Update Privacy Policy a bit
Remove the references to Auth0 unless you switched back to using it; and remove the references to Vercel and mention Linode instead.
This commit is contained in:
parent
4c343aee3e
commit
d058f46906
2 changed files with 50 additions and 42 deletions
|
|
@ -29,7 +29,7 @@ function GlobalFooter() {
|
||||||
Terms of Use
|
Terms of Use
|
||||||
</ChakraLink>
|
</ChakraLink>
|
||||||
<Link href="/privacy" passHref>
|
<Link href="/privacy" passHref>
|
||||||
<ChakraLink>Privacy Policy</ChakraLink>
|
<ChakraLink>Privacy Policy (09/2022)</ChakraLink>
|
||||||
</Link>
|
</Link>
|
||||||
<ChakraLink href={classicDTIUrl}>Classic DTI</ChakraLink>
|
<ChakraLink href={classicDTIUrl}>Classic DTI</ChakraLink>
|
||||||
</HStack>
|
</HStack>
|
||||||
|
|
|
||||||
|
|
@ -3,8 +3,11 @@ import { css } from "@emotion/react";
|
||||||
import { VStack } from "@chakra-ui/react";
|
import { VStack } from "@chakra-ui/react";
|
||||||
|
|
||||||
import { Heading1, Heading2, Heading3 } from "./util";
|
import { Heading1, Heading2, Heading3 } from "./util";
|
||||||
|
import { useAuthModeFeatureFlag } from "./components/useCurrentUser";
|
||||||
|
|
||||||
function PrivacyPolicyPage() {
|
function PrivacyPolicyPage() {
|
||||||
|
const [authMode] = useAuthModeFeatureFlag();
|
||||||
|
|
||||||
return (
|
return (
|
||||||
<>
|
<>
|
||||||
<Heading1 marginBottom="4">Our privacy policy</Heading1>
|
<Heading1 marginBottom="4">Our privacy policy</Heading1>
|
||||||
|
|
@ -38,19 +41,20 @@ function PrivacyPolicyPage() {
|
||||||
your creations with others.
|
your creations with others.
|
||||||
</p>
|
</p>
|
||||||
</section>
|
</section>
|
||||||
|
{authMode === "auth0" && (
|
||||||
<section>
|
<section>
|
||||||
<Heading2>Account management</Heading2>
|
<Heading2>Account management</Heading2>
|
||||||
<p>
|
<p>
|
||||||
While our <a href="https://impress.openneo.net/">classic app</a>{" "}
|
While our <a href="https://impress.openneo.net/">classic app</a>{" "}
|
||||||
uses its own authentication, the app you're using now uses a service
|
uses its own authentication, the app you're using now uses a
|
||||||
called <a href="https://auth0.com/">Auth0</a> to manage account
|
service called <a href="https://auth0.com/">Auth0</a> to manage
|
||||||
creation and login.
|
account creation and login.
|
||||||
</p>
|
</p>
|
||||||
<p>
|
<p>
|
||||||
We made this decision because authentication is difficult to write
|
We made this decision because authentication is difficult to write
|
||||||
and maintain securely. We felt that Auth0 was the smoothest and most
|
and maintain securely. We felt that Auth0 was the smoothest and
|
||||||
secure experience we could offer, especially as a small team of
|
most secure experience we could offer, especially as a small team
|
||||||
volunteers{" "}
|
of volunteers{" "}
|
||||||
<span role="img" aria-label="Sweat smile emoji">
|
<span role="img" aria-label="Sweat smile emoji">
|
||||||
😅
|
😅
|
||||||
</span>
|
</span>
|
||||||
|
|
@ -60,21 +64,23 @@ function PrivacyPolicyPage() {
|
||||||
Auth0's terms of service
|
Auth0's terms of service
|
||||||
</a>{" "}
|
</a>{" "}
|
||||||
commit to treating your user data as confidential information, not
|
commit to treating your user data as confidential information, not
|
||||||
to be shared with anyone else, and only to be used as part of Dress
|
to be shared with anyone else, and only to be used as part of
|
||||||
to Impress. (The details are in Sections 6 and 7!)
|
Dress to Impress. (The details are in Sections 6 and 7!)
|
||||||
</p>
|
</p>
|
||||||
<p>
|
<p>
|
||||||
When signing up, Auth0 will ask for a username, password, and email
|
When signing up, Auth0 will ask for a username, password, and
|
||||||
address. They store your password as a <em>hash</em> (which,
|
email address. They store your password as a <em>hash</em> (which,
|
||||||
colloquially, is like a one-way encryption), rather than as the
|
colloquially, is like a one-way encryption), rather than as the
|
||||||
plain password itself.
|
plain password itself.
|
||||||
</p>
|
</p>
|
||||||
<p>
|
<p>
|
||||||
Some user accounts were created before we moved to Auth0. For those
|
Some user accounts were created before we moved to Auth0. For
|
||||||
users, we imported their accounts from our custom database into
|
those users, we imported their accounts from our custom database
|
||||||
Auth0. This included username, password hash, and email address.
|
into Auth0. This included username, password hash, and email
|
||||||
|
address.
|
||||||
</p>
|
</p>
|
||||||
</section>
|
</section>
|
||||||
|
)}
|
||||||
<section>
|
<section>
|
||||||
<Heading2>Analytics and logging</Heading2>
|
<Heading2>Analytics and logging</Heading2>
|
||||||
<p>
|
<p>
|
||||||
|
|
@ -105,10 +111,12 @@ function PrivacyPolicyPage() {
|
||||||
</a>
|
</a>
|
||||||
</p>
|
</p>
|
||||||
<p>
|
<p>
|
||||||
We also use <a href="https://vercel.com/">Vercel</a> and{" "}
|
We also use <a href="https://www.linode.com/">Linode</a> and{" "}
|
||||||
<a href="https://www.fastly.com/">Fastly</a> for web hosting. They
|
<a href="https://www.fastly.com/">Fastly</a> for web hosting. Linode
|
||||||
store aggregate usage logs for us, but not any
|
stores our database, and handles most web traffic dealing with
|
||||||
personally-identifying data.
|
personal data. Personal data also travels through Fastly's servers
|
||||||
|
temporarily, but they only store aggregate usage logs for us, not
|
||||||
|
any personally-identifying data.
|
||||||
</p>
|
</p>
|
||||||
</section>
|
</section>
|
||||||
<section>
|
<section>
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue