Privacy and security policy
This website was made by Mathers. I pride myself in making very secure websites, using the latest internet standards and all the protection methods at my disposal. You will find hereafter a short description of the set of security measures that I try to implement on all the websites I manage. Due to technical limitations, these measures may not be active at all times on all the websites I operate.
Security
We take the security of your - and our - information very seriously. Here are a non-exhaustive set of measures we implement to make sure your data is safe.
- Strong HTTPS
Every single communication between your web browser and our website is encrypted. Our server will not respond to any unencrypted queries, except by telling your browser to try again on an encrypted connexion. Not all HTTPS encryptions are the same. We only use the highest grade of encrpytion. You can check that on https://www.ssllabs.com/ssltest/, that gives us a grade of "A+". We use certificate issued by the most trusted certificate authorities, with short validity periods (in case they get compromised).
- HTTP Strict Transport Security (HSTS)
When you type the name of our website in your browser, it may try to use an unencrypted channel before being redirected to HTTPS. If your connection is compromised, HTTPS alone is not enough in this case. To prevent this, our websites use HSTS. Thanks to this, even the first time you visit our website, your browser defaults to a secure connection.
- DNSSEC
When you type our website's address, your browser asks a DNS server the IP address of our server. If your connection is compromised, your browser may try to contact the wrong server. If the HSTS preloading failed for any reason (not all browsers come with a preload list), you may get redirected to a malicious website. To avoid this, the DNS server serves our IP in a secure manner. You can check the chain of trust with tools such as http://dnsviz.net.
- DANE/TLSA
By default, your browser will trust hundreds of certificate authorities (CA). However, we know exactly which CA is used for our websites. We use the DNSSEC chain of trust to give your browser information about which certificate to access. This chain of trust is stronger than the HTTPS chain of trust, because only one authority can give DNSSEC trust to a domain name. You can check our DANE/TLSA validity using DNSSEC/TLSA validator (extension for Firefox).
- Content-Security-Policy
Even if a malicious party was able to inject code in our website, it wouldn't be able to make your browser communicate with any unauthorized server. This way, your privacy is safer. This is done by sending a special header to your browser each time you make a request, with the list of websited your browser is allowed to contact. You can check this using https://securityheaders.io/.
- X-Frame-Options
Even if a malicious party was able to inject code in our website, it wouldn't be able to make your browser communicate with any unauthorized server using frames. This is very similar to Content-Security-Policy.
- X-Content-Type-Options
This stops your browser from trying to MIME-sniff the content type and forces it to stick with the declared content-type.
Privacy policy
This Privacy Policy governs the manner in which this website collects, uses, maintains and discloses information collected from users (each, a "User") of the website ("Site").
Personal identification information
We may collect personal identification information from Users in a variety of ways, including, but not limited to, when Users visit our site, fill out a form, and in connection with other activities, services, features or resources we make available on our Site. Users may be asked for, as appropriate, email address. Users may, however, visit our Site anonymously. We will collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personally identification information, except that it may prevent them from engaging in certain Site related activities.
Non-personal identification information
We may collect non-personal identification information about Users whenever they interact with our Site. Non-personal identification information may include the browser name, the type of computer and technical information about Users means of connection to our Site, such as the operating system and the Internet service providers utilized and other similar information.
Web browser cookies
Our Site may use "cookies" to enhance User experience. User's web browser places cookies on their hard drive for record-keeping purposes and sometimes to track information about them. User may choose to set their web browser to refuse cookies, or to alert you when cookies are being sent. If they do so, note that some parts of the Site may not function properly.
How we use collected information
This Site may collect and use Users personal information for the following purposes:
-
To run and operate our Site
We may need your information display content on the Site correctly. -
To improve customer service
Information you provide helps us respond to your customer service requests and support needs more efficiently. -
To improve our Site
We may use feedback you provide to improve our products and services. -
To send periodic emails
We may use the email address to respond to their inquiries, questions, and/or other requests.
How we protect your information
We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information, username, password, transaction information and data stored on our Site.
Sharing your personal information
We do not sell, trade, or rent Users personal identification information to others. We may share generic aggregated demographic information not linked to any personal identification information regarding visitors and users with our business partners or trusted affiliates.
Third party websites
Users may find content on our Site that link to the sites and services of our partners, suppliers, sponsors, licensors and other third parties. We do not control the content or links that appear on these sites and are not responsible for the practices employed by websites linked to or from our Site. In addition, these sites or services, including their content and links, may be constantly changing. These sites and services may have their own privacy policies and customer service policies. Browsing and interaction on any other website, including websites which have a link to our Site, is subject to that website's own terms and policies.
Changes to this privacy policy
This Site has the discretion to update this privacy policy at any time. When we do, we will post a notification on the main page of our Site. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.
Your acceptance of these terms
By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes. This policy was generated using privacy policies.com
Contacting us
If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact us.
This document was last updated on June 16, 2016