [howto, manual, or own class]).
+latex_documents = [
+ ('tos', 'tos.tex',
+ 'Terms of Service', 'GNU Taler team', 'manual'),
+]
+
+# The name of an image file (relative to this directory) to place at the top of
+# the title page.
+#latex_logo = None
+
+# For "manual" documents, if this is true, then toplevel headings are parts,
+# not chapters.
+#latex_use_parts = False
+
+# If true, show page references after internal links.
+#latex_show_pagerefs = False
+
+# If true, show URL addresses after external links.
+#latex_show_urls = False
+
+# Documents to append as an appendix to all manuals.
+# latex_appendices = ["fdl-1.3"]
+
+# If false, no module index is generated.
+#latex_domain_indices = True
+
+# -- Options for manual page output ---------------------------------------
+
+# If true, show URL addresses after external links.
+#man_show_urls = False
+
+# -- Options for Texinfo output -------------------------------------------
+
+# Documents to append as an appendix to all manuals.
+#texinfo_appendices = []
+
+# If false, no module index is generated.
+#texinfo_domain_indices = True
+
+# How to display URL addresses: 'footnote', 'no', or 'inline'.
+#texinfo_show_urls = 'footnote'
+
+# If true, do not generate a @detailmenu in the "Top" node's menu.
+#texinfo_no_detailmenu = False
+
+
+# -- Options for epub output ----------------------------
+
+epub_basename = "tos"
+
+epub_title = "Terms of Service"
diff --git a/contrib/tos/en/0.epub b/contrib/tos/en/0.epub
new file mode 100644
index 0000000..095d2c1
--- /dev/null
+++ b/contrib/tos/en/0.epub
Binary files differ
diff --git a/contrib/tos/en/0.html b/contrib/tos/en/0.html
new file mode 100644
index 0000000..59e816f
--- /dev/null
+++ b/contrib/tos/en/0.html
@@ -0,0 +1,272 @@
+
+
+<html lang="en">
+ <head>
+ <meta charset="utf-8" />
+ <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+ <title>Terms Of Service &#8212; Taler Terms of Service</title>
+ <link rel="stylesheet" href="_static/pygments.css" type="text/css" />
+ <link rel="stylesheet" href="_static/epub.css" type="text/css" />
+ <script id="documentation_options" data-url_root="./" src="_static/documentation_options.js"></script>
+ <script src="_static/jquery.js"></script>
+ <script src="_static/underscore.js"></script>
+ <script src="_static/doctools.js"></script>
+ </head><body>
+
+ <div class="document">
+ <div class="documentwrapper">
+ <div class="bodywrapper">
+ <div class="body" role="main">
+
+ <div class="section" id="terms-of-service">
+<h1>Terms Of Service<a class="headerlink" href="#terms-of-service" title="Permalink to this headline">¶</a></h1>
+<p>Last Updated: 07.09.2021</p>
+<p>Welcome! Anastasis SARL (“we,” “our,” or “us”) provides a distributed
+privacy-preserving backup and recovery service for key material
+through our Internet presence (collectively the “Services”). Before
+using our Services, please read the Terms of Service (the “Terms” or
+the “Agreement”) carefully.</p>
+<div class="section" id="overview">
+<h2>Overview<a class="headerlink" href="#overview" title="Permalink to this headline">¶</a></h2>
+<p>This section provides a brief summary of the highlights of this
+Agreement. Please note that when you accept this Agreement, you are
+accepting all of the terms and conditions and not just this
+section. We and possibly other third parties provide Internet services
+which interact with the Anastasis key backup and recovery
+application. When using an application to interact with our Services,
+you are agreeing to our Terms, so please read carefully.</p>
+<div class="section" id="highlights">
+<h3>Highlights:<a class="headerlink" href="#highlights" title="Permalink to this headline">¶</a></h3>
+<blockquote>
+<div><ul class="simple">
+<li><p>You are responsible for selecting authentication methods and
+policies that are adequate to protect your key material.
+Any losses arising from you not being able to satisfy the
+selected authentication challenges or third parties being able
+successfully pass the challenges are your problem.</p></li>
+<li><p>We will store your encrypted key shares and disclose them upon
+successful authentication to the best of our ability within the
+limitations of the law and our implementation. Our liability will
+be limited to the liability limit exposed in the protocol.</p></li>
+<li><p>For our Services, we may charge various fees. The specific fee structure
+is provided based on the Anastasis protocol and should be shown to you when you
+use an application to interact with our services. You agree and understand
+that the Anastasis protocol allows for the fee structure to change.</p></li>
+<li><p>You agree to not intentionally overwhelm our systems with requests and
+follow responsible disclosure if you find security issues in our services.</p></li>
+<li><p>We cannot be held accountable for our Services not being available due to
+circumstances beyond our control. If we modify or terminate our services,
+we will announce this and ensure that you can recover your key material
+for at least one year before we completely terminate the Service.</p></li>
+</ul>
+</div></blockquote>
+<p>These terms outline approved uses of our Services. If you have any
+questions or comments related to this Agreement, please send us a
+message to <a class="reference external" href="mailto:legal&#37;&#52;&#48;anastasis&#46;lu">legal<span>&#64;</span>anastasis<span>&#46;</span>lu</a>. If you do not agree to this Agreement,
+you must not use our Services.</p>
+</div>
+</div>
+<div class="section" id="how-you-accept-this-policy">
+<h2>How you accept this policy<a class="headerlink" href="#how-you-accept-this-policy" title="Permalink to this headline">¶</a></h2>
+<p>By using our API (typically via an Anastasis-enabled application), you
+acknowledge that you have read, understood, and agreed to these
+Terms. We reserve the right to change these Terms at any time. If you
+disagree with the change, you must simply stop using our APIs. Your
+continued use of our Services following any such change will signify
+your acceptance to be bound by the then current Terms. Please check
+the effective date above to determine if there have been any changes
+since you have last reviewed these Terms.</p>
+</div>
+<div class="section" id="services">
+<h2>Services<a class="headerlink" href="#services" title="Permalink to this headline">¶</a></h2>
+<p>We will store your encrypted key shares (and the associated encrypted
+recovery policy document) to the best of our ability and within the
+limitations of the implementation. We will disclose the key shares only
+after the specific authentication challenge has been passed. We will
+rate-limit the use of the authentication APIs to limit brute-force
+attacks.</p>
+<p>We are not guaranteeing that the authentication procedures are effective.
+Other parties may be able to intercept authentication messages, or you
+may not be able to receive these messages anymore. You are responsible
+for choosing safe authentication methods with sufficient security.</p>
+<p>When using our Services, you agree to not take any action that
+intentionally imposes an unreasonable load on our infrastructure. If
+you find security problems in our Services, you agree to first report
+them to <a class="reference external" href="mailto:security&#37;&#52;&#48;anastasis&#46;lu">security<span>&#64;</span>anastasis<span>&#46;</span>lu</a> and grant us the right to publish your
+report. We warrant that we will ourselves publicly disclose any issues
+reported within 1 month, and that we will not prosecute anyone
+reporting security issues if they did not exploit the issue beyond a
+proof-of-concept, and followed the above responsible disclosure
+practice.</p>
+</div>
+<div class="section" id="fees">
+<h2>Fees<a class="headerlink" href="#fees" title="Permalink to this headline">¶</a></h2>
+<p>You agree to pay the fees for backup and recovery operations (“Fees”)
+as defined by us, which we may change from time to time. Your
+Anastasis client should obtain and display applicable fees during
+backup and recovery.</p>
+</div>
+<div class="section" id="eligibility">
+<h2>Eligibility<a class="headerlink" href="#eligibility" title="Permalink to this headline">¶</a></h2>
+<p>To be eligible to use our Services, you must be able to form legally binding
+contracts or have the permission of your legal guardian. By using our
+Services, you represent and warrant that you meet all eligibility requirements
+that we outline in these Terms.</p>
+</div>
+<div class="section" id="copyrights-and-trademarks">
+<h2>Copyrights and trademarks<a class="headerlink" href="#copyrights-and-trademarks" title="Permalink to this headline">¶</a></h2>
+<p>The Anastasis software is released under the terms of the GNU Affero
+General Public License (GNU AGPLv3+). You have the right to access,
+use, and share the Anastasis application, in modified or unmodified
+form. However, the Affero GPL is a strong copyleft license, which
+means that any derivative works must be distributed under the same
+license terms as the original software. If you have any questions, you
+should review the GNU AGPL’s full terms and conditions at
+<a class="reference external" href="https://www.gnu.org/licenses/agpl-3.0.en.html">https://www.gnu.org/licenses/agpl-3.0.en.html</a>. “Anastasis” itself is
+a trademark of Anastasis SARL. You are welcome to use the name in
+relation to implementations of the Anastasis protocol, assuming your
+use is compatible with an official release from the GNU Project that
+is not older than two years.</p>
+</div>
+<div class="section" id="limitation-of-liability-disclaimer-of-warranties">
+<h2>Limitation of liability &amp; disclaimer of warranties<a class="headerlink" href="#limitation-of-liability-disclaimer-of-warranties" title="Permalink to this headline">¶</a></h2>
+<p>You understand and agree that we have no control over, and no duty to
+take any action regarding: Failures, disruptions, errors, or delays in
+processing that you may experience while using our Services; The risk
+of failure of hardware, software, and Internet connections; The risk
+of malicious software being introduced or found in the software
+underlying the Anastasis implementation. You release us from all
+liability related to any losses, damages, or claims arising from:</p>
+<ol class="loweralpha simple">
+<li><p>user error such as forgotten security answers or loss of
+control over accounts used for authentication;</p></li>
+</ol>
+<p>(b) server failure or data loss;
+(d) bugs or other errors in the Anastasis client software; and
+(e) any unauthorized third party activities, including, but not limited to,</p>
+<blockquote>
+<div><p>the use of viruses, phishing, brute forcing, or other means of attack
+against the Anastasis client. We make no representations concerning any
+Third Party Content contained in or accessed through our Services.</p>
+</div></blockquote>
+<p>Any other terms, conditions, warranties, or representations associated with
+such content, are solely between you and such organizations and/or
+individuals.</p>
+<p>To the fullest extent permitted by applicable law, in no event will we
+or any of our officers, directors, representatives, agents, servants,
+counsel, employees, consultants, lawyers, and other personnel
+authorized to act, acting, or purporting to act on our behalf
+(collectively the “Anastasis Parties”) be liable to you under
+contract, tort, strict liability, negligence, or any other legal or
+equitable theory, for:</p>
+<ol class="loweralpha simple">
+<li><p>any lost profits, data loss, cost of procurement of substitute goods or
+services, or direct, indirect, incidental, special, punitive, compensatory,
+or consequential damages of any kind whatsoever resulting from:</p></li>
+</ol>
+<blockquote>
+<div><ol class="lowerroman simple">
+<li><p>your use of, or conduct in connection with, our services;</p></li>
+<li><p>any unauthorized use of your wallet and/or private key due to your
+failure to maintain the confidentiality of your wallet;</p></li>
+<li><p>any interruption or cessation of transmission to or from the services; or</p></li>
+<li><p>any bugs, viruses, trojan horses, or the like that are found in the Taler
+Wallet software or that may be transmitted to or through our services by
+any third party (regardless of the source of origination), or</p></li>
+</ol>
+</div></blockquote>
+<ol class="loweralpha simple" start="2">
+<li><p>any direct damages.</p></li>
+</ol>
+<p>These limitations apply regardless of legal theory, whether based on tort,
+strict liability, breach of contract, breach of warranty, or any other legal
+theory, and whether or not we were advised of the possibility of such
+damages. Some jurisdictions do not allow the exclusion or limitation of
+liability for consequential or incidental damages, so the above limitation may
+not apply to you.</p>
+<p>Our services are provided “as is” and without warranty of any kind. To the
+maximum extent permitted by law, we disclaim all representations and
+warranties, express or implied, relating to the services and underlying
+software or any content on the services, whether provided or owned by us or by
+any third party, including without limitation, warranties of merchantability,
+fitness for a particular purpose, title, non-infringement, freedom from
+computer virus, and any implied warranties arising from course of dealing,
+course of performance, or usage in trade, all of which are expressly
+disclaimed. In addition, we do not represent or warrant that the content
+accessible via the services is accurate, complete, available, current, free of
+viruses or other harmful components, or that the results of using the services
+will meet your requirements. Some states do not allow the disclaimer of
+implied warranties, so the foregoing disclaimers may not apply to you. This
+paragraph gives you specific legal rights and you may also have other legal
+rights that vary from state to state.</p>
+</div>
+<div class="section" id="indemnity-and-time-limitation-on-claims-and-termination">
+<h2>Indemnity and Time limitation on claims and Termination<a class="headerlink" href="#indemnity-and-time-limitation-on-claims-and-termination" title="Permalink to this headline">¶</a></h2>
+<p>To the extent permitted by applicable law, you agree to defend,
+indemnify, and hold harmless the Anastasis Parties from and against
+any and all claims, damages, obligations, losses, liabilities, costs
+or debt, and expenses (including, but not limited to, attorney’s fees)
+arising from: (a) your use of and access to the Services; (b) any
+feedback or submissions you provide to us concerning the Anastasis
+software; (c) your violation of any term of this Agreement; or (d)
+your violation of any law, rule, or regulation, or the rights of any
+third party.</p>
+<p>You agree that any claim you may have arising out of or related to your
+relationship with us must be filed within one year after such claim arises,
+otherwise, your claim in permanently barred.</p>
+<p>In the event of termination concerning your use of our Services, your
+obligations under this Agreement will still continue.</p>
+</div>
+<div class="section" id="discontinuance-of-services-and-force-majeure">
+<h2>Discontinuance of services and Force majeure<a class="headerlink" href="#discontinuance-of-services-and-force-majeure" title="Permalink to this headline">¶</a></h2>
+<p>We shall not be held liable for any delays, failure in performance, or
+interruptions of service which result directly or indirectly from any cause or
+condition beyond our reasonable control, including but not limited to: any
+delay or failure due to any act of God, act of civil or military authorities,
+act of terrorism, civil disturbance, war, strike or other labor dispute, fire,
+interruption in telecommunications or Internet services or network provider
+services, failure of equipment and/or software, other catastrophe, or any
+other occurrence which is beyond our reasonable control and shall not affect
+the validity and enforceability of any remaining provisions.</p>
+</div>
+<div class="section" id="governing-law-waivers-severability-and-assignment">
+<h2>Governing law, Waivers, Severability and Assignment<a class="headerlink" href="#governing-law-waivers-severability-and-assignment" title="Permalink to this headline">¶</a></h2>
+<p>No matter where you’re located, the laws of Luxembourg will govern these
+Terms. If any provisions of these Terms are inconsistent with any applicable
+law, those provisions will be superseded or modified only to the extent such
+provisions are inconsistent. The parties agree to submit to the ordinary
+courts in Luxembourg for exclusive jurisdiction of any dispute
+arising out of or related to your use of the Services or your breach of these
+Terms.</p>
+<p>Our failure to exercise or delay in exercising any right, power, or privilege
+under this Agreement shall not operate as a waiver; nor shall any single or
+partial exercise of any right, power, or privilege preclude any other or
+further exercise thereof.</p>
+<p>You agree that we may assign any of our rights and/or transfer, sub-contract,
+or delegate any of our obligations under these Terms.</p>
+<p>If it turns out that any part of this Agreement is invalid, void, or for any
+reason unenforceable, that term will be deemed severable and limited or
+eliminated to the minimum extent necessary.</p>
+<p>This Agreement sets forth the entire understanding and agreement as to the
+subject matter hereof and supersedes any and all prior discussions,
+agreements, and understandings of any kind (including, without limitation, any
+prior versions of this Agreement) and every nature between us. Except as
+provided for above, any modification to this Agreement must be in writing and
+must be signed by both parties.</p>
+</div>
+<div class="section" id="questions-or-comments">
+<h2>Questions or comments<a class="headerlink" href="#questions-or-comments" title="Permalink to this headline">¶</a></h2>
+<p>We welcome comments, questions, concerns, or suggestions. Please send us a
+message on our contact page at <a class="reference external" href="mailto:legal&#37;&#52;&#48;anastasis&#46;lu">legal<span>&#64;</span>anastasis<span>&#46;</span>lu</a>.</p>
+</div>
+</div>
+
+
+ <div class="clearer"></div>
+ </div>
+ </div>
+ </div>
+ <div class="clearer"></div>
+ </div>
+ </body>
+</html> \ No newline at end of file
diff --git a/contrib/tos/en/0.pdf b/contrib/tos/en/0.pdf
new file mode 100644
index 0000000..cb1cc36
--- /dev/null
+++ b/contrib/tos/en/0.pdf
Binary files differ
diff --git a/contrib/tos/en/0.txt b/contrib/tos/en/0.txt
new file mode 100644
index 0000000..4f1c814
--- /dev/null
+++ b/contrib/tos/en/0.txt
@@ -0,0 +1,287 @@
+Terms Of Service
+****************
+
+Last Updated: 07.09.2021
+
+Welcome! Anastasis SARL (“we,” “our,” or “us”) provides a distributed
+privacy-preserving backup and recovery service for key material
+through our Internet presence (collectively the “Services”). Before
+using our Services, please read the Terms of Service (the “Terms” or
+the “Agreement”) carefully.
+
+
+Overview
+========
+
+This section provides a brief summary of the highlights of this
+Agreement. Please note that when you accept this Agreement, you are
+accepting all of the terms and conditions and not just this section.
+We and possibly other third parties provide Internet services which
+interact with the Anastasis key backup and recovery application. When
+using an application to interact with our Services, you are agreeing
+to our Terms, so please read carefully.
+
+
+Highlights:
+-----------
+
+ * You are responsible for selecting authentication methods and
+ policies that are adequate to protect your key material. Any
+ losses arising from you not being able to satisfy the selected
+ authentication challenges or third parties being able
+ successfully pass the challenges are your problem.
+
+ * We will store your encrypted key shares and disclose them upon
+ successful authentication to the best of our ability within the
+ limitations of the law and our implementation. Our liability will
+ be limited to the liability limit exposed in the protocol.
+
+ * For our Services, we may charge various fees. The specific fee
+ structure is provided based on the Anastasis protocol and should
+ be shown to you when you use an application to interact with our
+ services. You agree and understand that the Anastasis protocol
+ allows for the fee structure to change.
+
+ * You agree to not intentionally overwhelm our systems with
+ requests and follow responsible disclosure if you find security
+ issues in our services.
+
+ * We cannot be held accountable for our Services not being
+ available due to circumstances beyond our control. If we modify
+ or terminate our services, we will announce this and ensure that
+ you can recover your key material for at least one year before we
+ completely terminate the Service.
+
+These terms outline approved uses of our Services. If you have any
+questions or comments related to this Agreement, please send us a
+message to legal@anastasis.lu. If you do not agree to this Agreement,
+you must not use our Services.
+
+
+How you accept this policy
+==========================
+
+By using our API (typically via an Anastasis-enabled application), you
+acknowledge that you have read, understood, and agreed to these Terms.
+We reserve the right to change these Terms at any time. If you
+disagree with the change, you must simply stop using our APIs. Your
+continued use of our Services following any such change will signify
+your acceptance to be bound by the then current Terms. Please check
+the effective date above to determine if there have been any changes
+since you have last reviewed these Terms.
