0.xml (17903B)
1 <?xml version="1.0" encoding="utf-8"?> 2 <!DOCTYPE document PUBLIC "+//IDN docutils.sourceforge.net//DTD Docutils Generic//EN//XML" "http://docutils.sourceforge.net/docs/ref/docutils.dtd"> 3 <!-- Generated by Docutils 0.17.1 --> 4 <document source="/home/schanzen/dev/taldir/contrib/pp/pp.rst" xmlns:c="https://www.sphinx-doc.org/" xmlns:changeset="https://www.sphinx-doc.org/" xmlns:citation="https://www.sphinx-doc.org/" xmlns:cpp="https://www.sphinx-doc.org/" xmlns:index="https://www.sphinx-doc.org/" xmlns:js="https://www.sphinx-doc.org/" xmlns:math="https://www.sphinx-doc.org/" xmlns:py="https://www.sphinx-doc.org/" xmlns:rst="https://www.sphinx-doc.org/" xmlns:std="https://www.sphinx-doc.org/" xmlns:todo="https://www.sphinx-doc.org/"> 5 <section ids="privacy-policy" names="privacy\ policy"> 6 <title>Privacy Policy</title> 7 <paragraph>Last Updated: 12.07.2022</paragraph> 8 <paragraph>This Privacy Policy describes the policies and procedures of GNUnet e.V. 9 (“we,” “our,” or “us”) pertaining to the collection, use, and 10 disclosure of your information on our sites and related mobile 11 applications and products we offer (the “Services”). This Privacy 12 Statement applies to your personal data when you use our Services, and 13 does not apply to online websites or services that we do not own or 14 control.</paragraph> 15 <section ids="overview" names="overview"> 16 <title>Overview</title> 17 <paragraph>Your privacy is important to us. We follow a few fundamental 18 principles: We don’t ask you for personally identifiable information 19 (defined below). That being said, your contact information, such as 20 your phone number, social media handle, or email address (depending on 21 how you contact us), may be collected when you communicate with us, 22 for example to report a bug or other error related to TalDir. We 23 don’t share your information with third parties except when strictly 24 required to deliver you our Services and products, or to comply with 25 the law. If you have any questions or concerns about this policy, 26 please reach out to us at <reference refuri="mailto:taldir@gnunet.org">taldir@gnunet.org</reference>.</paragraph> 27 </section> 28 <section ids="how-you-accept-this-policy" names="how\ you\ accept\ this\ policy"> 29 <title>How you accept this policy</title> 30 <paragraph>By using our Services or visiting our sites, you agree to the use, disclosure, 31 and procedures outlined in this Privacy Policy.</paragraph> 32 </section> 33 <section ids="what-personal-information-do-we-collect-from-our-users" names="what\ personal\ information\ do\ we\ collect\ from\ our\ users?"> 34 <title>What personal information do we collect from our users?</title> 35 <paragraph>The information we collect from you falls into two categories: (i) personally 36 identifiable information (i.e., data that could potentially identify you as an 37 individual) (“Personal Information”), and (ii) non-personally identifiable 38 information (i.e., information that cannot be used to identify who you are) 39 (“Non-Personal Information”). This Privacy Policy covers both categories and 40 will tell you how we might collect and use each type.</paragraph> 41 <paragraph>We do our best to not collect any Personal Information from TalDir 42 users. The detailed Personal Information TalDir asks from you 43 during the regular registration process at the beginning is 44 processed to verify that your are actually the holder of a certain account. 45 The information is never stored in plain text and only used to create a 46 cryptographic account identifier which does not allow us to recover any of your 47 details.</paragraph> 48 <paragraph>That being said, when using our Services to register a mapping from your 49 identity to a wallet, we may inherently receive the following information 50 (depending on your choice of authentication method):</paragraph> 51 <block_quote> 52 <bullet_list bullet="*"> 53 <list_item> 54 <paragraph>Your phone number when using SMS authentication. We rely on third party providers (such as your mobile network operator) to deliver the SMS to you. These third parties will see the SMS message sent to you and could thus learn that you are using TalDir. SMS is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your phone number for SMS communication on our systems, except maybe in short-term logs to diagnose errors.</paragraph> 55 </list_item> 56 <list_item> 57 <paragraph>Your e-mail address when using E-mail authentication. We rely on the Internet and your E-mail provider to deliver the E-mail to you. Internet service providers will see the E-mail message sent to you and could thus learn that you are using TalDir. E-mail is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your E-mail address on our systems, except maybe in short-term logs to diagnose errors.