API tools faq
paste
Advertisement
Krammy

jump-ship-privacy

Krammy
Dec 13th, 2023 (edited)
20
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.12 KB | None | 0 0
raw download clone embed print report
  1. Thank you for switching over to Pastebin.
  2.  
  3. So yes, that's completely understandable; you're basically relying on the personal integrity of the person running the service.
  4.  
  5. I will use "I" and "we" almost interchangeably here; when I use "I", I mean me, myself. When I use "we" or "our," I'm talking about the Jump Ship company (including myself).
  6.  
  7. We care about user's privacy; it's one of the core reasons our service exists, helping you move from an online platform to an offline solution where you own your own data.
  8.  
  9. We have our privacy policy here that we're always improving: https://docs.jumpship.net/privacy_policy/ This was also included in your PayPal invoice.
  10.  
  11. In terms of other people having concerns, I think people have different thresholds for trust; you can review our forum thread as I'll usually ask for a testimonial after generation. I think what happens is that users try it out with a few notes of their own, they learn my character, and then they go through with their whole workspace—that is obviously not something that can scale.
  12.  
  13. We do want to eventually go into more of the technical details about how we keep users' data secure, that's clearly something we will need to introduce soon.
  14.  
  15. I think you more than anyone would understand that the reason we can't open-source or go local-only is because it destroys our business model. Staying online has its advantages though, in that it means you're not having to take up resources on a computer. We are device-blind, you could generate on your Apple Watch if you were so inclined; you can start generating on one device and come back to another device to download the workspace. You're not having to leave your computer running overnight, potentially over multiple days.
  16.  
  17. As per our privacy policy:
  18. 1. Attached to your account, we store access tokens and other information relevant to accessing and reading your Notion workspace.
  19. 1b. This information is used only by our service when retrieving your workspace for generation.
  20. 3. Generated Notion Workspaces are stored in a secure server.
  21. 3b. We do not review a user's generated workspace without express permission from the user.
  22.  
  23. To expand on 3a, if you click the "remove from list" button, everything from our servers about your workspace is deleted: access keys, generated files, etc. It's as if that workspace was never there in the first place.
  24.  
  25. Admins can spoof a user's screen, though the download button is disabled; you are unable to download the workspace if you are not the user. There's encoding on the values in the database, as well as file names stored on our S3 server, which makes it a little more convoluted to read the data unless you have the private key and the necessary decoding algorithm.
  26.  
  27. The point of this all is to avoid accidental breaches of user privacy.
  28.  
  29. We do have errors. This usually gives no information, and if any information does come through it's only for the specific block that errored, and only because I'm specifically logging that information in the code in order to debug it. Users also get a basic understanding of the block that errored there, as well as the error message.
  30.  
  31. I'm eventually planning to make it so the user has to report the error before you are able to read that error, though that seems like it would slow down development during beta testing, plus we would run into the same problem where a malicious actor could just decode and read the error anyway. Errors are also rare these days, we've been in development for a while and have become more and more stable.
  32.  
  33. I've been very conscious about the whole privacy aspect of the service throughout development, though we definitely need to improve the communication of how that works in practice. It's also an area where there is always room for improvement. This is something we need to be more transparent about, and something I'm planning on creating an entire section on in our documentation website.
  34.  
  35. If there is anything in our privacy policy that you feel could be worded better, or any privacy aspects you feel we could improve upon, we would love your feedback on this. You can review this here: https://docs.jumpship.net/privacy_policy/
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!