+
+
+Services
+========
+
+We will store your encrypted key shares (and the associated encrypted
+recovery policy document) to the best of our ability and within the
+limitations of the implementation. We will disclose the key shares
+only after the specific authentication challenge has been passed. We
+will rate-limit the use of the authentication APIs to limit brute-
+force attacks.
+
+We are not guaranteeing that the authentication procedures are
+effective. Other parties may be able to intercept authentication
+messages, or you may not be able to receive these messages anymore.
+You are responsible for choosing safe authentication methods with
+sufficient security.
+
+When using our Services, you agree to not take any action that
+intentionally imposes an unreasonable load on our infrastructure. If
+you find security problems in our Services, you agree to first report
+them to security@anastasis.lu and grant us the right to publish your
+report. We warrant that we will ourselves publicly disclose any issues
+reported within 1 month, and that we will not prosecute anyone
+reporting security issues if they did not exploit the issue beyond a
+proof-of-concept, and followed the above responsible disclosure
+practice.
+
+
+Fees
+====
+
+You agree to pay the fees for backup and recovery operations ("Fees")
+as defined by us, which we may change from time to time. Your
+Anastasis client should obtain and display applicable fees during
+backup and recovery.
+
+
+Eligibility
+===========
+
+To be eligible to use our Services, you must be able to form legally
+binding contracts or have the permission of your legal guardian. By
+using our Services, you represent and warrant that you meet all
+eligibility requirements that we outline in these Terms.
+
+
+Copyrights and trademarks
+=========================
+
+The Anastasis software is released under the terms of the GNU Affero
+General Public License (GNU AGPLv3+). You have the right to access,
+use, and share the Anastasis application, in modified or unmodified
+form. However, the Affero GPL is a strong copyleft license, which
+means that any derivative works must be distributed under the same
+license terms as the original software. If you have any questions, you
+should review the GNU AGPL’s full terms and conditions at
+https://www.gnu.org/licenses/agpl-3.0.en.html. “Anastasis” itself is
+a trademark of Anastasis SARL. You are welcome to use the name in
+relation to implementations of the Anastasis protocol, assuming your
+use is compatible with an official release from the GNU Project that
+is not older than two years.
+
+
+Limitation of liability & disclaimer of warranties
+==================================================
+
+You understand and agree that we have no control over, and no duty to
+take any action regarding: Failures, disruptions, errors, or delays in
+processing that you may experience while using our Services; The risk
+of failure of hardware, software, and Internet connections; The risk
+of malicious software being introduced or found in the software
+underlying the Anastasis implementation. You release us from all
+liability related to any losses, damages, or claims arising from:
+
+1. user error such as forgotten security answers or loss of control
+ over accounts used for authentication;
+
+(b) server failure or data loss; (d) bugs or other errors in the
+Anastasis client software; and (e) any unauthorized third party
+activities, including, but not limited to,
+
+ the use of viruses, phishing, brute forcing, or other means of
+ attack against the Anastasis client. We make no representations
+ concerning any Third Party Content contained in or accessed through
+ our Services.
+
+Any other terms, conditions, warranties, or representations associated
+with such content, are solely between you and such organizations
+and/or individuals.
+
+To the fullest extent permitted by applicable law, in no event will we
+or any of our officers, directors, representatives, agents, servants,
+counsel, employees, consultants, lawyers, and other personnel
+authorized to act, acting, or purporting to act on our behalf
+(collectively the “Anastasis Parties”) be liable to you under
+contract, tort, strict liability, negligence, or any other legal or
+equitable theory, for:
+
+1. any lost profits, data loss, cost of procurement of substitute
+ goods or services, or direct, indirect, incidental, special,
+ punitive, compensatory, or consequential damages of any kind
+ whatsoever resulting from:
+
+ 1. your use of, or conduct in connection with, our services;
+
+ 2. any unauthorized use of your wallet and/or private key due to
+ your failure to maintain the confidentiality of your wallet;
+
+ 3. any interruption or cessation of transmission to or from the
+ services; or
+
+ 4. any bugs, viruses, trojan horses, or the like that are found in
+ the Taler Wallet software or that may be transmitted to or
+ through our services by any third party (regardless of the
+ source of origination), or
+
+2. any direct damages.
+
+These limitations apply regardless of legal theory, whether based on
+tort, strict liability, breach of contract, breach of warranty, or any
+other legal theory, and whether or not we were advised of the
+possibility of such damages. Some jurisdictions do not allow the
+exclusion or limitation of liability for consequential or incidental
+damages, so the above limitation may not apply to you.
+
+Our services are provided "as is" and without warranty of any kind. To
+the maximum extent permitted by law, we disclaim all representations
+and warranties, express or implied, relating to the services and
+underlying software or any content on the services, whether provided
+or owned by us or by any third party, including without limitation,
+warranties of merchantability, fitness for a particular purpose,
+title, non-infringement, freedom from computer virus, and any implied
+warranties arising from course of dealing, course of performance, or
+usage in trade, all of which are expressly disclaimed. In addition, we
+do not represent or warrant that the content accessible via the
+services is accurate, complete, available, current, free of viruses or
+other harmful components, or that the results of using the services
+will meet your requirements. Some states do not allow the disclaimer
+of implied warranties, so the foregoing disclaimers may not apply to
+you. This paragraph gives you specific legal rights and you may also
+have other legal rights that vary from state to state.
+
+
+Indemnity and Time limitation on claims and Termination
+=======================================================
+
+To the extent permitted by applicable law, you agree to defend,
+indemnify, and hold harmless the Anastasis Parties from and against
+any and all claims, damages, obligations, losses, liabilities, costs
+or debt, and expenses (including, but not limited to, attorney’s fees)
+arising from: (a) your use of and access to the Services; (b) any
+feedback or submissions you provide to us concerning the Anastasis
+software; (c) your violation of any term of this Agreement; or (d)
+your violation of any law, rule, or regulation, or the rights of any
+third party.
+
+You agree that any claim you may have arising out of or related to
+your relationship with us must be filed within one year after such
+claim arises, otherwise, your claim in permanently barred.
+
+In the event of termination concerning your use of our Services, your
+obligations under this Agreement will still continue.
+
+
+Discontinuance of services and Force majeure
+============================================
+
+We shall not be held liable for any delays, failure in performance, or
+interruptions of service which result directly or indirectly from any
+cause or condition beyond our reasonable control, including but not
+limited to: any delay or failure due to any act of God, act of civil
+or military authorities, act of terrorism, civil disturbance, war,
+strike or other labor dispute, fire, interruption in
+telecommunications or Internet services or network provider services,
+failure of equipment and/or software, other catastrophe, or any other
+occurrence which is beyond our reasonable control and shall not affect
+the validity and enforceability of any remaining provisions.
+
+
+Governing law, Waivers, Severability and Assignment
+===================================================
+
+No matter where you’re located, the laws of Luxembourg will govern
+these Terms. If any provisions of these Terms are inconsistent with
+any applicable law, those provisions will be superseded or modified
+only to the extent such provisions are inconsistent. The parties agree
+to submit to the ordinary courts in Luxembourg for exclusive
+jurisdiction of any dispute arising out of or related to your use of
+the Services or your breach of these Terms.
+
+Our failure to exercise or delay in exercising any right, power, or
+privilege under this Agreement shall not operate as a waiver; nor
+shall any single or partial exercise of any right, power, or privilege
+preclude any other or further exercise thereof.
+
+You agree that we may assign any of our rights and/or transfer, sub-
+contract, or delegate any of our obligations under these Terms.
+
+If it turns out that any part of this Agreement is invalid, void, or
+for any reason unenforceable, that term will be deemed severable and
+limited or eliminated to the minimum extent necessary.
+
+This Agreement sets forth the entire understanding and agreement as to
+the subject matter hereof and supersedes any and all prior
+discussions, agreements, and understandings of any kind (including,
+without limitation, any prior versions of this Agreement) and every
+nature between us. Except as provided for above, any modification to
+this Agreement must be in writing and must be signed by both parties.
+
+
+Questions or comments
+=====================
+
+We welcome comments, questions, concerns, or suggestions. Please send
+us a message on our contact page at legal@anastasis.lu.
diff --git a/contrib/tos/en/0.xml b/contrib/tos/en/0.xml
new file mode 100644
index 0000000..3bf9332
--- /dev/null
+++ b/contrib/tos/en/0.xml
@@ -0,0 +1,271 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE document PUBLIC "+//IDN docutils.sourceforge.net//DTD Docutils Generic//EN//XML" "http://docutils.sourceforge.net/docs/ref/docutils.dtd">
+<!-- Generated by Docutils 0.16 -->
+<document source="/research/anastasis/anastasis/contrib/tos/tos.rst">
+ <section ids="terms-of-service" names="terms\ of\ service">
+ <title>Terms Of Service</title>
+ <paragraph>Last Updated: 07.09.2021</paragraph>
+ <paragraph>Welcome! Anastasis SARL (“we,” “our,” or “us”) provides a distributed
+ privacy-preserving backup and recovery service for key material
+ through our Internet presence (collectively the “Services”). Before
+ using our Services, please read the Terms of Service (the “Terms” or
+ the “Agreement”) carefully.</paragraph>
+ <section ids="overview" names="overview">
+ <title>Overview</title>
+ <paragraph>This section provides a brief summary of the highlights of this
+ Agreement. Please note that when you accept this Agreement, you are
+ accepting all of the terms and conditions and not just this
+ section. We and possibly other third parties provide Internet services
+ which interact with the Anastasis key backup and recovery
+ application. When using an application to interact with our Services,
+ you are agreeing to our Terms, so please read carefully.</paragraph>
+ <section ids="highlights" names="highlights:">
+ <title>Highlights:</title>
+ <block_quote>
+ <bullet_list bullet="•">
+ <list_item>
+ <paragraph>You are responsible for selecting authentication methods and
+ policies that are adequate to protect your key material.
+ Any losses arising from you not being able to satisfy the
+ selected authentication challenges or third parties being able
+ successfully pass the challenges are your problem.</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>We will store your encrypted key shares and disclose them upon
+ successful authentication to the best of our ability within the
+ limitations of the law and our implementation. Our liability will
+ be limited to the liability limit exposed in the protocol.</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>For our Services, we may charge various fees. The specific fee structure
+ is provided based on the Anastasis protocol and should be shown to you when you
+ use an application to interact with our services. You agree and understand
+ that the Anastasis protocol allows for the fee structure to change.</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>You agree to not intentionally overwhelm our systems with requests and
+ follow responsible disclosure if you find security issues in our services.</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>We cannot be held accountable for our Services not being available due to
+ circumstances beyond our control. If we modify or terminate our services,
+ we will announce this and ensure that you can recover your key material
+ for at least one year before we completely terminate the Service.</paragraph>
+ </list_item>
+ </bullet_list>
+ </block_quote>
+ <paragraph>These terms outline approved uses of our Services. If you have any
+ questions or comments related to this Agreement, please send us a
+ message to <reference refuri="mailto:legal@anastasis.lu">legal@anastasis.lu</reference>. If you do not agree to this Agreement,
+ you must not use our Services.</paragraph>
+ </section>
+ </section>
+ <section ids="how-you-accept-this-policy" names="how\ you\ accept\ this\ policy">
+ <title>How you accept this policy</title>
+ <paragraph>By using our API (typically via an Anastasis-enabled application), you
+ acknowledge that you have read, understood, and agreed to these
+ Terms. We reserve the right to change these Terms at any time. If you
+ disagree with the change, you must simply stop using our APIs. Your
+ continued use of our Services following any such change will signify
+ your acceptance to be bound by the then current Terms. Please check
+ the effective date above to determine if there have been any changes
+ since you have last reviewed these Terms.</paragraph>
+ </section>
+ <section ids="services" names="services">
+ <title>Services</title>
+ <paragraph>We will store your encrypted key shares (and the associated encrypted
+ recovery policy document) to the best of our ability and within the
+ limitations of the implementation. We will disclose the key shares only
+ after the specific authentication challenge has been passed. We will
+ rate-limit the use of the authentication APIs to limit brute-force
+ attacks.</paragraph>
+ <paragraph>We are not guaranteeing that the authentication procedures are effective.
+ Other parties may be able to intercept authentication messages, or you
+ may not be able to receive these messages anymore. You are responsible
+ for choosing safe authentication methods with sufficient security.</paragraph>
+ <paragraph>When using our Services, you agree to not take any action that
+ intentionally imposes an unreasonable load on our infrastructure. If
+ you find security problems in our Services, you agree to first report
+ them to <reference refuri="mailto:security@anastasis.lu">security@anastasis.lu</reference> and grant us the right to publish your
+ report. We warrant that we will ourselves publicly disclose any issues
+ reported within 1 month, and that we will not prosecute anyone
+ reporting security issues if they did not exploit the issue beyond a
+ proof-of-concept, and followed the above responsible disclosure
+ practice.</paragraph>
+ </section>
+ <section ids="fees" names="fees">
+ <title>Fees</title>
+ <paragraph>You agree to pay the fees for backup and recovery operations (“Fees”)
+ as defined by us, which we may change from time to time. Your
+ Anastasis client should obtain and display applicable fees during
+ backup and recovery.</paragraph>
+ </section>
+ <section ids="eligibility" names="eligibility">
+ <title>Eligibility</title>
+ <paragraph>To be eligible to use our Services, you must be able to form legally binding
+ contracts or have the permission of your legal guardian. By using our
+ Services, you represent and warrant that you meet all eligibility requirements
+ that we outline in these Terms.</paragraph>
+ </section>
+ <section ids="copyrights-and-trademarks" names="copyrights\ and\ trademarks">
+ <title>Copyrights and trademarks</title>
+ <paragraph>The Anastasis software is released under the terms of the GNU Affero
+ General Public License (GNU AGPLv3+). You have the right to access,
+ use, and share the Anastasis application, in modified or unmodified
+ form. However, the Affero GPL is a strong copyleft license, which
+ means that any derivative works must be distributed under the same
+ license terms as the original software. If you have any questions, you
+ should review the GNU AGPL’s full terms and conditions at
+ <reference refuri="https://www.gnu.org/licenses/agpl-3.0.en.html">https://www.gnu.org/licenses/agpl-3.0.en.html</reference>. “Anastasis” itself is
+ a trademark of Anastasis SARL. You are welcome to use the name in
+ relation to implementations of the Anastasis protocol, assuming your
+ use is compatible with an official release from the GNU Project that
+ is not older than two years.</paragraph>
+ </section>
+ <section ids="limitation-of-liability-disclaimer-of-warranties" names="limitation\ of\ liability\ &amp;\ disclaimer\ of\ warranties">
+ <title>Limitation of liability &amp; disclaimer of warranties</title>
+ <paragraph>You understand and agree that we have no control over, and no duty to
+ take any action regarding: Failures, disruptions, errors, or delays in
+ processing that you may experience while using our Services; The risk
+ of failure of hardware, software, and Internet connections; The risk
+ of malicious software being introduced or found in the software
+ underlying the Anastasis implementation. You release us from all
+ liability related to any losses, damages, or claims arising from:</paragraph>
+ <enumerated_list enumtype="loweralpha" prefix="(" suffix=")">
+ <list_item>
+ <paragraph>user error such as forgotten security answers or loss of
+ control over accounts used for authentication;</paragraph>
+ </list_item>
+ </enumerated_list>
+ <paragraph>(b) server failure or data loss;
+ (d) bugs or other errors in the Anastasis client software; and
+ (e) any unauthorized third party activities, including, but not limited to,</paragraph>
+ <block_quote>
+ <paragraph>the use of viruses, phishing, brute forcing, or other means of attack
+ against the Anastasis client. We make no representations concerning any
+ Third Party Content contained in or accessed through our Services.</paragraph>
+ </block_quote>
+ <paragraph>Any other terms, conditions, warranties, or representations associated with
+ such content, are solely between you and such organizations and/or
+ individuals.</paragraph>
+ <paragraph>To the fullest extent permitted by applicable law, in no event will we
+ or any of our officers, directors, representatives, agents, servants,
+ counsel, employees, consultants, lawyers, and other personnel
+ authorized to act, acting, or purporting to act on our behalf
+ (collectively the “Anastasis Parties”) be liable to you under
+ contract, tort, strict liability, negligence, or any other legal or
+ equitable theory, for:</paragraph>
+ <enumerated_list enumtype="loweralpha" prefix="(" suffix=")">
+ <list_item>
+ <paragraph>any lost profits, data loss, cost of procurement of substitute goods or
+ services, or direct, indirect, incidental, special, punitive, compensatory,
+ or consequential damages of any kind whatsoever resulting from:</paragraph>
+ </list_item>
+ </enumerated_list>
+ <block_quote>
+ <enumerated_list enumtype="lowerroman" prefix="(" suffix=")">
+ <list_item>
+ <paragraph>your use of, or conduct in connection with, our services;</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>any unauthorized use of your wallet and/or private key due to your
+ failure to maintain the confidentiality of your wallet;</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>any interruption or cessation of transmission to or from the services; or</paragraph>
+ </list_item>
+ <list_item>
+ <paragraph>any bugs, viruses, trojan horses, or the like that are found in the Taler
+ Wallet software or that may be transmitted to or through our services by
+ any third party (regardless of the source of origination), or</paragraph>
+ </list_item>
+ </enumerated_list>
+ </block_quote>
+ <enumerated_list enumtype="loweralpha" prefix="(" start="2" suffix=")">
+ <list_item>
+ <paragraph>any direct damages.</paragraph>
+ </list_item>
+ </enumerated_list>
+ <paragraph>These limitations apply regardless of legal theory, whether based on tort,
+ strict liability, breach of contract, breach of warranty, or any other legal
+ theory, and whether or not we were advised of the possibility of such
+ damages. Some jurisdictions do not allow the exclusion or limitation of
+ liability for consequential or incidental damages, so the above limitation may
+ not apply to you.</paragraph>
+ <paragraph>Our services are provided “as is” and without warranty of any kind. To the
+ maximum extent permitted by law, we disclaim all representations and
+ warranties, express or implied, relating to the services and underlying
+ software or any content on the services, whether provided or owned by us or by
+ any third party, including without limitation, warranties of merchantability,
+ fitness for a particular purpose, title, non-infringement, freedom from
+ computer virus, and any implied warranties arising from course of dealing,
+ course of performance, or usage in trade, all of which are expressly
+ disclaimed. In addition, we do not represent or warrant that the content
+ accessible via the services is accurate, complete, available, current, free of
+ viruses or other harmful components, or that the results of using the services
+ will meet your requirements. Some states do not allow the disclaimer of
+ implied warranties, so the foregoing disclaimers may not apply to you. This
+ paragraph gives you specific legal rights and you may also have other legal
+ rights that vary from state to state.</paragraph>
+ </section>
