git724/git724
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update PRIVACY.md

Browse source
This commit is contained in:
Minecon724 2025-01-18 11:09:24 +01:00
parent 2aab950598
commit 2247cf2fb8
1 changed files with 32 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

51
PRIVACY.md
View file

@ -1,26 +1,39 @@
### Privacy policy for [git.m724.eu](/)
### This is not an official document, and might not reflect reality
(that's because this is a private, personal website with low standards and high misconfiguration potential)
### Privacy disclaimer for [git.m724.eu](/) service
### This is not an official document. It might not reflect reality.
As of 18.01.2025
---
What you knowingly provide is stored. That is emails, usernames, passwords (hashed of course), repos, etc.
To make this service useful, data is stored. Including, but not limited to:
- your linked email addresses
- your hashed account password
- organizations you're a member of
- repositories you own
- commit data (repo, commiter email, commiter name, other metadata, and the data itself)
Stored temporarily:
- for every website request: timestamp, user agent[^1], path
- IP address is **not stored** (but please don't be the change)
Pages you visit are NOT logged.
This is how it looks like when you're entering the main page:
```
nginx-1 | - [29/Oct/2024:16:33:23 +0000] "GET / HTTP/2.0" 303 41 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0" "-"
nginx-1 | - [29/Oct/2024:16:33:23 +0000] "GET /git724/git724 HTTP/2.0" 200 15426 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0" "-"
nginx-1 | - [29/Oct/2024:16:33:23 +0000] "GET /assets/img/logo.svg HTTP/2.0" 200 289 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0" "-"
[other assets]
nginx-1 | - [29/Oct/2024:16:33:23 +0000] "GET /avatars/2e9d5ee799fb3cb70596d9f85934b409?size=48 HTTP/2.0" 200 3626 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0" "-"
nginx-1 | - [29/Oct/2024:16:33:23 +0000] "GET /assets/img/favicon.svg HTTP/2.0" 200 289 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0" "-"
```
Cookies are used to keep you logged in.
That's about this service, of course. I don't use a CDN or a third party proxy, but that doesn't mean nobody is MITM[^2]
No data is shared to third parties.
[^1]: Sent by your browser. It contains browser name, version, device, operating system, its version, etc
[^2]: wiretap, malware, etc. Just worth mentioning, even though the risk is very low
Adhering to security standards:
- only necessary stuff is exposed to the Internet
- software is updated and maintenance is done periodically
- passwords are hashed with argon2
- server is in a closet only I have access to
- frequent backups, stored by a third party, but encrypted locally
- [see technical details](/git724/git724/src/branch/master/SERVER.md)
---
You can delete your account in [account settings](/user/settings/account)
Data is stored and processed in Poland.
---
This document may be modified at any time. If you wish to get notified about changes, [subscribe to the RSS feed of this file.](/git724/git724/rss/branch/master/PRIVACY.md)
Contact: open an issue on this repo or email `privacy` at `m724.eu`