Privacy Policy update

src/html_root.py

@@ -27,6 +27,112 @@ def gen_404():
 <p>Go back to <a href="/">start page</a></p>''', fname='404.html')
 
 
+def gen_privacy():
+    HTML.write(mylib.path_out(), '''
+<h2>Datenschutzerklärung (Webseite)</h2>
+<p>Auf dieser Webseite werden keine personenbezogenen Daten erhoben.</p>
+<p class="squeeze">
+  Einige Daten werden jedoch technisch bedingt automatisch erfasst.
+  Diese Daten werden von Ihrem Browser automatisch gesendet und beinhalten Browsertyp und -version, die Referrer-URL, Ihre IP-Adresse sowie Datum und Uhrzeit der Anfrage.
+  Diese Daten werden explizit weder ausgewertet noch gespeichert.
+</p>
+<p>Bei offenen Fragen wenden Sie sich bitte an <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>.</p>
+
+<h2>Privacy Policy (Website)</h2>
+<p>This website does not collect any personally identifiable information.</p>
+<p class="squeeze">
+  Some data is collected automatically by our IT systems when you visit the website.
+  This technical data is sent automatically by your browser and includes the browser type and version, a referrer URL, your IP address, and date and time when you accessed the page.
+  This data is explicitly neither evaluated nor stored.
+</p>
+<p>If you have further questions write an email to <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>.</p>
+''', fname='privacy.html')
+
+
+def gen_appprivacy():
+    HTML.write(mylib.path_out(), '''
+<h2>Datenschutzerklärung (App)</h2>
+<p>Die appchk app verarbeitet potentiell personenbeziehbare Daten.</p>
+<p class="squeeze">
+  Im Nachfolgenden werden diese Daten gelistet, die von der App erhoben und verarbeitet werden.
+  Dies beinhaltet die Domainnamen der angesurften Webseiten bzw. von anderen Apps kontaktierte Domains, sowie das Datum und die Uhrzeit der Anfrage.
+  Sofern ein App-Recording gestartet wird, wird außerdem die aktuelle Version des iOS Betriebssystems gespeichert.
+  Andere als die genannten Daten werden nicht erhoben.
+  Weiterhin werden diese Daten nur erhoben, solange der (lokale) VPN-Service aktiv ist.
+  Wenn dieser Service inaktiv ist, werden keine Daten erhoben.
+</p>
+<p class="squeeze">
+  Im Gegensatz zu einem konventionellen VPN Provider, verbindet sich dieser VPN-Service <strong>nicht</strong> zu einem anderen Server.
+  Alle Daten werden ausschließlich auf dem eigenen Endgerät erfassten und gespeichert.
+  Das heißt, diese Daten verlassen das eigene Gerät nicht und können demnach auch nicht von uns ausgewertet werden.
+</p>
+<p class="squeeze">
+  Diese Daten werden nur an unsere Server (appchk.de) übermittelt, sofern der Nutzer / die Nutzerin der Übermittlung explizit zustimmt.
+  Nutzer:innen haben weiterhin die Möglichkeit die erfassten Daten vor dem Upload zu filtern.
+  Beim Übermitteln der Daten erhält der Server einen Zeitstempel der Anfrage.
+  Andere Attribute wie Browsertyp, IP-Adresse, etc. werden, wie bei der Webseite, nicht ausgewertet oder gespeichert.
+</p>
+<p>Bei offenen Fragen wenden Sie sich bitte an <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>.</p>
+
+<h2>Privacy Policy (App)</h2>
+<p>The appchk app collects potentially personally identifiable information.</p>
+<p class="squeeze">
+  The following section contains a list of the collected and processed data.
+  This data includes the domain names of websites the user or another app contacted, as well as the date and time of the query.
