From 771c5adc7e84669a342cfe5536769ee54225f800 Mon Sep 17 00:00:00 2001 From: relikd Date: Fri, 26 Mar 2021 16:46:02 +0100 Subject: [PATCH] Privacy Policy update --- out/static/{appcheck.svg => appchk.svg} | 0 src/html_root.py | 114 +++++++++++++++++++++++- templates/base.html | 6 +- templates/root.html | 30 +++---- 4 files changed, 131 insertions(+), 19 deletions(-) rename out/static/{appcheck.svg => appchk.svg} (100%) mode change 100644 => 100755 templates/base.html mode change 100644 => 100755 templates/root.html diff --git a/out/static/appcheck.svg b/out/static/appchk.svg similarity index 100% rename from out/static/appcheck.svg rename to out/static/appchk.svg diff --git a/src/html_root.py b/src/html_root.py index 02c22b0..0becc35 100755 --- a/src/html_root.py +++ b/src/html_root.py @@ -27,6 +27,112 @@ def gen_404():

Go back to start page

''', fname='404.html') +def gen_privacy(): + HTML.write(mylib.path_out(), ''' +

Datenschutzerklärung (Webseite)

+

Auf dieser Webseite werden keine personenbezogenen Daten erhoben.

+

+ Einige Daten werden jedoch technisch bedingt automatisch erfasst. + Diese Daten werden von Ihrem Browser automatisch gesendet und beinhalten Browsertyp und -version, die Referrer-URL, Ihre IP-Adresse sowie Datum und Uhrzeit der Anfrage. + Diese Daten werden explizit weder ausgewertet noch gespeichert. +

+

Bei offenen Fragen wenden Sie sich bitte an dominik.herrmann@uni-bamberg.de.

+ +

Privacy Policy (Website)

+

This website does not collect any personally identifiable information.

+

+ Some data is collected automatically by our IT systems when you visit the website. + This technical data is sent automatically by your browser and includes the browser type and version, a referrer URL, your IP address, and date and time when you accessed the page. + This data is explicitly neither evaluated nor stored. +

+

If you have further questions write an email to dominik.herrmann@uni-bamberg.de.

+''', fname='privacy.html') + + +def gen_appprivacy(): + HTML.write(mylib.path_out(), ''' +

Datenschutzerklärung (App)

+

Die appchk app verarbeitet potentiell personenbeziehbare Daten.

+

+ Im Nachfolgenden werden diese Daten gelistet, die von der App erhoben und verarbeitet werden. + Dies beinhaltet die Domainnamen der angesurften Webseiten bzw. von anderen Apps kontaktierte Domains, sowie das Datum und die Uhrzeit der Anfrage. + Sofern ein App-Recording gestartet wird, wird außerdem die aktuelle Version des iOS Betriebssystems gespeichert. + Andere als die genannten Daten werden nicht erhoben. + Weiterhin werden diese Daten nur erhoben, solange der (lokale) VPN-Service aktiv ist. + Wenn dieser Service inaktiv ist, werden keine Daten erhoben. +

+

+ Im Gegensatz zu einem konventionellen VPN Provider, verbindet sich dieser VPN-Service nicht zu einem anderen Server. + Alle Daten werden ausschließlich auf dem eigenen Endgerät erfassten und gespeichert. + Das heißt, diese Daten verlassen das eigene Gerät nicht und können demnach auch nicht von uns ausgewertet werden. +

+

+ Diese Daten werden nur an unsere Server (appchk.de) übermittelt, sofern der Nutzer / die Nutzerin der Übermittlung explizit zustimmt. + Nutzer:innen haben weiterhin die Möglichkeit die erfassten Daten vor dem Upload zu filtern. + Beim Übermitteln der Daten erhält der Server einen Zeitstempel der Anfrage. + Andere Attribute wie Browsertyp, IP-Adresse, etc. werden, wie bei der Webseite, nicht ausgewertet oder gespeichert. +

+

Bei offenen Fragen wenden Sie sich bitte an dominik.herrmann@uni-bamberg.de.

+ +

Privacy Policy (App)

+

The appchk app collects potentially personally identifiable information.

+

+ The following section contains a list of the collected and processed data. + This data includes the domain names of websites the user or another app contacted, as well as the date and time of the query. + If the user starts an app-recording, the app will also store the current iOS version. + Other than the listed data is not collected. + Further, this data is only collected as long as the (local) VPN-service is active. + As soon as this service is deactivated, no more data is collected. +

+

+ Contrary to conventional VPN providers, this VPN-service does not connect to another server. + All collected data is processed and stored solely on the users end-device. + This means that this data never leaves a user’s device and can therefore not be evaluated by us. +

+

+ This data is transmitted to our servers (appchk.de) only in the case if the user explicitly chooses to submit the data. + Furthermore, users have the option to filter the data prior to upload. + If the data is submitted, the server will also receive a timestamp of the upload. + Other attributes like browser type, IP-address, etc. are, similarly to the website, not evaluated nor stored, similar. +

+

If you have further questions write an email to dominik.herrmann@uni-bamberg.de.

