aboutsummaryrefslogtreecommitdiff
path: root/src/privacypolicy.md
diff options
context:
space:
mode:
Diffstat (limited to 'src/privacypolicy.md')
-rw-r--r--src/privacypolicy.md53
1 files changed, 53 insertions, 0 deletions
diff --git a/src/privacypolicy.md b/src/privacypolicy.md
new file mode 100644
index 0000000..efecf5f
--- /dev/null
+++ b/src/privacypolicy.md
@@ -0,0 +1,53 @@
+# Privacy Policy
+
+###### From `2025-08-04`
+
+[deutsche version](/datenschutzerklaerung)
+
+Transparent disclosure on how -and which- data is used.
+
+- - -
+
+## Requests
+
+For requests regarding deletion, correction, disclosure, etc. please contact <web@hitler.rip> via E-Mail or XMPP.
+
+- - -
+
+# Data regarding all Services
+
+## Web Server Logs
+
+Some personal data, such as IP adresses and other information your web browser sends to the web server is being collected and saved.
+
+This data is processed immediately by the web server in order to be able to respond to the users request.
+For some time, we will store this data for security purposes. This data might be used to defend against attacks on the infrastructure, eg. by blocking a certain IP address that keeps sending resource-intensive requests, thus disturbing the network.
+
+IP adresses are not directly linked to other collected data, but it might be possible to link them to certain requests later.
+
+The servers log files rotate every 14 days - which means: all data older than 14 days is automatically being overwritten. Should a user request data deletion, the IP adresses will **not** immediately be removed from the web server logs, as they are not directly linked to the user.
+
+- - -
+
+# Data regarding individual Services
+
+The following Data is only collected when using the specific service.
+
+## "Hitler Clicker"
+
+This application collects the following data in a central database:
+
+- login name
+- login password *(hash)*
+- team the user clicks for
+- click count
+
+The first two are used to identify and authenticate the user. They can be changed via an API request.
+The team is relevant for the program to function.
+The click count **is** the primary function of the program.
+
+The "anonymous" usage of the program is possible. Then, only the click counter of the team will be incremented.
+Through an API request, you can delete your login. Your clicks will then be added to the anonymous counter and your database entry deleted.
+Deletion- and correction requests should be sent directly to the API instead of the E-Mail or XMPP contact, as those make an authentification against the user data in the database impossible *(unless the password is sent as plain text...)* All data can be requested from the API.
+
+
generated by cgit v1.2.3 (git 2.39.1) at 2025-08-14 04:34:28 +0000