</paragraph> 58 </list_item> 59 <list_item> 60 <paragraph>Your twitter handle when using Twitter authentication. We rely on Twitter to deliver a message to you. Twitter will see the message sent to you and could thus learn that you are using TalDir. Twitter is inherently insecure, and you should expect many governments and private parties to be able to observe these messages. However, we do not store your twitter handle on our systems, except maybe in short-term logs to diagnose errors.</paragraph> 61 </list_item> 62 <list_item> 63 <paragraph>When you contact us. We may collect certain information if you choose to contact us, for example to report a bug or other error with the Taler Wallet. This may include contact information such as your name, email address or phone number depending on the method you choose to contact us. We strictly only use the information provided by you in these instances to answer your request or to deliver the services requested by you.</paragraph> 64 </list_item> 65 </bullet_list> 66 </block_quote> 67 </section> 68 <section ids="how-we-collect-and-process-personal-data" names="how\ we\ collect\ and\ process\ personal\ data"> 69 <title>How we collect and process personal data</title> 70 <paragraph>We may process your personal data for the following reasons:</paragraph> 71 <block_quote> 72 <bullet_list bullet="*"> 73 <list_item> 74 <paragraph>to authenticate you during registration</paragraph> 75 </list_item> 76 <list_item> 77 <paragraph>to support you using Taldirs when you contact us</paragraph> 78 </list_item> 79 </bullet_list> 80 </block_quote> 81 </section> 82 <section ids="how-we-share-and-use-the-information-we-gather" names="how\ we\ share\ and\ use\ the\ information\ we\ gather"> 83 <title>How we share and use the information we gather</title> 84 <paragraph>We may share your authentication data with other providers that assist 85 us in performing the authentication. We will try to use providers that 86 to the best of our knowledge respect your privacy and have good 87 privacy practices. We reserve the right to change authentication 88 providers at any time to ensure availability of our services.</paragraph> 89 <paragraph>We primarily use the limited information we receive directly from you to 90 enhance TalDir. Some ways we may use your Personal Information are 91 to: Contact you when necessary to respond to your comments, answer your 92 questions, or obtain additional information on issues related to bugs or 93 errors with the TalDir application that you reported.</paragraph> 94 </section> 95 <section ids="agents-or-third-party-partners" names="agents\ or\ third\ party\ partners"> 96 <title>Agents or third party partners</title> 97 <paragraph>We may provide your Personal Information to our employees, contractors, 98 agents, service providers, and designees (“Agents”) to enable them to perform 99 certain services for us exclusively, including: improvement and maintenance of 100 our software and Services.</paragraph> 101 </section> 102 <section ids="protection-of-us-and-others" names="protection\ of\ us\ and\ others"> 103 <title>Protection of us and others</title> 104 <paragraph>We reserve the right to access, read, preserve, and disclose any information 105 that we reasonably believe is necessary to comply with the law or a court 106 order.</paragraph> 107 </section> 108 <section ids="what-personal-information-can-i-access-or-change" names="what\ personal\ information\ can\ i\ access\ or\ change?"> 109 <title>What personal information can I access or change?</title> 110 <paragraph>You can request access to the information we have collected from 111 you. You can do this by contacting us at <reference refuri="mailto:taldir@gnunet.org">taldir@gnunet.org</reference>. We will 112 make sure to provide you with a copy of the data we process about 113 you. To comply with your request, we may ask you to verify your 114 identity. We will fulfill your request by sending your copy 115 electronically. For any subsequent access request, we may charge you 116 with an administrative fee. If you believe that the information we 117 have collected is incorrect, you are welcome to contact us so we can 118 update it and keep your data accurate. Any data that is no longer 119 needed for purposes specified in the “How We Use the Information We 120 Gather” section will be deleted after ninety (90) days.</paragraph> 121 </section> 122 <section ids="what-are-your-data-protection-rights" names="what\ are\ your\ data\ protection\ rights?"> 123 <title>What are your data protection rights?</title> 124 <paragraph>GNUnet e.V. would like to make sure you are fully aware of all of your 125 data protection rights. Every user is entitled to the following:</paragraph> 126 <definition_list> 127 <definition_list_item> 128 <term><strong>The right to access</strong>: You have the right to request GNUnet e.V. for</term> 129 <definition> 130 <paragraph>copies of your personal data. We may charge you a small fee for this 131 service.</paragraph> 132 </definition> 133 </definition_list_item> 134 </definition_list> 135 <paragraph><strong>The right to rectification</strong>: You have the right to request that 136 GNUnet e.V. correct any information you believe is inaccurate. You also 137 have the right to request GNUnet e.V. to complete information you 138 believe is incomplete. The right to erasure - You have the right to 139 request that GNUnet e.V. erase your personal data, under certain 140 conditions.