+''', fname='app-privacy.html') + + +def gen_imprint(): + HTML.write(mylib.path_out(), ''' +

Imprint / Impressum

+

+ Lehrstuhl für Privatsphäre und Sicherheit in Informationssystemen (PSI)
+ Otto-Friedrich Universität Bamberg
+ Kapuzinerstr. 16
+ 96047 Bamberg
+ Germany +

+

Tel.: +49 951 863-2661

+ +

Inhaltliche Verantwortlichkeit i.S.v. § 5 TMG und § 55 Abs. 2 RStV

+

Für die Richtigkeit und Aktualität der Inhalte sind die jeweiligen Erstellerinnen und Ersteller der einzelnen Seiten verantwortlich.

+

+ Otto-Friedrich Universität Bamberg
+ Lehrstuhl für Privatsphäre und Sicherheit in Informationssystemen (PSI)
+ Prof. Dr. Dominik Herrmann
+ An der Weberei 5
+ 96047 Bamberg
+ Deutschland
+ Tel.: +49 951 863-2661
+ E-Mail: dominik.herrmann@uni-bamberg.de +

+ +

Technische Verantwortlichkeit

+

+ Webmaster/in:
+ Prof. Dr. Dominik Herrmann
+ Tel.: +49 951 863-2661
+ E-Mail: dominik.herrmann@uni-bamberg.de +

''', fname='imprint.html') + + def gen_help(): many = 7 txt = '''

Help needed!

@@ -41,7 +147,7 @@ def gen_help(): In the second stage we repeat the process after the launch of iOS 14.

You can help us by providing app recordings of the following applications. - Make sure to update to the lastest AppCheck version (v.34) which includes a check for the iOS version. + Make sure to update to the lastest appchk version (v.34) which includes a check for the iOS version. Get the Testflight beta.

@@ -112,6 +218,12 @@ def process(app_count, dom_count, inclStatic=False): gen_redirect() # root redirect.html?id=my.bundle.id print(' 404.html') gen_404() + print(' imprint.html') + gen_imprint() + print(' privacy.html') + gen_privacy() + print(' app-privacy.html') + gen_appprivacy() # print(' /help/') # dynamic content # gen_help() print(' /results/') # dynamic content diff --git a/templates/base.html b/templates/base.html old mode 100644 new mode 100755 index b0504ee..deed072 --- a/templates/base.html +++ b/templates/base.html @@ -24,7 +24,7 @@
  • Apps
  • Categories
  • Results
    • -
  • GitHub
    • +
  • GitHub

    • logo appchk – Privacy Monitor

    @@ -48,8 +48,8 @@
    - Privacy Policy · - Imprint / Impressum + Privacy Policy / Datenschutz · + Imprint / Impressum
    diff --git a/templates/root.html b/templates/root.html old mode 100644 new mode 100755 index 8024c23..33d9c51 --- a/templates/root.html +++ b/templates/root.html @@ -1,14 +1,14 @@

    Research Project

    - The AppCheck research project is an effort to shine a light on the background activity of iOS apps, making the otherwise hidden network connections visible to everyone. + The appchk research project is an effort to shine a light on the background activity of iOS apps, making the otherwise hidden network connections visible to everyone. The goal is to make privacy more accessible to the general public. - And thus create incentives for app developers to respect users' privacy. + And thus create incentives for app developers to respect users’ privacy.

    We want to offer users, activists, data protection authorities, and data protection officers an easily accessible and flexible tool to assess the privacy measures of iOS applications.

    - AppCheck allows users to: + appchk allows users to:
    -

    AppCheck – The App

    +

    appchk – The App

    - AppCheck is a pocket DNS monitor and network filter.
    + appchk is a pocket DNS monitor and network filter.
    It helps you identify applications that communicate with other parties.

    @@ -45,40 +45,40 @@

    How does it work?

    - AppCheck creates a local VPN proxy to intercept all network connections. - For each connection, AppCheck looks into the DNS headers only, namely the domain names. + appchk creates a local VPN proxy to intercept all network connections. + For each connection, appchk looks into the DNS headers only, namely the domain names. These domain names are logged in the background while the VPN is running. - AppCheck does not need to be active all the time. + appchk does not need to be active all the time.

    What about privacy?

    Your data belongs to you. Therefore, monitoring takes place on your device only. - AppCheck learns only the destination addresses, not the actual data that is exchanged. + appchk learns only the destination addresses, not the actual data that is exchanged. The app does not share any data with us or any other third-party – unless you choose to.

    How can I contribute?

    - AppCheck allows you to record app-specific activity. + appchk allows you to record app-specific activity. You can share these recordings with the community; it can help you and others avoid phony applications, even before you install an app.

    - app-icon + app-icon

    Get the iOS App and contribute.
    Join the TestFlight Beta.

    - Source code is available on GitHub. + Source code is available on GitHub.

    Limitations

    - Due to the network extension's technical limitations, AppCheck can not detect if a network activity belongs to one app or another. + Due to the network extension’s technical limitations, appchk can not detect if a network activity belongs to one app or another. It may result in wrong attributions. The attributions can be minimized by running only a single application during recording and filter results before contributing. The evaluation website will ignore requests that appear only in a small subset of recordings. @@ -90,7 +90,7 @@

    > TrackerControl is an Android application that detects and prevents in-app tracking. - It uses the same approach as AppCheck does. + It uses the same approach as appchk does. Analyzing DNS traffic on device with a local VPN extension.