diff --git a/templates/main/rules.html.ep b/templates/main/rules.html.ep index 9ebb70f..fae2cd8 100644 --- a/templates/main/rules.html.ep +++ b/templates/main/rules.html.ep @@ -116,15 +116,26 @@ data in any commercial capacity, and only stores data necessary for service operation or security and auditing.
++ Much of the data is stored unencrypted due to the nature of + the services provided. Remember that while there are access + controls, the best way to safeguard your data is to encrypt + it yourself. +
If you are concerned or believe that there is something missing here, please reach out via email or XMPP.
+ +- The following data is made accessible to the world. + The following data is publicly accessible by anyone with an + internet connection.
-Privacy settings can be configured with supported XMPP clients.
Filters are not applied to outgoing mail. The following may be included in the e-mail headers: @@ -165,7 +176,7 @@
Akkoma has built-in privacy settings.
Due to the nature of IPFS, uploaded data can be accessed by - anyone with the CID.
++ Due to the nature of IPFS, uploaded data can be accessed by + anyone with the CID. +
-Nextcloud has built in privacy settings.
Files located under ~/public are accessible to the world, as determined by their UNIX permissions.
-- The following information is stored by the services, and - accessible by users on UNIX.dog. -
-+ The following data can be accessed by people with a + registered UNIX.dog account. +
+ +- The following information is stored by the services, and - accessible to administrators. -
-- The HTTP server stores access logs, including source IP and - headers. + The following data is stored on the server, and is thus + accessible by administrators.
-- The LDAP server stores no logs. It does store the data - mentioned in previous sections. -
+- The Akkoma server stores only error logs. Any data uploaded - to the Akkoma server (including post and DM content) - is accessible by administrators. Please - keep in mind that ActivityPub is not a secure protocol, and - should not be used for sensitive communications. -
+If you use OMEMO encryption, message content is encrypted.
++ ActivityPub is not a secure protocol, and + should not be used for sensitive communications. Post + content can be deleted if needed, but posts could still + exist on other servers because of the nature of federation. +
++ If you use OMEMO encryption, message content is encrypted. + XMPP is also a federated protocol, so your data may be exposed + and stored on the server of the contacts you communicate with. +
The legacy service XMPP bridges are hosted on a seperate - server, not woofer.
++ The legacy service XMPP bridges are hosted on a seperate + server, not woofer. +
E-Mail is an unencrypted protocol. Consider using PGP or other encryption if you require secure communications. @@ -291,11 +333,11 @@