Added keywords and updated privacy policy

2025-01-14 17:00:01 -05:00 · 2025-01-14 17:00:01 -05:00 · cddaef6850
commit cddaef6850
parent 1b199c69a5
4 changed files with 20 additions and 8 deletions
--- a/compose.yaml
+++ b/compose.yaml
@ -5,7 +5,7 @@ services:
      context: .
      dockerfile: osg.dockerfile
      
-    image: osg:22 # <--automate this number change to trigger stack redeploy.
+    image: osg:23 # <--automate this number change to trigger stack redeploy.
      
    environment:
      DOCKER: "true"
--- a/server.py
+++ b/server.py
@ -384,7 +384,7 @@ if __name__ == "__main__":
    static_dir = "./web_content/"
    db_path = "./data/signatures.db"
    host_prefix = "osg.jkdev.org"
-    production = True
+    production = False

    if os.environ.get("DOCKER"):
        host_prefix = os.environ.get("HOSTPREFIX")
--- a/web_content/index.html
+++ b/web_content/index.html
@ -3,6 +3,7 @@
    <title>Open Signature Generator</title>
    <meta name="Open Signature Generator" />
    <meta name="description" content="Generate and verify document signatures for free!" />
+    <meta name="keywords" content="open signature generator, signature, sign, digital signature, electronic signature, esign, e-signature, e-sign, pdf, qrcode, open source, free, privacy, docusign, adobe acrobat" />
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1, minimum-scale=1" />
 </head>
--- a/web_content/privacy.html
+++ b/web_content/privacy.html
@ -14,17 +14,28 @@

    <div id="privacy-policy">
        <h2>Data Collection and Usage</h2>
-        <p>The Open Signature Generator is designed with transparency and privacy in mind. We collect the minimum possible data necessary for operation:</p>
-        
+        <p>The Open Signature Generator is designed with transparency and privacy in mind. We collect the minimum possible data necessary for operation</p>
        <ul>
-            <li>Signature images are cached temporarily, but are otherwise generated on-demand</li>
-            <li>The IP address, timezone, and selected font of the creator of the signature is stored for use on the verification page.</li>
-            <li>Publically available information about an IP address is retrieved when a signature is created using the Python Geocoder library. </li>
+            <li>You are the only person who handles your important documents. It is impossible to upload them to this website.</li>
+            <li>Signature images are cached temporarily, but are otherwise generated on-demand and not kept.</li>
            <li>No tracking, analytics, or cookies are used.</li>
+            <li>Until you hit the 'Go!' button, zero information is collected or stored.</li>
+            <li>You can see exactly how this website works by viewing the source code at the link on the main page.</li>
+        </ul>
+
+        <h2>What is Collected</h2>
+        <p>The following information is collected and stored on the server to allow for signature generation and verification:</p>
+        <ul>
+            <li>Your last used signature name and font are stored in your browser's local storage so you do not need to re-enter them. These are not sent to the server until you hit the 'Go!' button.</li>
+            <li>When you generate a signature by clicking the 'Go!' button, your browser submits your signature name, selected font, timezone, and selected color scheme.</li>
+            <li>Publically available information about an IP address is retrieved when a signature is created and stored in a database. This is later displayed on the signature verification page.</li>
        </ul>

        <h2>Information Sharing</h2>
-        <p>We do not sell, trade, transfer, or share your information with any third parties under any circumstances. Your information remains strictly confidential.</p>
+        <p>We will never sell, trade, transfer, or share your information with any third parties under any circumstances. Your information remains strictly confidential.</p>
+        <ul>
+            <li>Cloudflare is used to cache static website content so that the site is faster and can be used by more people. Cloudflare can not access any of your signature data.</li>
+        </ul>

        <h2>Data Security</h2>
        <p>We implement reasonable security measures to protect your information from unauthorized access, disclosure, alteration, or destruction. These measures include:</p>