Privacy Policy update
This commit is contained in:
relikd
|
Before Width: | Height: | Size: 696 B After Width: | Height: | Size: 696 B |
114
src/html_root.py
114
src/html_root.py
@@ -27,6 +27,112 @@ def gen_404():
|
||||
<p>Go back to <a href="/">start page</a></p>''', fname='404.html')
|
||||
|
||||
|
||||
def gen_privacy():
|
||||
HTML.write(mylib.path_out(), '''
|
||||
<h2>Datenschutzerklärung (Webseite)</h2>
|
||||
<p>Auf dieser Webseite werden keine personenbezogenen Daten erhoben.</p>
|
||||
<p class="squeeze">
|
||||
Einige Daten werden jedoch technisch bedingt automatisch erfasst.
|
||||
Diese Daten werden von Ihrem Browser automatisch gesendet und beinhalten Browsertyp und -version, die Referrer-URL, Ihre IP-Adresse sowie Datum und Uhrzeit der Anfrage.
|
||||
Diese Daten werden explizit weder ausgewertet noch gespeichert.
|
||||
</p>
|
||||
<p>Bei offenen Fragen wenden Sie sich bitte an <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>.</p>
|
||||
|
||||
<h2>Privacy Policy (Website)</h2>
|
||||
<p>This website does not collect any personally identifiable information.</p>
|
||||
<p class="squeeze">
|
||||
Some data is collected automatically by our IT systems when you visit the website.
|
||||
This technical data is sent automatically by your browser and includes the browser type and version, a referrer URL, your IP address, and date and time when you accessed the page.
|
||||
This data is explicitly neither evaluated nor stored.
|
||||
</p>
|
||||
<p>If you have further questions write an email to <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>.</p>
|
||||
''', fname='privacy.html')
|
||||
|
||||
|
||||
def gen_appprivacy():
|
||||
HTML.write(mylib.path_out(), '''
|
||||
<h2>Datenschutzerklärung (App)</h2>
|
||||
<p>Die appchk app verarbeitet potentiell personenbeziehbare Daten.</p>
|
||||
<p class="squeeze">
|
||||
Im Nachfolgenden werden diese Daten gelistet, die von der App erhoben und verarbeitet werden.
|
||||
Dies beinhaltet die Domainnamen der angesurften Webseiten bzw. von anderen Apps kontaktierte Domains, sowie das Datum und die Uhrzeit der Anfrage.
|
||||
Sofern ein App-Recording gestartet wird, wird außerdem die aktuelle Version des iOS Betriebssystems gespeichert.
|
||||
Andere als die genannten Daten werden nicht erhoben.
|
||||
Weiterhin werden diese Daten nur erhoben, solange der (lokale) VPN-Service aktiv ist.
|
||||
Wenn dieser Service inaktiv ist, werden keine Daten erhoben.
|
||||
</p>
|
||||
<p class="squeeze">
|
||||
Im Gegensatz zu einem konventionellen VPN Provider, verbindet sich dieser VPN-Service <strong>nicht</strong> zu einem anderen Server.
|
||||
Alle Daten werden ausschließlich auf dem eigenen Endgerät erfassten und gespeichert.
|
||||
Das heißt, diese Daten verlassen das eigene Gerät nicht und können demnach auch nicht von uns ausgewertet werden.
|
||||
</p>
|
||||
<p class="squeeze">
|
||||
Diese Daten werden nur an unsere Server (appchk.de) übermittelt, sofern der Nutzer / die Nutzerin der Übermittlung explizit zustimmt.
|
||||
Nutzer:innen haben weiterhin die Möglichkeit die erfassten Daten vor dem Upload zu filtern.
|
||||
Beim Übermitteln der Daten erhält der Server einen Zeitstempel der Anfrage.
|
||||
Andere Attribute wie Browsertyp, IP-Adresse, etc. werden, wie bei der Webseite, nicht ausgewertet oder gespeichert.
