From d058f46906e312556ad359acfda87ffafb153623 Mon Sep 17 00:00:00 2001 From: Matchu Date: Thu, 15 Sep 2022 05:05:13 -0700 Subject: [PATCH] Update Privacy Policy a bit Remove the references to Auth0 unless you switched back to using it; and remove the references to Vercel and mention Linode instead. --- src/app/GlobalFooter.js | 2 +- src/app/PrivacyPolicyPage.js | 90 ++++++++++++++++++++---------------- 2 files changed, 50 insertions(+), 42 deletions(-) diff --git a/src/app/GlobalFooter.js b/src/app/GlobalFooter.js index e9ae882..d947c89 100644 --- a/src/app/GlobalFooter.js +++ b/src/app/GlobalFooter.js @@ -29,7 +29,7 @@ function GlobalFooter() { Terms of Use - Privacy Policy + Privacy Policy (09/2022) Classic DTI diff --git a/src/app/PrivacyPolicyPage.js b/src/app/PrivacyPolicyPage.js index 121bc73..4d536c0 100644 --- a/src/app/PrivacyPolicyPage.js +++ b/src/app/PrivacyPolicyPage.js @@ -3,8 +3,11 @@ import { css } from "@emotion/react"; import { VStack } from "@chakra-ui/react"; import { Heading1, Heading2, Heading3 } from "./util"; +import { useAuthModeFeatureFlag } from "./components/useCurrentUser"; function PrivacyPolicyPage() { + const [authMode] = useAuthModeFeatureFlag(); + return ( <> Our privacy policy @@ -38,43 +41,46 @@ function PrivacyPolicyPage() { your creations with others.

-
- Account management -

- While our classic app{" "} - uses its own authentication, the app you're using now uses a service - called Auth0 to manage account - creation and login. -

-

- We made this decision because authentication is difficult to write - and maintain securely. We felt that Auth0 was the smoothest and most - secure experience we could offer, especially as a small team of - volunteers{" "} - - 😅 - -

-

- - Auth0's terms of service - {" "} - commit to treating your user data as confidential information, not - to be shared with anyone else, and only to be used as part of Dress - to Impress. (The details are in Sections 6 and 7!) -

-

- When signing up, Auth0 will ask for a username, password, and email - address. They store your password as a hash (which, - colloquially, is like a one-way encryption), rather than as the - plain password itself. -

-

- Some user accounts were created before we moved to Auth0. For those - users, we imported their accounts from our custom database into - Auth0. This included username, password hash, and email address. -

-
+ {authMode === "auth0" && ( +
+ Account management +

+ While our classic app{" "} + uses its own authentication, the app you're using now uses a + service called Auth0 to manage + account creation and login. +

+

+ We made this decision because authentication is difficult to write + and maintain securely. We felt that Auth0 was the smoothest and + most secure experience we could offer, especially as a small team + of volunteers{" "} + + 😅 + +

+

+ + Auth0's terms of service + {" "} + commit to treating your user data as confidential information, not + to be shared with anyone else, and only to be used as part of + Dress to Impress. (The details are in Sections 6 and 7!) +

+

+ When signing up, Auth0 will ask for a username, password, and + email address. They store your password as a hash (which, + colloquially, is like a one-way encryption), rather than as the + plain password itself. +

+

+ Some user accounts were created before we moved to Auth0. For + those users, we imported their accounts from our custom database + into Auth0. This included username, password hash, and email + address. +

+
+ )}
Analytics and logging

@@ -105,10 +111,12 @@ function PrivacyPolicyPage() {

- We also use Vercel and{" "} - Fastly for web hosting. They - store aggregate usage logs for us, but not any - personally-identifying data. + We also use Linode and{" "} + Fastly for web hosting. Linode + stores our database, and handles most web traffic dealing with + personal data. Personal data also travels through Fastly's servers + temporarily, but they only store aggregate usage logs for us, not + any personally-identifying data.