Added privacy notice.

This commit is contained in:
Zdenek Borovec 2024-05-05 00:13:28 +02:00
parent 068b17f48e
commit ea0e1a6276
3 changed files with 108 additions and 2 deletions

View file

@ -34,6 +34,10 @@ h1, h2, h3, h4, h5, h6 {
font-family: sans-serif; font-family: sans-serif;
} }
h3, h4, h5, h6 {
margin-bottom: 8px;
}
hr { hr {
display: block; display: block;
margin-top: 0.5em; margin-top: 0.5em;
@ -72,6 +76,10 @@ code {
white-space: pre; white-space: pre;
} }
ul {
margin: 0px;
}
#header { #header {
border-bottom: double; border-bottom: double;
} }
@ -86,7 +94,6 @@ code {
background-image: url("http://assets.zdenekborovec-dev.cz/common/planks_dark_tile.png"); background-image: url("http://assets.zdenekborovec-dev.cz/common/planks_dark_tile.png");
background-repeat: repeat; background-repeat: repeat;
padding: 0; padding: 0;
margin: 0;
text-align: center; text-align: center;
display: flex; display: flex;
list-style-type: none; list-style-type: none;

View file

@ -1,6 +1,6 @@
<div id="footer"> <div id="footer">
<p> <p>
This site does not use cookies. I try to know and store as little information about you as possible. If you have any privacy and/or security concerns, feel free to e-mail me at &lt;zdenda&nbsp;[DOT]&nbsp;borovec&nbsp;[AT]&nbsp;gmail&nbsp;[DOT]&nbsp;com&gt; Although I try to know and store as little information about you as possible, I do sometimes store some, you can click <a href="http://www.zdenekborovec-dev.cz/privacy">here</a> to learn more. If you have any privacy and/or security concerns, feel free to e-mail me at &lt;zdenda&nbsp;[DOT]&nbsp;borovec&nbsp;[AT]&nbsp;gmail&nbsp;[DOT]&nbsp;com&gt;
</p> </p>
<p> <p>
If you want to audit the site and/or edit and use it for your own purposes, most of the source code should be available on my <a href="https://www.github.com/Zeftax/personal-homepage">github</a> under the <a href="https://unlicense.org/">unlicense license</a>. If you want to audit the site and/or edit and use it for your own purposes, most of the source code should be available on my <a href="https://www.github.com/Zeftax/personal-homepage">github</a> under the <a href="https://unlicense.org/">unlicense license</a>.

99
docs/www/privacy.php Normal file
View file

@ -0,0 +1,99 @@
<?php
$COMMONS = $_SERVER['DOCUMENT_ROOT'] . "/../common";
include_once($COMMONS."/header.php");
display_header("About");
?>
<article>
<h2> Privacy policy </h2>
My general approach to your privacy is to know as little as possible,
but I still do have access to some information, here is a quick overview.
If you have any questions about any details, feel free to checkout the
source repo or shoot me an email, both are linked in the footer.
<h3 id="Logs"> Logs </h3>
This is at the very top because it affects <b>every visitor</b>.
I do currently have default apache access logging turned on, so every
time you request a page I log it in the Common Log Format,
you can learn more about it
<a href="https://httpd.apache.org/docs/current/logs.html#common">here</a>.
But to sum up the information you are most likely to be interested in:
I know <b>which IP</b> address requested <b>what page</b> at <b>what time</b>.
<h3 id="Cookies"> Cookies </h3>
I do not save any cookies by default, but some actions on this
site might set the PHPSESSID cookie. You may learn more about when,
why and what it stores below.
<h4 style="margin-bottom: 8px;"> PHPSESSID </h4>
<ul>
<li>
<b> When? </b>
This cookie gets set when you log into your account.
</li>
<li>
<b> Why? </b>
I need to store the information about the logged in user somewhere,
I do that on the server in a so-called session (which is basically a
storage of data that is unique for each visitor). And for the server to
know which session belongs to which user it gives those users which
do have an active session a unique ID that can be used to connect you
to your data. This can be obviously used to track you across the site,
so I only set it when absolutely neccesary.
</li>
<li>
<b> What? </b>
The session only contains the User class for the currently
logged-in user. It has the following properties:
<ul>
<li> user_id </li>
<li> user_name </li>
<li> email </li>
<li> permissions </li>
</ul>
You can learn more about what they mean in the
<a href="#Database">Database</a> section.
</li>
</ul>
<h3 id="Database"> Database </h3>
If you want to see the details, feel free to have a look at the sql file
in the source code repo (linked in footer). But here I shall provide a
quick overview of all the data I store about every registered user:
<ul>
<li>
<b>user_id</b>
Unique id of the user, it is used as a
<a href="https://en.wikipedia.org/wiki/Primary_key">primary key
</a> for the table.
</li>
<li>
<b>username</b>
This is the username the user chose at registration.
</li>
<li>
<b>email</b>
This is the e-mail address the user provided at registration.
</li>
<li>
<b>password</b>
This is the string representation of your passw- I'm just kidding,
it is the hash of your password as produced by the php password_hash()
function, I use the default algorithm, which is currently CRYPT_BLOWFISH.
</li>
<li>
<b>created_at</b>
This is the timestamp at creation of the account.
</li>
<li>
<b>permissions</b>
I use this to decide what user can do what, currently it is only
used to allow me to post blogs.
</li>
</ul>
<p>
And that should be all! I will try to update this page as needed, but
if something seems off to you <b>do shoot me an e-mail!</b>
</p>
</article>
<?php
include_once($COMMONS."/footer.php");
?>