|
||||
</p>
|
||||
<p>Bei offenen Fragen wenden Sie sich bitte an <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>.</p>
|
||||
|
||||
<h2>Privacy Policy (App)</h2>
|
||||
<p>The appchk app collects potentially personally identifiable information.</p>
|
||||
<p class="squeeze">
|
||||
The following section contains a list of the collected and processed data.
|
||||
This data includes the domain names of websites the user or another app contacted, as well as the date and time of the query.
|
||||
If the user starts an app-recording, the app will also store the current iOS version.
|
||||
Other than the listed data is not collected.
|
||||
Further, this data is only collected as long as the (local) VPN-service is active.
|
||||
As soon as this service is deactivated, no more data is collected.
|
||||
</p>
|
||||
<p class="squeeze">
|
||||
Contrary to conventional VPN providers, this VPN-service does <strong>not</strong> connect to another server.
|
||||
All collected data is processed and stored solely on the users end-device.
|
||||
This means that this data never leaves a user’s device and can therefore not be evaluated by us.
|
||||
</p>
|
||||
<p class="squeeze">
|
||||
This data is transmitted to our servers (appchk.de) only in the case if the user explicitly chooses to submit the data.
|
||||
Furthermore, users have the option to filter the data prior to upload.
|
||||
If the data is submitted, the server will also receive a timestamp of the upload.
|
||||
Other attributes like browser type, IP-address, etc. are, similarly to the website, not evaluated nor stored, similar.
|
||||
</p>
|
||||
<p>If you have further questions write an email to <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>.</p>
|
||||
''', fname='app-privacy.html')
|
||||
|
||||
|
||||
def gen_imprint():
|
||||
HTML.write(mylib.path_out(), '''
|
||||
<h2>Imprint / Impressum</h2>
|
||||
<p>
|
||||
<strong>Lehrstuhl für Privatsphäre und Sicherheit in Informationssystemen (PSI)</strong><br>
|
||||
Otto-Friedrich Universität Bamberg<br>
|
||||
Kapuzinerstr. 16<br>
|
||||
96047 Bamberg<br>
|
||||
Germany
|
||||
</p>
|
||||
<p>Tel.: +49 951 863-2661</p>
|
||||
|
||||
<h3>Inhaltliche Verantwortlichkeit i.S.v. § 5 TMG und § 55 Abs. 2 RStV</h3>
|
||||
<p>Für die Richtigkeit und Aktualität der Inhalte sind die jeweiligen Erstellerinnen und Ersteller der einzelnen Seiten verantwortlich.</p>
|
||||
<p>
|
||||
Otto-Friedrich Universität Bamberg<br>
|
||||
Lehrstuhl für Privatsphäre und Sicherheit in Informationssystemen (PSI)<br>
|
||||
Prof. Dr. Dominik Herrmann<br>
|
||||
An der Weberei 5<br>
|
||||
96047 Bamberg<br>
|
||||
Deutschland<br>
|
||||
Tel.: +49 951 863-2661<br>
|
||||
E-Mail: <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>
|
||||
</p>
|
||||
|
||||
<h3>Technische Verantwortlichkeit</h3>
|
||||
<p>
|
||||
<strong>Webmaster/in:</strong><br>
|
||||
Prof. Dr. Dominik Herrmann<br>
|
||||
Tel.: +49 951 863-2661<br>
|
||||
E-Mail: <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>
|
||||
</p>''', fname='imprint.html')
|
||||
|
||||
|
||||
def gen_help():
|
||||
many = 7
|
||||
txt = '''<h2>Help needed!</h2>
|
||||
@@ -41,7 +147,7 @@ def gen_help():
|
||||
In the second stage we repeat the process after the launch of iOS 14.
|
||||
</p><p>
|
||||
You can help us by providing app recordings of the following applications.
|
||||
Make sure to update to the lastest AppCheck version (v.34) which includes a check for the iOS version.
|
||||
Make sure to update to the lastest appchk version (v.34) which includes a check for the iOS version.
|
||||
Get the <a href="https://testflight.apple.com/join/9jjaFeHO" target="_blank">Testflight beta</a>.
|
||||
</p>
|
||||
</div>
|
||||
@@ -112,6 +218,12 @@ def process(app_count, dom_count, inclStatic=False):
|
||||
gen_redirect() # root redirect.html?id=my.bundle.id
|
||||
print(' 404.html')
|
||||
gen_404()
|
||||
print(' imprint.html')
|
||||
gen_imprint()
|
||||
print(' privacy.html')
|
||||
gen_privacy()
|
||||
print(' app-privacy.html')
|
||||
gen_appprivacy()
|
||||
# print(' /help/') # dynamic content
|
||||
# gen_help()
|
||||
print(' /results/') # dynamic content
|
||||
|
||||
6
templates/base.html
Normal file → Executable file
6
templates/base.html
Normal file → Executable file
@@ -24,7 +24,7 @@
|
||||
<li><a href="/index/apps/">Apps</a></li>
|
||||
<li><a href="/category/">Categories</a></li>
|
||||
<li><a href="/results/">Results</a></li>
|
||||
<li><a class="no-ul" href="https://github.com/relikd/appcheck" target="_blank"><img src="/static/github.svg" alt="GitHub"></a></li>
|
||||
<li><a class="no-ul" href="https://github.com/ubapsi/appchk" target="_blank"><img src="/static/github.svg" alt="GitHub"></a></li>
|
||||
</ul>
|
||||
</nav>
|
||||
<h1><a class="no-ul" href="/"><img src="/static/logo.svg" alt="logo" width="50" height="50"> appchk <span>– Privacy Monitor</span></a></h1>
|
||||
@@ -48,8 +48,8 @@
|
||||
</div>
|
||||
</div>
|
||||
<div class="links">
|
||||
<a href="https://privacyscore.org/privacypolicy/">Privacy Policy</a> ·
|
||||
<a href="https://privacyscore.org/imprint/">Imprint / Impressum</a>
|
||||
<a href="/privacy.html">Privacy Policy / Datenschutz</a> ·
|
||||
<a href="/imprint.html">Imprint / Impressum</a>
|
||||
</div>
|
||||
</footer>
|
||||
</body>
|
||||
|
||||
30
templates/root.html
Normal file → Executable file
30
templates/root.html
Normal file → Executable file
@@ -1,14 +1,14 @@
|
||||
<h2>Research Project</h2>
|
||||
<div class="squeeze">
|
||||
<p>
|
||||
The AppCheck research project is an effort to shine a light on the background activity of iOS apps, making the otherwise hidden network connections visible to everyone.
|
||||
The appchk research project is an effort to shine a light on the background activity of iOS apps, making the otherwise hidden network connections visible to everyone.
|
||||
The goal is to make privacy more accessible to the general public.
|
||||
And thus create incentives for app developers to respect users' privacy.
|
||||
And thus create incentives for app developers to respect users’ privacy.
|
||||
</p>
|
||||
<p>
|
||||
We want to offer users, activists, data protection authorities, and data protection officers an easily accessible and flexible tool to assess the privacy measures of iOS applications.
|
||||
</p>
|
||||
<span>AppCheck allows users to:</span>
|
||||
<span>appchk allows users to:</span>
|
||||
<ul>
|
||||
<li>get a visual overview of an apps communication signature</li>
|
||||
<li>assess how an app ranks within its peer group or category</li>
|
||||
@@ -26,13 +26,13 @@
|
||||
</p>
|
||||
<p>
|
||||
You can go to <a href="/index/apps/">all apps</a> directly.
|
||||
Or, if you're interested in details, check the <a href="/results/">results section</a>.