+ <section ids="indemnity-and-time-limitation-on-claims-and-termination" names="indemnity\ and\ time\ limitation\ on\ claims\ and\ termination">
+ <title>Indemnity and Time limitation on claims and Termination</title>
+ <paragraph>To the extent permitted by applicable law, you agree to defend,
+ indemnify, and hold harmless the Anastasis Parties from and against
+ any and all claims, damages, obligations, losses, liabilities, costs
+ or debt, and expenses (including, but not limited to, attorney’s fees)
+ arising from: (a) your use of and access to the Services; (b) any
+ feedback or submissions you provide to us concerning the Anastasis
+ software; (c) your violation of any term of this Agreement; or (d)
+ your violation of any law, rule, or regulation, or the rights of any
+ third party.</paragraph>
+ <paragraph>You agree that any claim you may have arising out of or related to your
+ relationship with us must be filed within one year after such claim arises,
+ otherwise, your claim in permanently barred.</paragraph>
+ <paragraph>In the event of termination concerning your use of our Services, your
+ obligations under this Agreement will still continue.</paragraph>
+ </section>
+ <section ids="discontinuance-of-services-and-force-majeure" names="discontinuance\ of\ services\ and\ force\ majeure">
+ <title>Discontinuance of services and Force majeure</title>
+ <paragraph>We shall not be held liable for any delays, failure in performance, or
+ interruptions of service which result directly or indirectly from any cause or
+ condition beyond our reasonable control, including but not limited to: any
+ delay or failure due to any act of God, act of civil or military authorities,
+ act of terrorism, civil disturbance, war, strike or other labor dispute, fire,
+ interruption in telecommunications or Internet services or network provider
+ services, failure of equipment and/or software, other catastrophe, or any
+ other occurrence which is beyond our reasonable control and shall not affect
+ the validity and enforceability of any remaining provisions.</paragraph>
+ </section>
+ <section ids="governing-law-waivers-severability-and-assignment" names="governing\ law,\ waivers,\ severability\ and\ assignment">
+ <title>Governing law, Waivers, Severability and Assignment</title>
+ <paragraph>No matter where you’re located, the laws of Luxembourg will govern these
+ Terms. If any provisions of these Terms are inconsistent with any applicable
+ law, those provisions will be superseded or modified only to the extent such
+ provisions are inconsistent. The parties agree to submit to the ordinary
+ courts in Luxembourg for exclusive jurisdiction of any dispute
+ arising out of or related to your use of the Services or your breach of these
+ Terms.</paragraph>
+ <paragraph>Our failure to exercise or delay in exercising any right, power, or privilege
+ under this Agreement shall not operate as a waiver; nor shall any single or
+ partial exercise of any right, power, or privilege preclude any other or
+ further exercise thereof.</paragraph>
+ <paragraph>You agree that we may assign any of our rights and/or transfer, sub-contract,
+ or delegate any of our obligations under these Terms.</paragraph>
+ <paragraph>If it turns out that any part of this Agreement is invalid, void, or for any
+ reason unenforceable, that term will be deemed severable and limited or
+ eliminated to the minimum extent necessary.</paragraph>
+ <paragraph>This Agreement sets forth the entire understanding and agreement as to the
+ subject matter hereof and supersedes any and all prior discussions,
+ agreements, and understandings of any kind (including, without limitation, any
+ prior versions of this Agreement) and every nature between us. Except as
+ provided for above, any modification to this Agreement must be in writing and
+ must be signed by both parties.</paragraph>
+ </section>
+ <section ids="questions-or-comments" names="questions\ or\ comments">
+ <title>Questions or comments</title>
+ <paragraph>We welcome comments, questions, concerns, or suggestions. Please send us a
+ message on our contact page at <reference refuri="mailto:legal@anastasis.lu">legal@anastasis.lu</reference>.</paragraph>
+ </section>
+ </section>
+</document>
diff --git a/contrib/tos/locale/de/LC_MESSAGES/tos.po b/contrib/tos/locale/de/LC_MESSAGES/tos.po
new file mode 100644
index 0000000..21aa9c8
--- /dev/null
+++ b/contrib/tos/locale/de/LC_MESSAGES/tos.po
@@ -0,0 +1,517 @@
+# SOME DESCRIPTIVE TITLE.
+# Copyright (C) 2014-2020 Taler Systems SA (GPLv3+ or GFDL 1.3+)
+# This file is distributed under the same license as the tos package.
+# FIRST AUTHOR <EMAIL@ADDRESS>, 2020.
+#
+#, fuzzy
+msgid ""
+msgstr ""
+"Project-Id-Version: tos 0\n"
+"Report-Msgid-Bugs-To: \n"
+"POT-Creation-Date: 2020-02-07 01:00+0100\n"
+"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
+"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
+"Language-Team: LANGUAGE <LL@li.org>\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=utf-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+"Generated-By: Babel 2.6.0\n"
+
+#: ../../tos.rst:2
+msgid "Terms Of Service"
+msgstr ""
+
+#: ../../tos.rst:4
+msgid "Last Updated: 12.4.2019"
+msgstr ""
+
+#: ../../tos.rst:6
+msgid ""
+"Welcome! Taler Systems SA (“we,” “our,” or “us”) provides a payment "
+"service through our Internet presence (collectively the “Services”). "
+"Before using our Services, please read the Terms of Service (the “Terms” "
+"or the “Agreement”) carefully."
+msgstr ""
+
+#: ../../tos.rst:12
+msgid "Overview"
+msgstr ""
+
+#: ../../tos.rst:14
+msgid ""
+"This section provides a brief summary of the highlights of this "
+"Agreement. Please note that when you accept this Agreement, you are "
+"accepting all of the terms and conditions and not just this section. We "
+"and possibly other third parties provide Internet services which interact"
+" with the Taler Wallet’s self-hosted personal payment application. When "
+"using the Taler Wallet to interact with our Services, you are agreeing to"
+" our Terms, so please read carefully."
+msgstr ""
+
+#: ../../tos.rst:23
+msgid "Highlights:"
+msgstr ""
+
+#: ../../tos.rst:25
+msgid ""
+"You are responsible for keeping the data in your Taler Wallet at all "
+"times under your control. Any losses arising from you not being in "
+"control of your private information are your problem."
+msgstr ""
+
+#: ../../tos.rst:28
+msgid ""
+"We will try to transfer funds we hold in escrow for our users to any "
+"legal recipient to the best of our ability within the limitations of the "
+"law and our implementation. However, the Services offered today are "
+"highly experimental and the set of recipients of funds is severely "
+"restricted."
+msgstr ""
+
+#: ../../tos.rst:32
+msgid ""
+"For our Services, we may charge transaction fees. The specific fee "
+"structure is provided based on the Taler protocol and should be shown to "
+"you when you withdraw electronic coins using a Taler Wallet. You agree "
+"and understand that the Taler protocol allows for the fee structure to "
+"change."
+msgstr ""
+
+#: ../../tos.rst:36
+msgid ""
+"You agree to not intentionally overwhelm our systems with requests and "
+"follow responsible disclosure if you find security issues in our "
+"services."
+msgstr ""
+
+#: ../../tos.rst:38
+msgid ""
+"We cannot be held accountable for our Services not being available due to"
+" circumstances beyond our control. If we modify or terminate our "
+"services, we will try to give you the opportunity to recover your funds. "
+"However, given the experimental state of the Services today, this may not"
+" be possible. You are strongly advised to limit your use of the Service "
+"to small-scale experiments expecting total loss of all funds."
+msgstr ""
+
+#: ../../tos.rst:45
+msgid ""
+"These terms outline approved uses of our Services. The Services and these"
+" Terms are still at an experimental stage. If you have any questions or "
+"comments related to this Agreement, please send us a message to legal"
+"@taler-systems.com. If you do not agree to this Agreement, you must not "
+"use our Services."
+msgstr ""
+
+#: ../../tos.rst:52
+msgid "How you accept this policy"
+msgstr ""
+
+#: ../../tos.rst:54
+msgid ""
+"By sending funds to us (to top-up your Taler Wallet), you acknowledge "
+"that you have read, understood, and agreed to these Terms. We reserve the"
+" right to change these Terms at any time. If you disagree with the "
+"change, we may in the future offer you with an easy option to recover "
+"your unspent funds. However, in the current experimental period you "
+"acknowledge that this feature is not yet available, resulting in your "
+"funds being lost unless you accept the new Terms. If you continue to use "
+"our Services other than to recover your unspent funds, your continued use"
+" of our Services following any such change will signify your acceptance "
+"to be bound by the then current Terms. Please check the effective date "
+"above to determine if there have been any changes since you have last "
+"reviewed these Terms."
+msgstr ""
+
+#: ../../tos.rst:67
+msgid "Services"
+msgstr ""
+
+#: ../../tos.rst:69
+msgid ""
+"We will try to transfer funds that we hold in escrow for our users to any"
+" legal recipient to the best of our ability and within the limitations of"
+" the law and our implementation. However, the Services offered today are "
+"highly experimental and the set of recipients of funds is severely "
+"restricted. The Taler Wallet can be loaded by exchanging fiat currencies"
+" against electronic coins. We are providing this exchange service. Once "
+"your Taler Wallet is loaded with electronic coins they can be spent for "
+"purchases if the seller is accepting Taler as a means of payment. We are "
+"not guaranteeing that any seller is accepting Taler at all or a "
+"particular seller. The seller or recipient of deposits of electronic "
+"coins must specify the target account, as per the design of the Taler "
+"protocol. They are responsible for following the protocol and specifying "
+"the correct bank account, and are solely liable for any losses that may "
+"arise from specifying the wrong account. We will allow the government to "
+"link wire transfers to the underlying contract hash. It is the "
+"responsibility of recipients to preserve the full contracts and to pay "
+"whatever taxes and charges may be applicable. Technical issues may lead "
+"to situations where we are unable to make transfers at all or lead to "
+"incorrect transfers that cannot be reversed. We will only refuse to "
+"execute transfers if the transfers are prohibited by a competent legal "
+"authority and we are ordered to do so."
+msgstr ""
+
+#: ../../tos.rst:91
+msgid "Fees"
+msgstr ""
+
+#: ../../tos.rst:93
+msgid ""
+"You agree to pay the fees for exchanges and withdrawals completed via the"
+" Taler Wallet (\"Fees\") as defined by us, which we may change from time "
+"to time. With the exception of wire transfer fees, Taler transaction fees"
+" are set for any electronic coin at the time of withdrawal and fixed "
+"throughout the validity period of the respective electronic coin. Your "
+"wallet should obtain and display applicable fees when withdrawing funds. "
+"Fees for coins obtained as change may differ from the fees applicable to "
+"the original coin. Wire transfer fees that are independent from "
+"electronic coins may change annually. You authorize us to charge or "
+"deduct applicable fees owed in connection with deposits, exchanges and "
+"withdrawals following the rules of the Taler protocol. We reserve the "
+"right to provide different types of rewards to users either in the form "
+"of discount for our Services or in any other form at our discretion and "
+"without prior notice to you."
+msgstr ""
+
+#: ../../tos.rst:108
+msgid "Eligibility"
+msgstr ""
+
+#: ../../tos.rst:110
+msgid ""
+"To be eligible to use our Services, you must be able to form legally "
+"binding contracts or have the permission of your legal guardian. By using"
+" our Services, you represent and warrant that you meet all eligibility "
+"requirements that we outline in these Terms."
+msgstr ""
+
+#: ../../tos.rst:116
+msgid "Financial self-responsibility"
+msgstr ""
+
+#: ../../tos.rst:118
+msgid ""
+"You will be responsible for maintaining the availability, integrity and "
+"confidentiality of the data stored in your wallet. When you setup a Taler"
+" Wallet, you are strongly advised to follow the precautionary measures "
+"offered by the software to minimize the chances to losse access to or "
+"control over your Wallet data. We will not be liable for any loss or "
+"damage arising from your failure to comply with this paragraph."
+msgstr ""
+
+#: ../../tos.rst:126
+msgid "Copyrights and trademarks"
+msgstr ""
+
+#: ../../tos.rst:128
+msgid ""
+"The Taler Wallet is released under the terms of the GNU General Public "
+"License (GNU GPL). You have the right to access, use, and share the Taler"
+" Wallet, in modified or unmodified form. However, the GPL is a strong "
+"copyleft license, which means that any derivative works must be "
+"distributed under the same license terms as the original software. If you"
+" have any questions, you should review the GNU GPL’s full terms and "
+"conditions at https://www.gnu.org/licenses/gpl-3.0.en.html. “Taler” "
+"itself is a trademark of Taler Systems SA. You are welcome to use the "
+"name in relation to processing payments using the Taler protocol, "
+"assuming your use is compatible with an official release from the GNU "
+"Project that is not older than two years."
+msgstr ""
+
+#: ../../tos.rst:140
+msgid "Your use of our services"
+msgstr ""
+
+#: ../../tos.rst:142
+msgid ""
+"When using our Services, you agree to not take any action that "
+"intentionally imposes an unreasonable load on our infrastructure. If you "
+"find security problems in our Services, you agree to first report them to"
+" security@taler-systems.com and grant us the right to publish your "
+"report. We warrant that we will ourselves publicly disclose any issues "
+"reported within 3 months, and that we will not prosecute anyone reporting"
+" security issues if they did not exploit the issue beyond a proof-of-"
+"concept, and followed the above responsible disclosure practice."
+msgstr ""
+
+#: ../../tos.rst:152
+msgid "Limitation of liability & disclaimer of warranties"
+msgstr ""
+
+#: ../../tos.rst:154
+msgid ""
+"You understand and agree that we have no control over, and no duty to "
+"take any action regarding: Failures, disruptions, errors, or delays in "
+"processing that you may experience while using our Services; The risk of "
+"failure of hardware, software, and Internet connections; The risk of "
+"malicious software being introduced or found in the software underlying "
+"the Taler Wallet; The risk that third parties may obtain unauthorized "
+"access to information stored within your Taler Wallet, including, but not"
+" limited to your Taler Wallet coins or backup encryption keys. You "
+"release us from all liability related to any losses, damages, or claims "
+"arising from:"
+msgstr ""
+
+#: ../../tos.rst:164
+msgid ""
+"user error such as forgotten passwords, incorrectly constructed "
+"transactions;"
+msgstr ""
+
+#: ../../tos.rst:166
+msgid "server failure or data loss;"
+msgstr ""
+
+#: ../../tos.rst:167
+msgid "unauthorized access to the Taler Wallet application;"
+msgstr ""
+
+#: ../../tos.rst:168
+msgid "bugs or other errors in the Taler Wallet software; and"
+msgstr ""
+
+#: ../../tos.rst:169
+msgid ""
+"any unauthorized third party activities, including, but not limited to, "
+"the use of viruses, phishing, brute forcing, or other means of attack "
+"against the Taler Wallet. We make no representations concerning any Third"
+" Party Content contained in or accessed through our Services."
+msgstr ""
+
+#: ../../tos.rst:174
+msgid ""
+"Any other terms, conditions, warranties, or representations associated "
+"with such content, are solely between you and such organizations and/or "
+"individuals."
+msgstr ""
+
+#: ../../tos.rst:179
+msgid "Limitation of liability"
+msgstr ""
+
+#: ../../tos.rst:181
+msgid ""
+"To the fullest extent permitted by applicable law, in no event will we or"
+" any of our officers, directors, representatives, agents, servants, "
+"counsel, employees, consultants, lawyers, and other personnel authorized "
+"to act, acting, or purporting to act on our behalf (collectively the "
+"“Taler Parties”) be liable to you under contract, tort, strict liability,"
+" negligence, or any other legal or equitable theory, for:"
+msgstr ""
+
+#: ../../tos.rst:188
+msgid ""
+"any lost profits, data loss, cost of procurement of substitute goods or "
+"services, or direct, indirect, incidental, special, punitive, "
+"compensatory, or consequential damages of any kind whatsoever resulting "
+"from:"
+msgstr ""
+
+#: ../../tos.rst:192
+msgid "your use of, or conduct in connection with, our services;"
+msgstr ""
+
+#: ../../tos.rst:193
+msgid ""
+"any unauthorized use of your wallet and/or private key due to your "
+"failure to maintain the confidentiality of your wallet;"
+msgstr ""
+
+#: ../../tos.rst:195
+msgid "any interruption or cessation of transmission to or from the services; or"
+msgstr ""
+
+#: ../../tos.rst:196
+msgid ""
+"any bugs, viruses, trojan horses, or the like that are found in the Taler"
+" Wallet software or that may be transmitted to or through our services by"
+" any third party (regardless of the source of origination), or"
+msgstr ""
+
+#: ../../tos.rst:200
+msgid "any direct damages."
+msgstr ""
+
+#: ../../tos.rst:202
+msgid ""
+"These limitations apply regardless of legal theory, whether based on "
+"tort, strict liability, breach of contract, breach of warranty, or any "
+"other legal theory, and whether or not we were advised of the possibility"
+" of such damages. Some jurisdictions do not allow the exclusion or "
+"limitation of liability for consequential or incidental damages, so the "
+"above limitation may not apply to you."
+msgstr ""
+
+#: ../../tos.rst:210
+msgid "Warranty disclaimer"
+msgstr ""
+
+#: ../../tos.rst:212
+msgid ""
+"Our services are provided \"as is\" and without warranty of any kind. To "
+"the maximum extent permitted by law, we disclaim all representations and "
+"warranties, express or implied, relating to the services and underlying "
+"software or any content on the services, whether provided or owned by us "
+"or by any third party, including without limitation, warranties of "
+"merchantability, fitness for a particular purpose, title, non-"
+"infringement, freedom from computer virus, and any implied warranties "
+"arising from course of dealing, course of performance, or usage in trade,"
+" all of which are expressly disclaimed. In addition, we do not represent "
+"or warrant that the content accessible via the services is accurate, "
+"complete, available, current, free of viruses or other harmful "
+"components, or that the results of using the services will meet your "
+"requirements. Some states do not allow the disclaimer of implied "
+"warranties, so the foregoing disclaimers may not apply to you. This "
+"paragraph gives you specific legal rights and you may also have other "
+"legal rights that vary from state to state."
+msgstr ""
+
+#: ../../tos.rst:229
+msgid "Indemnity"
+msgstr ""
+
+#: ../../tos.rst:231
+msgid ""
+"To the extent permitted by applicable law, you agree to defend, "
+"indemnify, and hold harmless the Taler Parties from and against any and "
+"all claims, damages, obligations, losses, liabilities, costs or debt, and"
+" expenses (including, but not limited to, attorney’s fees) arising from: "
+"(a) your use of and access to the Services; (b) any feedback or "
+"submissions you provide to us concerning the Taler Wallet; (c) your "
+"violation of any term of this Agreement; or (d) your violation of any "
+"law, rule, or regulation, or the rights of any third party."
+msgstr ""
+
+#: ../../tos.rst:240
+msgid "Time limitation on claims"
+msgstr ""
+
+#: ../../tos.rst:242
+msgid ""
+"You agree that any claim you may have arising out of or related to your "
+"relationship with us must be filed within one year after such claim "
+"arises, otherwise, your claim in permanently barred."
+msgstr ""
+
+#: ../../tos.rst:247
+msgid "Governing law"
+msgstr ""
+
+#: ../../tos.rst:249
+msgid ""
+"No matter where you’re located, the laws of Switzerland will govern these"
+" Terms. If any provisions of these Terms are inconsistent with any "
+"applicable law, those provisions will be superseded or modified only to "
+"the extent such provisions are inconsistent. The parties agree to submit "
+"to the ordinary courts in Zurich, Switzerland for exclusive jurisdiction "
+"of any dispute arising out of or related to your use of the Services or "
+"your breach of these Terms."
+msgstr ""
+
+#: ../../tos.rst:258
+msgid "Termination"
+msgstr ""
+
+#: ../../tos.rst:260
+msgid ""
+"In the event of termination concerning your use of our Services, your "
+"obligations under this Agreement will still continue."