+  If the user starts an app-recording, the app will also store the current iOS version.
+  Other than the listed data is not collected.
+  Further, this data is only collected as long as the (local) VPN-service is active.
+  As soon as this service is deactivated, no more data is collected.
+</p>
+<p class="squeeze">
+  Contrary to conventional VPN providers, this VPN-service does <strong>not</strong> connect to another server.
+  All collected data is processed and stored solely on the users end-device.
+  This means that this data never leaves a user’s device and can therefore not be evaluated by us.
+</p>
+<p class="squeeze">
+  This data is transmitted to our servers (appchk.de) only in the case if the user explicitly chooses to submit the data.
+  Furthermore, users have the option to filter the data prior to upload.
+  If the data is submitted, the server will also receive a timestamp of the upload.
+  Other attributes like browser type, IP-address, etc. are, similarly to the website, not evaluated nor stored, similar.
+</p>
+<p>If you have further questions write an email to <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>.</p>
+''', fname='app-privacy.html')
+
+
+def gen_imprint():
+    HTML.write(mylib.path_out(), '''
+<h2>Imprint / Impressum</h2>
+<p>
+  <strong>Lehrstuhl für Privatsphäre und Sicherheit in Informationssystemen (PSI)</strong><br>
+  Otto-Friedrich Universität Bamberg<br>
+  Kapuzinerstr. 16<br>
+  96047 Bamberg<br>
+  Germany
+</p>
+<p>Tel.: +49 951 863-2661</p>
+
+<h3>Inhaltliche Verantwortlichkeit i.S.v. § 5 TMG und § 55 Abs. 2 RStV</h3>
+<p>Für die Richtigkeit und Aktualität der Inhalte sind die jeweiligen Erstellerinnen und Ersteller der einzelnen Seiten verantwortlich.</p>
+<p>
+  Otto-Friedrich Universität Bamberg<br>
+  Lehrstuhl für Privatsphäre und Sicherheit in Informationssystemen (PSI)<br>
+  Prof. Dr. Dominik Herrmann<br>
+  An der Weberei 5<br>
+  96047 Bamberg<br>
+  Deutschland<br>
+  Tel.: +49 951 863-2661<br>
+  E-Mail: <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>
+</p>
+
+<h3>Technische Verantwortlichkeit</h3>
+<p>
+  <strong>Webmaster/in:</strong><br>
+  Prof. Dr. Dominik Herrmann<br>
+  Tel.: +49 951 863-2661<br>
+  E-Mail: <a href="mailto:dominik.herrmann@uni-bamberg.de">dominik.herrmann@uni-bamberg.de</a>
+</p>''', fname='imprint.html')
+
+
 def gen_help():
     many = 7
     txt = '''<h2>Help needed!</h2>
@@ -41,7 +147,7 @@ def gen_help():
     In the second stage we repeat the process after the launch of iOS 14.
   </p><p>
     You can help us by providing app recordings of the following applications.
-    Make sure to update to the lastest AppCheck version (v.34) which includes a check for the iOS version.
+    Make sure to update to the lastest appchk version (v.34) which includes a check for the iOS version.
     Get the <a href="https://testflight.apple.com/join/9jjaFeHO" target="_blank">Testflight beta</a>.
   </p>
 </div>
@@ -112,6 +218,12 @@ def process(app_count, dom_count, inclStatic=False):
         gen_redirect()  # root redirect.html?id=my.bundle.id
         print('  404.html')
         gen_404()
+        print('  imprint.html')
+        gen_imprint()
+        print('  privacy.html')
+        gen_privacy()
+        print('  app-privacy.html')
+        gen_appprivacy()
     # print('  /help/')  # dynamic content
     # gen_help()
     print('  /results/')  # dynamic content

