ari/ari.lt
1
0
Fork 0
mirror of https://git.ari.lt/ari.lt/ari.lt.git synced 2025-02-04 09:39:25 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Update Ari-web legal framework.

Browse source 
Signed-off-by: Ari Archer <ari@ari.lt>
This commit is contained in:
Arija A. 2024-11-25 23:33:15 +02:00
parent 60f4ee7c2e
commit 092a160e1e
7 changed files with 880 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
src/aw/views.py
View file

@ -44,14 +44,11 @@ def get_status() -> t.Any:
@views.get("/guidelines.txt", alias=True)
@views.get("/guidelines", alias=True)
@views.get("/tos", alias=True)
@views.get("/tos.txt")
def tos() -> t.Any:
@views.get("/tos.txt", alias=True)
@views.get("/legal")
def legal() -> t.Any:
"""Get general guidelines for ari.lt"""
return flask.send_file(
"static/tos.txt",
mimetype="text/plain",
as_attachment=False,
)
return flask.render_template("legal.j2")
@views.post("/status")

2
src/static/css/base.css
View file

@ -110,7 +110,7 @@ table * {
}
table {
border-spacing: 0.2em;
border-spacing: 0.5rem;
}
a {

BIN
src/static/legal.sig Normal file
View file

Binary file not shown.

