The primary location to inform users about the privacy properties of applications is the new.html page. These pages currently include warnings about the properties of the applications, but I don't think it is enough. We need to strike a balance between disclosing the properties inside the application itself and length.
We need to express which parties have access to what under what circumstances. If this cannot be succinctly stated and understood, we should only advertise the properties of the app in the worst circumstance possible.
ZeroBin should tell users in the warning section:
"This app protects privacy from law abiding online service providers. If the Online Service Provider is willing to proactively attack your privacy, then this app provides no protection."
"People with the link you create and access to the server where the content is stored will be able to read the content"
"The server currently gives the encrypted content to anyone with the link. Read why"
PlainPost should tell users in the warning section:
"This app protects privacy from law abiding online service providers. If the Online Service Provider is willing to proactively attack your privacy, then this app provides no protection."
"The content server you upload this content to is able to read the content. If you don't want the content to be readable by the content server, use ZeroBin."
"The server currently gives the encrypted content to anyone with the link. Read why"
The primary location to inform users about the privacy properties of applications is the new.html page. These pages currently include warnings about the properties of the applications, but I don't think it is enough. We need to strike a balance between disclosing the properties inside the application itself and length.
We need to express which parties have access to what under what circumstances. If this cannot be succinctly stated and understood, we should only advertise the properties of the app in the worst circumstance possible.
ZeroBin should tell users in the warning section:
PlainPost should tell users in the warning section: