Privacy policy#

Our privacy commitments.

See also

Our commitments in the T&Cs

Security policy#

  • ⚠️ Member data on the server is not encrypted. They are therefore readable by administrators (root user and members of the sudo group).

  • The backups are encrypted.

  • The protocols used to connect to the server are all encrypted, so passwords and data cannot be intercepted.

  • Les données personnelles sont protégées par les permissions POSIX. Par defaut l’espace personnel n’est pas accessible par les autres utilisateurs (à part en lecture par les membres du groupe home, ex: le serveur web). Chacun est libre de changer les permissions de son espace perso.

Commitments of system administrators#

System administrators agree to respect the following points:

  • Not to access user data (personal space and databases) without their consent, except in case of restoration following a technical problem, in which case the users concerned will be notified.

  • Encryption of SSH keys.

  • Application of security best practices (replacement of default passwords, strong generated passwords, etc.).