227
src/static/legal.txt Normal file
View file

@ -0,0 +1,227 @@
Legal information of Ari-web
This is the legal information of ari-web which covers topics such as logging policy, privacy policy, data control, data control compliance, as well as other legal aspects when it comes to using ari-web services. By using or requesting to use any ari-web services you agree to the legal framework outlined in this document, and agree to keep yourself updated with or without notice.
This document serves as an agreement between you and Ari-web parties, regarding the use and management of Ari-web's services. It outlines the expectations, responsibilities, and limitations for both parties.
Last updated: 2024-11-25 (YYYY-MM-DD)
OpenPGP signture of this document by the Authorative party's OpenPGP key: legal.sig (Note: Only the text content is what was signed in legal.txt)
# Involved Parties
Ari-web, albeit mainly a single-person curated project by the authority party, has multiple members separated into three authority layers: Authorative Party (the party/-ies who make and finalize decisions as well as handling most of the project), Members (which may have the say in Authorative Party's decisions as well as have volunteer responsibilities on the project), and Hosters (which may use or host services on Ari-web managed servers as per decision of the Authorative Party).
Full list of the parties involved:
Authorative Party: Ari Archer
Email: ari@ari.lt
Matrix: @ari:ari.lt
XMPP/Jabber: ari@ari.lt
Fediverse: @ari@ak.ari.lt
Contact form: https://ari.lt/#gb
OpenPGP key ID: 4FAD63E936B305906A6C4894A50D5B4B599AF8A2
Ari-web Members
Zayd (administrates and moderates Akkoma)
IRC: zayd on libera.chat
Session (not checked often): 05d790add6647a049f58ce81c80aacc476859880af911cad105cf34fb8757b8872
Signal: https://signal.me/#eu/CDgDVDNMuKpx2BxAwHIcMq2iR3G-gw2XbKOOMm5BAg4XnhVXqHhKtJPvBXCDpwnu
Matrix: @zayd:imagisphe.re
XMPP/Jabber: zayd@telepath.im
Telegram (avoid unless needed): @nsa_employee
Website: https://zayd.fsky.io/
Joseph Winkie (A.K.A. jjj333_p) (moderates parts of Matrix, helps to collect spam for Ari-web email spam protection, moderates XMPP)
Signal: @jjj333_p.69
Telegram: @jjj333_p_1325
Matrix: @jjj333:pain.agency, @jjj333_p_1325:envs.net, @jjj333_p_1325:matrix.org, and more alternative accounts on their website
Phone: +1 (740) 481 1253
XMPP: jjj333@pain.agency
Snapchat: @jjj333_p
Email: jjj333.p.1325@gmail.com
Fediverse: @jjj333_p@ak.ari.lt
Twitter/X: @Jjj333P
Website: https://pain.agency/
LDA (moderates parts of Matrix)
Matrix: @lda:a.freetards.xyz, @fourier:ari.lt
Discord (avoid): ldasux
Fediverse: @lda@masto.doskel.net
XMPP: lda["at&t" without the "&t"]freetards.xyz
Website: https://freetards.xyz/
Morguldir (moderates parts of Matrix)
Matrix: @morguldir:sulian.eu, @morguwuldir:uwu.sulian.eu
Website: https://sulian.eu/
Ari-web Hosters
Alyssa/T1nklas/Al (hosted/semi-managed email Hoster)
Email: alyssa@t1nklas.lt
Fediverse: @lyra@crumb.lt
Website: https://t1nklas.lt/
Lenvx (hosted/semi-managed email Hoster)
Email: hi@lenvx.dev
Fediverse (inactive): @lonely@ak.ari.lt
Website: https://lenvx.dev/
Cubiq (Managed db.cubiq.dev Hoster)
Twitter/X: @CubiqNation
Instagram: @tennajivniblazenztgm
LinkedIn: @jakub-lajsek
Email: jlajsek@gmail.com
Website: https://cubiq.dev/
Collectively, we are called Ari-web. You are an outside party using our free (libre and gratis) and open source services.
# Liability Disclaimer
Ari-web disclaims all liability for any damages, data loss, dissatisfaction, or any other legal liability. You, as an individual user, are solely responsible for your actions, their consequences, and protecting yourself as well as your privacy and security.
In no event shall ari-web be liable for any indirect, special, incidental, or consequential damages related to your use of its services.
# Privacy and Data Protection
Ari-web will make reasonable efforts to protect your privacy unless circumstances call for access termination, transfer, or limitation with or without notice, such as in cases of legal compliance or suspected misuse of services. Ari-web reserves the right to manage your access at its discretion.
# Modifications and Exceptions
Ari-web reserves the right to modify these terms at any time without prior notice. Exceptions to these terms may be granted by the Authoritative party in writing with a digital signature, at their discretion.
# Servers
Processing server 0 (mail.ari.lt)
IPv4: 153.92.126.2
IPv6: 2a0e:dc0:2:11f1::/64 (Primary: 2a0e:dc0:2:11f1::1)
Location: Stockholm, Sweden
ISP: HostHatch
Hardware: 4 AMD EPYC cores (2 dedicated, 2 fair-shared), 16 GB of DDR4 RAM, 75 GB of NVMe storage, 4 TB of network bandwidth
Purpose: Processing of all requests, traffic, and hosting as well as processing of data and services.
Access: Only explicitly allowed traffic is allowed, exposed traffic is rate limited and sometimes strongly authenticated where needed.
Storage server 0 (cdn.ari.lt)
IPv4: 176.126.70.97
Location: Stockholm, Sweden
ISP: HostHatch
Hardware: 1 vCPU core, 1024 MB of RAM, 1000 GB of HDD storage + 20 GB NVMe storage, 2500 GB of network bandwidth.
Purpose: Storing data
Access: Cut off from the rest of the internet except rate limited and strongly autheticated port 22 traffic for SSH.
# Transparency
Ari-web is committed to providing the utmost transparency in its operations and services wherever possible. This commitment includes, but is not limited to, clear communication regarding the use of data, service functionality, and any changes to terms or policies. While Ari-web strives to maintain this level of transparency, it acknowledges that certain circumstances may limit the extent of disclosure. Users are encouraged to reach out with any questions or concerns regarding transparency in the services provided. Ari-web will do their best to notify of changes of ToS, but it is your responsibility to keep up with the changes.
# Services
This table lists all self-hosted software (semi-)open for the public that people are welcome to use.
Service Description Link
Matrix homeserver Semi-open registration, contact register@ari.lt for an account. matrix.ari.lt
XMPP/Jabber server Semi-open registration, contact register@ari.lt for an account. lh/xmpp
Forgejo git forge instance Open registration. git.ari.lt
Email server hosting Mailcow Contact domains@ari.lt for custom domains (aggressive policy). mail.ari.lt (register here) Hosted domains: ari.lt, t1nklas.lt, lenvx.dev, cubiq.dev