+msgstr ""
+
+#: ../../tos.rst:264
+msgid "Discontinuance of services"
+msgstr ""
+
+#: ../../tos.rst:266
+msgid ""
+"We may, in our sole discretion and without cost to you, with or without "
+"prior notice, and at any time, modify or discontinue, temporarily or "
+"permanently, any portion of our Services. We will use the Taler "
+"protocol’s provisions to notify Wallets if our Services are to be "
+"discontinued. It is your responsibility to ensure that the Taler Wallet "
+"is online at least once every three months to observe these "
+"notifications. We shall not be held responsible or liable for any loss of"
+" funds in the event that we discontinue or depreciate the Services and "
+"your Taler Wallet fails to transfer out the coins within a three months "
+"notification period."
+msgstr ""
+
+#: ../../tos.rst:277
+msgid "No waiver"
+msgstr ""
+
+#: ../../tos.rst:279
+msgid ""
+"Our failure to exercise or delay in exercising any right, power, or "
+"privilege under this Agreement shall not operate as a waiver; nor shall "
+"any single or partial exercise of any right, power, or privilege preclude"
+" any other or further exercise thereof."
+msgstr ""
+
+#: ../../tos.rst:285
+msgid "Severability"
+msgstr ""
+
+#: ../../tos.rst:287
+msgid ""
+"If it turns out that any part of this Agreement is invalid, void, or for "
+"any reason unenforceable, that term will be deemed severable and limited "
+"or eliminated to the minimum extent necessary."
+msgstr ""
+
+#: ../../tos.rst:292
+msgid "Force majeure"
+msgstr ""
+
+#: ../../tos.rst:294
+msgid ""
+"We shall not be held liable for any delays, failure in performance, or "
+"interruptions of service which result directly or indirectly from any "
+"cause or condition beyond our reasonable control, including but not "
+"limited to: any delay or failure due to any act of God, act of civil or "
+"military authorities, act of terrorism, civil disturbance, war, strike or"
+" other labor dispute, fire, interruption in telecommunications or "
+"Internet services or network provider services, failure of equipment "
+"and/or software, other catastrophe, or any other occurrence which is "
+"beyond our reasonable control and shall not affect the validity and "
+"enforceability of any remaining provisions."
+msgstr ""
+
+#: ../../tos.rst:305
+msgid "Assignment"
+msgstr ""
+
+#: ../../tos.rst:307
+msgid ""
+"You agree that we may assign any of our rights and/or transfer, sub-"
+"contract, or delegate any of our obligations under these Terms."
+msgstr ""
+
+#: ../../tos.rst:311
+msgid "Entire agreement"
+msgstr ""
+
+#: ../../tos.rst:313
+msgid ""
+"This Agreement sets forth the entire understanding and agreement as to "
+"the subject matter hereof and supersedes any and all prior discussions, "
+"agreements, and understandings of any kind (including, without "
+"limitation, any prior versions of this Agreement) and every nature "
+"between us. Except as provided for above, any modification to this "
+"Agreement must be in writing and must be signed by both parties."
+msgstr ""
+
+#: ../../tos.rst:321
+msgid "Questions or comments"
+msgstr ""
+
+#: ../../tos.rst:323
+msgid ""
+"We welcome comments, questions, concerns, or suggestions. Please send us "
+"a message on our contact page at legal@taler-systems.com."
+msgstr ""
+
+#~ msgid "Indemntiy"
+#~ msgstr ""
+
diff --git a/contrib/tos/tos.rst b/contrib/tos/tos.rst
new file mode 100644
index 0000000..4445601
--- /dev/null
+++ b/contrib/tos/tos.rst
@@ -0,0 +1,265 @@
+Terms Of Service
+================
+
+Last Updated: 07.09.2021
+
+Welcome! Anastasis SARL (“we,” “our,” or “us”) provides a distributed
+privacy-preserving backup and recovery service for key material
+through our Internet presence (collectively the “Services”). Before
+using our Services, please read the Terms of Service (the “Terms” or
+the “Agreement”) carefully.
+
+Overview
+--------
+
+This section provides a brief summary of the highlights of this
+Agreement. Please note that when you accept this Agreement, you are
+accepting all of the terms and conditions and not just this
+section. We and possibly other third parties provide Internet services
+which interact with the Anastasis key backup and recovery
+application. When using an application to interact with our Services,
+you are agreeing to our Terms, so please read carefully.
+
+
+Highlights:
+~~~~~~~~~~~
+
+ • You are responsible for selecting authentication methods and
+ policies that are adequate to protect your key material.
+ Any losses arising from you not being able to satisfy the
+ selected authentication challenges or third parties being able
+ successfully pass the challenges are your problem.
+ • We will store your encrypted key shares and disclose them upon
+ successful authentication to the best of our ability within the
+ limitations of the law and our implementation. Our liability will
+ be limited to the liability limit exposed in the protocol.
+ • For our Services, we may charge various fees. The specific fee structure
+ is provided based on the Anastasis protocol and should be shown to you when you
+ use an application to interact with our services. You agree and understand
+ that the Anastasis protocol allows for the fee structure to change.
+ • You agree to not intentionally overwhelm our systems with requests and
+ follow responsible disclosure if you find security issues in our services.
+ • We cannot be held accountable for our Services not being available due to
+ circumstances beyond our control. If we modify or terminate our services,
+ we will announce this and ensure that you can recover your key material
+ for at least one year before we completely terminate the Service.
+
+These terms outline approved uses of our Services. If you have any
+questions or comments related to this Agreement, please send us a
+message to legal@anastasis.lu. If you do not agree to this Agreement,
+you must not use our Services.
+
+
+How you accept this policy
+--------------------------
+
+By using our API (typically via an Anastasis-enabled application), you
+acknowledge that you have read, understood, and agreed to these
+Terms. We reserve the right to change these Terms at any time. If you
+disagree with the change, you must simply stop using our APIs. Your
+continued use of our Services following any such change will signify
+your acceptance to be bound by the then current Terms. Please check
+the effective date above to determine if there have been any changes
+since you have last reviewed these Terms.
+
+Services
+--------
+
+We will store your encrypted key shares (and the associated encrypted
+recovery policy document) to the best of our ability and within the
+limitations of the implementation. We will disclose the key shares only
+after the specific authentication challenge has been passed. We will
+rate-limit the use of the authentication APIs to limit brute-force
+attacks.
+
+We are not guaranteeing that the authentication procedures are effective.
+Other parties may be able to intercept authentication messages, or you
+may not be able to receive these messages anymore. You are responsible
+for choosing safe authentication methods with sufficient security.
+
+When using our Services, you agree to not take any action that
+intentionally imposes an unreasonable load on our infrastructure. If
+you find security problems in our Services, you agree to first report
+them to security@anastasis.lu and grant us the right to publish your
+report. We warrant that we will ourselves publicly disclose any issues
+reported within 1 month, and that we will not prosecute anyone
+reporting security issues if they did not exploit the issue beyond a
+proof-of-concept, and followed the above responsible disclosure
+practice.
+
+
+Fees
+----
+
+You agree to pay the fees for backup and recovery operations ("Fees")
+as defined by us, which we may change from time to time. Your
+Anastasis client should obtain and display applicable fees during
+backup and recovery.
+
+
+Eligibility
+-----------
+
+To be eligible to use our Services, you must be able to form legally binding
+contracts or have the permission of your legal guardian. By using our
+Services, you represent and warrant that you meet all eligibility requirements
+that we outline in these Terms.
+
+
+Copyrights and trademarks
+-------------------------
+
+The Anastasis software is released under the terms of the GNU Affero
+General Public License (GNU AGPLv3+). You have the right to access,
+use, and share the Anastasis application, in modified or unmodified
+form. However, the Affero GPL is a strong copyleft license, which
+means that any derivative works must be distributed under the same
+license terms as the original software. If you have any questions, you
+should review the GNU AGPL’s full terms and conditions at
+https://www.gnu.org/licenses/agpl-3.0.en.html. “Anastasis” itself is
+a trademark of Anastasis SARL. You are welcome to use the name in
+relation to implementations of the Anastasis protocol, assuming your
+use is compatible with an official release from the GNU Project that
+is not older than two years.
+
+
+Limitation of liability & disclaimer of warranties
+--------------------------------------------------
+
+You understand and agree that we have no control over, and no duty to
+take any action regarding: Failures, disruptions, errors, or delays in
+processing that you may experience while using our Services; The risk
+of failure of hardware, software, and Internet connections; The risk
+of malicious software being introduced or found in the software
+underlying the Anastasis implementation. You release us from all
+liability related to any losses, damages, or claims arising from:
+
+(a) user error such as forgotten security answers or loss of
+ control over accounts used for authentication;
+(b) server failure or data loss;
+(d) bugs or other errors in the Anastasis client software; and
+(e) any unauthorized third party activities, including, but not limited to,
+ the use of viruses, phishing, brute forcing, or other means of attack
+ against the Anastasis client. We make no representations concerning any
+ Third Party Content contained in or accessed through our Services.
+
+Any other terms, conditions, warranties, or representations associated with
+such content, are solely between you and such organizations and/or
+individuals.
+
+To the fullest extent permitted by applicable law, in no event will we
+or any of our officers, directors, representatives, agents, servants,
+counsel, employees, consultants, lawyers, and other personnel
+authorized to act, acting, or purporting to act on our behalf
+(collectively the “Anastasis Parties”) be liable to you under
+contract, tort, strict liability, negligence, or any other legal or
+equitable theory, for:
+
+(a) any lost profits, data loss, cost of procurement of substitute goods or
+ services, or direct, indirect, incidental, special, punitive, compensatory,
+ or consequential damages of any kind whatsoever resulting from:
+
+ (i) your use of, or conduct in connection with, our services;
+ (ii) any unauthorized use of your wallet and/or private key due to your
+ failure to maintain the confidentiality of your wallet;
+ (iii) any interruption or cessation of transmission to or from the services; or
+ (iv) any bugs, viruses, trojan horses, or the like that are found in the Taler
+ Wallet software or that may be transmitted to or through our services by
+ any third party (regardless of the source of origination), or
+
+(b) any direct damages.