</paragraph> 141 <definition_list> 142 <definition_list_item> 143 <term><strong>The right to restrict processing</strong>: You have the right to request</term> 144 <definition> 145 <paragraph>that GNUnet e.V. restrict the processing of your personal data, under 146 certain conditions.</paragraph> 147 </definition> 148 </definition_list_item> 149 <definition_list_item> 150 <term><strong>The right to object to processing</strong>: You have the right to object to</term> 151 <definition> 152 <paragraph>GNUnet e.V.’s processing of your personal data, under certain 153 conditions.</paragraph> 154 </definition> 155 </definition_list_item> 156 <definition_list_item> 157 <term><strong>The right to data portability</strong>: You have the right to request that</term> 158 <definition> 159 <paragraph>GNUnet e.V. transfer the data that we have collected to another 160 organization, or directly to you, under certain conditions.</paragraph> 161 </definition> 162 </definition_list_item> 163 </definition_list> 164 <paragraph>If you make a request, we have one month to respond to you. If you 165 would like to exercise any of these rights, please contact us at our 166 email: <reference refuri="mailto:taldir@gnunet.org">taldir@gnunet.org</reference></paragraph> 167 <paragraph>You can always contact your local data protection authority to enforce 168 your rights.</paragraph> 169 </section> 170 <section ids="data-retention" names="data\ retention"> 171 <title>Data retention</title> 172 <paragraph>Information entered into our bug tracker will be retained indefinitely 173 and is typically made public. We will only use it to triage the 174 problem. Beyond that, we do not retain personally identifiable 175 information about our users for longer than one week.</paragraph> 176 </section> 177 <section ids="data-security" names="data\ security"> 178 <title>Data security</title> 179 <paragraph>We are committed to making sure your information is protected. We employ 180 several physical and electronic safeguards to keep your information safe, 181 including encrypted user passwords, two factor verification and authentication 182 on passwords where possible, and securing connections with industry standard 183 transport layer security. You are also welcome to contact us using GnuPG 184 encrypted e-mail. Even with all these precautions, we cannot fully guarantee 185 against the access, disclosure, alteration, or deletion of data through 186 events, including but not limited to hardware or software failure or 187 unauthorized use. Any information that you provide to us is done so entirely 188 at your own risk.</paragraph> 189 </section> 190 <section ids="changes-and-updates-to-privacy-policy" names="changes\ and\ updates\ to\ privacy\ policy"> 191 <title>Changes and updates to privacy policy</title> 192 <paragraph>We reserve the right to update and revise this privacy policy at any time. We 193 occasionally review this Privacy Policy to make sure it complies with 194 applicable laws and conforms to changes in our business. We may need to update 195 this Privacy Policy, and we reserve the right to do so at any time. If we do 196 revise this Privacy Policy, we will update the “Effective Date” at the top 197 of this page so that you can tell if it has changed since your last visit. As 198 we generally do not collect contact information and also do not track your 199 visits, we will not be able to notify you directly. However, TalDir clients 200 may inform you about a change in the privacy policy once they detect that the 201 policy has changed. Please review this Privacy Policy regularly to ensure that 202 you are aware of its terms. Any use of our Services after an amendment to our 203 Privacy Policy constitutes your acceptance to the revised or amended 204 agreement.</paragraph> 205 </section> 206 <section ids="international-users-and-visitors" names="international\ users\ and\ visitors"> 207 <title>International users and visitors</title> 208 <paragraph>Our Services are (currently) hosted in Germany. If you are a user 209 accessing the Services from Switzerland, Asia, US, or any other 210 region with laws or regulations governing personal data collection, 211 use, and disclosure that differ from the laws of Germany, please be 212 advised that through your continued use of the Services, which is 213 governed by the law of the country hosting the service, you are 214 transferring your Personal Information to Germany and you consent to 215 that transfer.</paragraph> 216 </section> 217 <section ids="questions" names="questions"> 218 <title>Questions</title> 219 <paragraph>Please contact us at <reference refuri="mailto:taldir@gnunet.org">taldir@gnunet.org</reference> if you have questions about our 220 privacy practices that are not addressed in this Privacy Statement.</paragraph> 221 </section> 222 </section> 223 </document>