Roundcube webmail Only for semi-managed Ari-web email users rc.ari.lt
Akkoma fediverse instance Open registration. ak.ari.lt
SchildiChat & Cinny Matrix web clients Web clients for Matrix. schildi.ari.lt & cinny.ari.lt
PrivateBin instance Private public encrypted pastebin. pb.ari.lt
Private PocketBase instance Private database storage for Github: TheCubiq db.cubiq.dev
Forgejo instance for kappach.at Git forge instance of KappaChat - An extensible Matrix client written in C. git.kappach.at
# Community standards
Abide by United States of America, Lithuanian, and Swedish Laws
Maintain a Healthy Environment
Uphold Human Decency. This includes:
Tolerance.
Ensuring non-discrimination. This covers racism, homophobia, transphobia, sexism, xenophobia, fatphobia, and other negative attitudes.
Avoiding the spread of misinformation and disinformation.
Being responsible and accountable for your actions.
Prohibit the spread of Child Sexual Abuse Material (CSAM), which includes forms such as Lolicon and Shotacon. Additionally, avoid any discussions that might imply a positive view of CSAM or related content.
Respecting other users.
Adhering to other generally accepted norms of behaviour.
Do not share anyone's personal information without their explicit consent (also known as Doxing) - respect privacy of everyone.
Do not engage in activities that infringe on the intellectual property rights of others.
No Spam.
No Harassment or Stalking. Engaging in harassment or stalking of other users is strictly prohibited.
Avoid Harmful Behaviors - do not partake in actions that could harm individuals, jurisdictions, or systems.
Sending sexually explicit or suggestive messages is not allowed.
Follow Admin Guidelines - any behaviour deemed abusive by the administrators will be considered a violation of these guidelines.
# Compliance
Ari-web is committed to complying with the General Data Protection Regulation (GDPR) and the Digital Millennium Copyright Act (DMCA).
It adheres to the principles outlined in the GDPR, ensuring that all personal data is processed lawfully, fairly, and transparently. I collect and process personal data only for specified, legitimate purposes and ensure that such data is accurate, up-to-date, and retained only as long as necessary for those purposes. Users have rights regarding their personal data, including access, rectification, and erasure, which we honor in accordance with GDPR requirements.
It also respects intellectual property rights and complies with the provisions of the DMCA. We have implemented procedures to address any claims of copyright infringement and provide a mechanism for copyright holders to report alleged infringements. We take such claims seriously and will respond promptly to any notices of claimed infringement.
If you see any resource violating the law, GDPR, or DMCA, contact the Authoritative party with all information and full paths and URLs/URIs of the violating content. Without sufficient information, the Authoritative party cannot do anything about the violations.
By using our services, you acknowledge our commitment to these regulations and understand that we will take all necessary steps to ensure compliance with the law, GDPR, and DMCA.
Per GDPR, you are required to be at least the age of digital consent in your jurisdiction to use our services, or have your legal guardians consent to allow digital processing of your data.
Send any DMCA complaints or requests to dmca@ari.lt and any GDPR-related messages to gdpr@ari.lt.
# Logging, privacy, and data processing
By using our services, you agree that any data you send to Ari-web servers to be processed, stored, logged, and served. We reserve to change these policies at any point for genuine interest which includes service functionality, moderation, administration, or allowing extra features with or without prior notice.
You reserve the right to request mass data deletion of any data logged or stored, even if GDPR does not apply in your jurisdiction by simply sending a request to gdpr@ari.lt. Logs are mainly collected for moderation and service stability ensurance.
Service Logged information Stored information Notes
All Your IP address (logs are rotated every 64 days), access URI, authentication attempts, timestamp, response code, and parameters Your IP address (temporarily for up to a week in-memory), all data you sent to be processed and expect it to be stored (such as comments, messages, files, ...), cookies You are responsible for your own privacy by using client-side encryption. Data on Ari-web is mninimally processed, and even though we strive for best privacy and security, we place the responsibility of true privacy so only you see your data by using client-side encryption on you. (See OpenPGP). Your IP may be stored indefinitely if we notice large amount of potentially abusive traffic from you to block your IP address. Most logs are rotated every 64 days.
Matrix (matrix.ari.lt) Error reporting information with nonidenfiable or minimally idenfiable information. All Matrix rooms and events as well as files to be stored, federated or not. Federates the aforementioned events to other servers out of our control due to the nature of the mash nature of the Matrix protocol.
XMPP/Jabber (ari.lt ports 5222, 5269, 5223, 5270, and 5281) Client/server events (federated or not), including (but not limited to) connections and error reporting information. All XMPP events and multi-user chats as well as files to be stored, federated or not. XMPP has a unique way of storing various events, therefore, you are strongly encouraged to use private-only MUCs (multi-user chats) on muc.ari.lt with encryption with OMEMO or OpenPGP.
Git forge (Forgejo at git.ari.lt) Any events or actions taken by You on git Forge, including authenticating, creating repositories, organisations, using runners (actions), deleting repositories, commits, etc. All repositories (private and public) and their data as well as metadata, user profile data, authentication data, prefrences, blocked users, avatars, descriptions, emails, organizations, etc. Git forge is meant to store data like a versioned file store of sort (i.e. Git VCS), therefore, all you send there will be served, to public or not (depending on your prefrences).