templates/base.html

@@ -24,7 +24,7 @@
         <li><a href="/index/apps/">Apps</a></li>
         <li><a href="/category/">Categories</a></li>
         <li><a href="/results/">Results</a></li>
-        <li><a class="no-ul" href="https://github.com/relikd/appcheck" target="_blank"><img src="/static/github.svg" alt="GitHub"></a></li>
+        <li><a class="no-ul" href="https://github.com/ubapsi/appchk" target="_blank"><img src="/static/github.svg" alt="GitHub"></a></li>
       </ul>
     </nav>
     <h1><a class="no-ul" href="/"><img src="/static/logo.svg" alt="logo" width="50" height="50"> appchk <span>– Privacy Monitor</span></a></h1>
@@ -48,8 +48,8 @@
       </div>
     </div>
     <div class="links">
-      <a href="https://privacyscore.org/privacypolicy/">Privacy Policy</a> ·
+      <a href="/privacy.html">Privacy Policy / Datenschutz</a> ·
-      <a href="https://privacyscore.org/imprint/">Imprint / Impressum</a>
+      <a href="/imprint.html">Imprint / Impressum</a>
     </div>
   </footer>
 </body>

templates/root.html

@@ -1,14 +1,14 @@
 <h2>Research Project</h2>
 <div class="squeeze">
   <p>
-    The AppCheck research project is an effort to shine a light on the background activity of iOS apps, making the otherwise hidden network connections visible to everyone.
+    The appchk research project is an effort to shine a light on the background activity of iOS apps, making the otherwise hidden network connections visible to everyone.
     The goal is to make privacy more accessible to the general public.
-    And thus create incentives for app developers to respect users' privacy.
+    And thus create incentives for app developers to respect users’ privacy.
   </p>
   <p>
     We want to offer users, activists, data protection authorities, and data protection officers an easily accessible and flexible tool to assess the privacy measures of iOS applications.
   </p>
-  <span>AppCheck allows users to:</span>
+  <span>appchk allows users to:</span>
   <ul>
     <li>get a visual overview of an apps communication signature</li>
     <li>assess how an app ranks within its peer group or category</li>
@@ -26,13 +26,13 @@
   </p>
   <p>
     You can go to <a href="/index/apps/">all apps</a> directly.
-    Or, if you're interested in details, check the <a href="/results/">results section</a>.
+    Or, if you’re interested in details, check the <a href="/results/">results section</a>.
   </p>
 </div>
 
-<h2>AppCheck – The App</h2>
+<h2>appchk – The App</h2>
 <p class="squeeze">
-  AppCheck is a pocket DNS monitor and network filter.<br>
+  appchk is a pocket DNS monitor and network filter.<br>
   It helps you identify applications that communicate with other parties.
 </p>
 <div class="xscroll">
@@ -45,40 +45,40 @@
 
 <h3>How does it work?</h3>
 <p class="squeeze">
-  AppCheck creates a local VPN proxy to intercept all network connections.
+  appchk creates a local VPN proxy to intercept all network connections.
-  For each connection, AppCheck looks into the DNS headers only, namely the domain names.
+  For each connection, appchk looks into the DNS headers only, namely the domain names.
   These domain names are logged in the background while the VPN is running.
-  AppCheck does not need to be active all the time.
+  appchk does not need to be active all the time.
 </p>
 
 <h3>What about privacy?</h3>
 <p class="squeeze">
   Your data belongs to you.
   Therefore, monitoring takes place on your device only.
-  AppCheck learns only the destination addresses, not the actual data that is exchanged.
+  appchk learns only the destination addresses, not the actual data that is exchanged.
   The app does not share any data with us or any other third-party – unless you choose to.
 </p>
 
 <h3>How can I contribute?</h3>
 <p class="squeeze">
-  AppCheck allows you to record app-specific activity.
+  appchk allows you to record app-specific activity.
   You can share these recordings with the community; it can help you and others avoid phony applications, even before you install an app.
 </p>
 <a id="get-appcheck" class="no-ul" href="https://testflight.apple.com/join/9jjaFeHO" target="_blank">
-  <img class="app-icon" src="/static/appcheck.svg" alt="app-icon" width="30" height="30">
+  <img class="app-icon" src="/static/appchk.svg" alt="app-icon" width="30" height="30">
   <p>
     Get the iOS App and contribute.<br />
     Join the TestFlight Beta.
   </p>
 </a>
 <p class="snd mg_lr">
-  Source code is available <a href="https://github.com/relikd/appcheck/" target="_blank">on GitHub</a>.
+  Source code is available <a href="https://github.com/ubapsi/appchk/" target="_blank">on GitHub</a>.
 </p>
 
 <h2>Limitations</h2>
 <div class="squeeze">
   <p>
-    Due to the network extension's technical limitations, AppCheck can not detect if a network activity belongs to one app or another.
+    Due to the network extension’s technical limitations, appchk can not detect if a network activity belongs to one app or another.
     It may result in wrong attributions.
     The attributions can be minimized by running only a single application during recording and filter results before contributing.
     The evaluation website will ignore requests that appear only in a small subset of recordings.
@@ -90,7 +90,7 @@
   </p>
   <p>
     &gt; <i><a href="https://github.com/OxfordHCC/tracker-control-android" target="_blank">TrackerControl</a></i> is an Android application that detects and prevents in-app tracking.
-    It uses the same approach as AppCheck does.
+    It uses the same approach as appchk does.
     Analyzing DNS traffic on device with a local VPN extension.
   </p>
   <p>