Our Attempt at Writing an Honest Privacy Policy(neflabs.com) |
Our Attempt at Writing an Honest Privacy Policy(neflabs.com) |
What can be kept for legitimate business interests, security, etc. is quite extensive. Really the key is being transparent about it and making sure that people have the ability to know what is being kept and why.
as per GDPR 6(1) grounds for processing can be (b) performance of contract, (c) compliance with legal obligations (d) vital interests of data subject - which can all cover logging ip addresses and user agents for network security reasons (for a short amount of time) to protect the user, which log files are often used for. (IANAL)
We chose to disable all server logs because we feel that it's the right thing to do.
We felt that our website should reflect the same mantra that we carry along with our products: we don't want your data.
We do not wish to track you. We wholeheartedly believe that our users have a right to a strong degree of digital privacy.
GDPR increases that, but we wanted to go a step beyond for this digital security component of our site.
You see, the font is indeed larger than other sites out there as NefLabs.com is designed in accordance with DOJ Section §508 best practices for the visually impaired. You can find additional information on this in the full Privacy Policy (https://neflabs.com/privacy/)
But, I don't think it should be as jarring as what you're describing. So, once again, I'm curious...
Note, My vision isn't great, and on a phone, I've got accessibility set for text as the largest option... it's definitely too large on a big display.
Perhaps a baseline of 12-16pt would be more appropriate? Small devices should still show large enough.
Chrome: text is reasonably sized.
Contact form: "4096-bit encrypted".
I'll take a look via Firefox on desktop a bit later as everything seems fine through the mobile browser.
Not sure what you're referring to regarding the contact form though?
The site was designed using vw-sized fonts to maintain the same user experience no matter their resolution. But for really large monitors/resolutions, it can be jarring when users expect to see tiny fonts and need to scale them up. That said, we will add some CSS for larger monitors to address this, but it's a hack, as vw-width is true to the original design.
But you're being a bit obtuse. Several people here have complained about the typeface being huge and they're right. On my browser (Firefox Windows desktop), it's huge, like 45 or 50 points. And I couldn't reduce it by changing the zoom using the control-scroll wheel.
It was so annoying that I just closed the window. If you are interested in getting your message across to me personally, you're going to have to do it without forcing me to read it in fifty-point type.
Encrypting directly with RSA according to PKCS#1 is limited to a maximum of 501 bytes (key modulus - 11 bytes).
Generally RSA is not used to encrypt data directly, instead you encrypt an AES key with RSA then encrypt the data with that key.
https://stackoverflow.com/a/5586652
https://security.stackexchange.com/a/33445
Edit: the messages are from a character limited contact form so it's fine