+
+These limitations apply regardless of legal theory, whether based on tort,
+strict liability, breach of contract, breach of warranty, or any other legal
+theory, and whether or not we were advised of the possibility of such
+damages. Some jurisdictions do not allow the exclusion or limitation of
+liability for consequential or incidental damages, so the above limitation may
+not apply to you.
+
+Our services are provided "as is" and without warranty of any kind. To the
+maximum extent permitted by law, we disclaim all representations and
+warranties, express or implied, relating to the services and underlying
+software or any content on the services, whether provided or owned by us or by
+any third party, including without limitation, warranties of merchantability,
+fitness for a particular purpose, title, non-infringement, freedom from
+computer virus, and any implied warranties arising from course of dealing,
+course of performance, or usage in trade, all of which are expressly
+disclaimed. In addition, we do not represent or warrant that the content
+accessible via the services is accurate, complete, available, current, free of
+viruses or other harmful components, or that the results of using the services
+will meet your requirements. Some states do not allow the disclaimer of
+implied warranties, so the foregoing disclaimers may not apply to you. This
+paragraph gives you specific legal rights and you may also have other legal
+rights that vary from state to state.
+
+Indemnity and Time limitation on claims and Termination
+-------------------------------------------------------
+
+To the extent permitted by applicable law, you agree to defend,
+indemnify, and hold harmless the Anastasis Parties from and against
+any and all claims, damages, obligations, losses, liabilities, costs
+or debt, and expenses (including, but not limited to, attorney’s fees)
+arising from: (a) your use of and access to the Services; (b) any
+feedback or submissions you provide to us concerning the Anastasis
+software; (c) your violation of any term of this Agreement; or (d)
+your violation of any law, rule, or regulation, or the rights of any
+third party.
+
+You agree that any claim you may have arising out of or related to your
+relationship with us must be filed within one year after such claim arises,
+otherwise, your claim in permanently barred.
+
+In the event of termination concerning your use of our Services, your
+obligations under this Agreement will still continue.
+
+
+Discontinuance of services and Force majeure
+--------------------------------------------
+
+We shall not be held liable for any delays, failure in performance, or
+interruptions of service which result directly or indirectly from any cause or
+condition beyond our reasonable control, including but not limited to: any
+delay or failure due to any act of God, act of civil or military authorities,
+act of terrorism, civil disturbance, war, strike or other labor dispute, fire,
+interruption in telecommunications or Internet services or network provider
+services, failure of equipment and/or software, other catastrophe, or any
+other occurrence which is beyond our reasonable control and shall not affect
+the validity and enforceability of any remaining provisions.
+
+
+Governing law, Waivers, Severability and Assignment
+---------------------------------------------------
+
+No matter where you’re located, the laws of Luxembourg will govern these
+Terms. If any provisions of these Terms are inconsistent with any applicable
+law, those provisions will be superseded or modified only to the extent such
+provisions are inconsistent. The parties agree to submit to the ordinary
+courts in Luxembourg for exclusive jurisdiction of any dispute
+arising out of or related to your use of the Services or your breach of these
+Terms.
+
+Our failure to exercise or delay in exercising any right, power, or privilege
+under this Agreement shall not operate as a waiver; nor shall any single or
+partial exercise of any right, power, or privilege preclude any other or
+further exercise thereof.
+
+You agree that we may assign any of our rights and/or transfer, sub-contract,
+or delegate any of our obligations under these Terms.
+
+If it turns out that any part of this Agreement is invalid, void, or for any
+reason unenforceable, that term will be deemed severable and limited or
+eliminated to the minimum extent necessary.
+
+This Agreement sets forth the entire understanding and agreement as to the
+subject matter hereof and supersedes any and all prior discussions,
+agreements, and understandings of any kind (including, without limitation, any
+prior versions of this Agreement) and every nature between us. Except as
+provided for above, any modification to this Agreement must be in writing and
+must be signed by both parties.
+
+
+Questions or comments
+---------------------
+
+We welcome comments, questions, concerns, or suggestions. Please send us a
+message on our contact page at legal@anastasis.lu.
diff --git a/contrib/update-pp.sh b/contrib/update-pp.sh
new file mode 100755
index 0000000..db31ba1
--- /dev/null
+++ b/contrib/update-pp.sh
@@ -0,0 +1,28 @@
+#!/bin/sh
+# This file is in the public domain
+
+# Should be called with the list of languages to generate, i.e.
+# $ ./update-pp.sh en de fr it
+
+# Error checking on
+set -eu
+echo "Generating PP for ETag $VERSION"
+
+rm -f sphinx.log sphinx.err
+# We process inputs using Makefile in tos/ directory
+cd pp
+for l in $@
+do
+ mkdir -p $l
+ echo Generating PP for language $l
+ # 'f' is for the supported formats, note that the 'make' target
+ # MUST match the file extension.
+ for f in html txt pdf epub xml
+ do
+ rm -rf _build
+ echo " Generating format $f"
+ make -e SPHINXOPTS="-D language='$l'" $f >>sphinx.log 2>>sphinx.err < /dev/null
+ mv _build/$f/pp.$f $l/${VERSION}.$f
+ done
+done
+cd ..
diff --git a/contrib/update-tos.sh b/contrib/update-tos.sh
new file mode 100755
index 0000000..47d3af7
--- /dev/null
+++ b/contrib/update-tos.sh
@@ -0,0 +1,28 @@
+#!/bin/sh
+# This file is in the public domain
+
+# Should be called with the list of languages to generate, i.e.
+# $ ./update-tos.sh en de fr it
+
+# Error checking on
+set -eu
+echo "Generating TOS for ETag $VERSION"
+
+rm -f sphinx.log sphinx.err
+# We process inputs using Makefile in tos/ directory
+cd tos
+for l in $@
+do
+ mkdir -p $l
+ echo Generating TOS for language $l
+ # 'f' is for the supported formats, note that the 'make' target
+ # MUST match the file extension.
+ for f in html txt pdf epub xml
+ do
+ rm -rf _build
+ echo " Generating format $f"
+ make -e SPHINXOPTS="-D language='$l'" $f >>sphinx.log 2>>sphinx.err < /dev/null
+ mv _build/$f/tos.$f $l/${VERSION}.$f
+ done
+done
+cd ..
diff --git a/debian/anastasis-httpd.install b/debian/anastasis-httpd.install
index b0f9700..652caa0 100644
--- a/debian/anastasis-httpd.install
+++ b/debian/anastasis-httpd.install
@@ -2,8 +2,10 @@ usr/bin/
usr/lib/*/anastasis/
usr/lib/*/libanastasisauthorization.*
usr/lib/*/libanastasisdb.*
+usr/lib/*/libanastasiseufin.so.*
usr/share/man/man5/*
usr/share/man/man1/anastasis-httpd.1
+usr/share/man/man1/anastasis-helper-authorization-iban.1
usr/share/man/man1/anastasis-config.1
usr/share/anastasis/*
usr/share/anastasis/sql/*
diff --git a/debian/changelog b/debian/changelog
index e97b20d..80c06a1 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+anastasis (0.1.0-4) unstable; urgency=low
+
+ * Fix plugin packaging (upstream fix).
+
+ -- Christian Grothoff <grothoff@gnu.org> Tue, 07 Sep 2021 19:08:18 +0200
+
anastasis (0.1.0-3) unstable; urgency=low
* Properly package required resource files.
diff --git a/debian/control b/debian/control
index c01780c..5097893 100644
--- a/debian/control
+++ b/debian/control
@@ -43,6 +43,7 @@ Pre-Depends:
${misc:Pre-Depends}
Depends:
libtalerexchange (>= 0.8.4),
+ libgnutls30 (>= 3.7.1),
adduser,
lsb-base,
netbase,
diff --git a/debian/rules b/debian/rules
index 2fe26d4..0307145 100755
--- a/debian/rules
+++ b/debian/rules
@@ -37,6 +37,6 @@ override_dh_install:
# Remove files already present in libanastasis-dev/cli from anastasis-httpd/libanastasis packages
cd debian/libanastasis; find . -type f,l -exec rm -f ../anastasis-httpd/{} \;
cd debian/libanastasis; find . -type f,l -exec rm -f ../libanastasis-dev/{} \;
- cd debian/libanastasis-dev; find . -type f,l -exec rm -f ../anastasis-httpd/{} \;
+ cd debian/anastasis-httpd; find . -type f,l -exec rm -f ../libanastasis-dev/{} \;
cd debian/anastasis-cli; find . -type f -exec rm -f ../anastasis-httpd/{} \;
cd debian/libanastasis-dev; find . -type f,l -exec rm -f ../libanastasis/{} \;
diff --git a/src/backend/anastasis.conf b/src/backend/anastasis.conf
index 7b2475a..8d2f0f6 100644
--- a/src/backend/anastasis.conf
+++ b/src/backend/anastasis.conf
@@ -52,6 +52,20 @@ FULFILLMENT_URL = taler://fulfillment-success
# SERVER_SALT = gUfO1KGOKYIFlFQg
+# Directory with our terms of service.
+TERMS_DIR = $DATADIR/tos/
+
+# Etag / filename for the terms of service.
+TERMS_ETAG = 0
+
+
+# Directory with our privacy policy.
+PRIVACY_DIR = $DATADIR/pp/
+
+# Etag / filename for the privacy policy.
+PRIVACY_ETAG = 0
+
+
[anastasis-merchant-backend]
# Base URL of our payment backend
# PAYMENT_BACKEND_URL = http://localhost:9976/