|
||||
Or, if you’re interested in details, check the <a href="/results/">results section</a>.
|
||||
</p>
|
||||
</div>
|
||||
|
||||
<h2>AppCheck – The App</h2>
|
||||
<h2>appchk – The App</h2>
|
||||
<p class="squeeze">
|
||||
AppCheck is a pocket DNS monitor and network filter.<br>
|
||||
appchk is a pocket DNS monitor and network filter.<br>
|
||||
It helps you identify applications that communicate with other parties.
|
||||
</p>
|
||||
<div class="xscroll">
|
||||
@@ -45,40 +45,40 @@
|
||||
|
||||
<h3>How does it work?</h3>
|
||||
<p class="squeeze">
|
||||
AppCheck creates a local VPN proxy to intercept all network connections.
|
||||
For each connection, AppCheck looks into the DNS headers only, namely the domain names.
|
||||
appchk creates a local VPN proxy to intercept all network connections.
|
||||
For each connection, appchk looks into the DNS headers only, namely the domain names.
|
||||
These domain names are logged in the background while the VPN is running.
|
||||
AppCheck does not need to be active all the time.
|
||||
appchk does not need to be active all the time.
|
||||
</p>
|
||||
|
||||
<h3>What about privacy?</h3>
|
||||
<p class="squeeze">
|
||||
Your data belongs to you.
|
||||
Therefore, monitoring takes place on your device only.
|
||||
AppCheck learns only the destination addresses, not the actual data that is exchanged.
|
||||
appchk learns only the destination addresses, not the actual data that is exchanged.
|
||||
The app does not share any data with us or any other third-party – unless you choose to.
|
||||
</p>
|
||||
|
||||
<h3>How can I contribute?</h3>
|
||||
<p class="squeeze">
|
||||
AppCheck allows you to record app-specific activity.
|
||||
appchk allows you to record app-specific activity.
|
||||
You can share these recordings with the community; it can help you and others avoid phony applications, even before you install an app.
|
||||
</p>
|
||||
<a id="get-appcheck" class="no-ul" href="https://testflight.apple.com/join/9jjaFeHO" target="_blank">
|
||||
<img class="app-icon" src="/static/appcheck.svg" alt="app-icon" width="30" height="30">
|
||||
<img class="app-icon" src="/static/appchk.svg" alt="app-icon" width="30" height="30">
|
||||
<p>
|
||||
Get the iOS App and contribute.<br />
|
||||
Join the TestFlight Beta.
|
||||
</p>
|
||||
</a>
|
||||
<p class="snd mg_lr">
|
||||
Source code is available <a href="https://github.com/relikd/appcheck/" target="_blank">on GitHub</a>.
|
||||
Source code is available <a href="https://github.com/ubapsi/appchk/" target="_blank">on GitHub</a>.
|
||||
</p>
|
||||
|
||||
<h2>Limitations</h2>
|
||||
<div class="squeeze">
|
||||
<p>
|
||||
Due to the network extension's technical limitations, AppCheck can not detect if a network activity belongs to one app or another.
|
||||
Due to the network extension’s technical limitations, appchk can not detect if a network activity belongs to one app or another.
|
||||
It may result in wrong attributions.
|
||||
The attributions can be minimized by running only a single application during recording and filter results before contributing.
|
||||
The evaluation website will ignore requests that appear only in a small subset of recordings.
|
||||
@@ -90,7 +90,7 @@
|
||||
</p>
|
||||
<p>
|
||||
> <i><a href="https://github.com/OxfordHCC/tracker-control-android" target="_blank">TrackerControl</a></i> is an Android application that detects and prevents in-app tracking.
|
||||
It uses the same approach as AppCheck does.
|
||||
It uses the same approach as appchk does.
|
||||
Analyzing DNS traffic on device with a local VPN extension.
|
||||
</p>
|
||||
<p>
|
||||
|
||||
Reference in New Issue
Block a user