Email mailboxes of Ari-web email using Mailcow (mail.ari.lt) All actions performed on email are agressively logged. This includes: Email subject, email headers, rSpamD scan result, ClamAV antivirus results, access and authentication of both email and web UI, sent and received mail, IP address spam statistics, mailbox spam statistics, email (and its body) spam statistics (fuzzy hashes and scores mainly). This ensures full stability and deliverability of the email server. All data related to your email is stored. This includes: IP address, email body, attachments, headers, spam scores and metadata, email threads, WebUI accounts (and their associated data), etc. Even though we try to ensure best security of emails as well as secure access and storage, you are responsible for ensuring your total privacy. We are NOT allowed to invade your privacy unless circumstances call for it, although, to be safe, we suggest public key encryption to be used. See Termination, Limitation, and Transfer for more details.
Semi-managed email using custom domains using Mailcow (goes to mail.ari.lt) All data related to email mailboxes is logged as described above. Although, email hosting with custom domains comes with its own caviates as well, for instance, you may be requested to add DMARC reports support to your domain. All administrator actions will also be logged and stored relating to your custom domain like login attempts, change of settings and rules as well as related events. Mailbox information is stored as described above. Administrator information is stored similarly to mailbox WebUI accounts, including authentication information and various domain-related information such as logs and private keys (like DKIM). You, as the domain administrator, are required to ensure best security practices when using Ari-web email and to not violate the described terms in this document. Your violation of these terms will be considered a breach, therefore, your access will be terminated with notice.
PrivateBin (pb.ari.lt) Logs your paste ID, although, does not log the private key used for encrypting the paste. Encrypted paste information is stored on the paste as sent by the client. When reporting a paste for violating content, please provide us with as much information as possible about the paste, including its ID and private key (all in the URL, which you can just supply to us).
RoundCube webmail (rc.ari.lt) Logs error information. Stores your sessions as well as your password in an encrypted format as well as user prefrences, identities, and other related webmail data.
Matrix clients (schildi.ari.lt and cinny.ari.lt) All data and processing happens client-side.
Akkoma/fediverse instance (ak.ari.lt) All actions taken by administrators are logged as well as errors / warnings / faults related to various parts of the applications. Stores all data sent to the server, federated or not, such as user-generated content (posts, dms), descriptions, content warnings, avatars, alt texts, interractions, tags, avatars, uploads, etc. and federates them to other servers out of our control due to the nature of the mash nature of the ActivityPub protocol.
# Service availability
Ari-web tries to provide the best uptime, although, there is zero guarantee on any sort of service availability in percentage. You get what you get essentially. Although, expect minor downtime monthly or bimonthly for maintenence tasks such as a maintenence reboot or a configuration change. This assumption is not to be construed as a guarantee.
Ari-web disclaims any liability for service interruptions or downtime, and users acknowledge that they are using the services at their own risk.
# Termination, Limitation, and Transfer
Ari-web reserves the right to terminate, limit, or transfer services, infrastructure, or general access in certain circumstances, as outlined below:
Termination or Limitation of Services: ari-web may terminate or limit services if Ari-web deems the service too difficult to control or moderate, or if a constant pattern of violations or one extreme and severe violation is detected. For individuals, services may be terminated without notice if they continue to violate the terms of service or engage in behaviour that Ari-web considers unacceptable. Such decisions will be based on the outlines in this document as well as Ari-web interpretation of this document and their own discretion.
Transfer of Services: Ari-web will only transfer access to services in two scenarios:
User-Requested Transfer: Upon proof of identity, a user may request a transfer of their service to another party.
Legal Compliance Transfer: The Authoritative party may be required by law to transfer access to a user's service, with or without notice, to legal authorities.
In both cases, the Authoritative party reserves the right to make the final determination regarding the transfer of services based on their interpretation of the law and the circumstances surrounding the request.
Users acknowledge and agree that the Authoritative party's decisions regarding service termination, limitation, and transfer are final and not subject to appeal or legal action.
# Governing law
Ari-web and its services are subject to the laws of the United States of America, Lithuania, and Sweden. Users acknowledge that these jurisdictions govern the use of ari-web services and any disputes that may arise in connection with them. This statement is intended to clarify the legal framework applicable to the services offered by ari-web and does not create any binding obligations beyond this acknowledgment.
We are also subject to the terms of HostHatch which you can read at:
https://hosthatch.com/terms-of-service
https://hosthatch.com/acceptable-use-policy
https://hosthatch.com/privacy-policy
# Affiliations
Any member (volunteer) considered an Ari-web member (volunteer) is affiliated with Ari-web in a way where they are related and working on making Ari-web a better place for everyone at their own discretion. Furthermore, Ari-web as a non-legally-formed organization of individuals, cannot be affiliated with any legal entities. Affiliations are handled by the Authorative party inidividually, and all benifits from that affiliation will be used at the Authorative party's discretion whether it be by using it to support Ari-web, other projects, or for personal use.
All affiliate content on Ari-web share a part of the Ari-web license set, which usually includes copyright to the Authorative party provided by licenses such as MIT, GPL, AGPL, BSD, or CC-BY-SA, or no copyright at all as provided by public domain licenses such as Unlicense, CC0, or WTFPL. Ari-web shalt never produce proprietary assets licensed under a proprietary license with greatly restricts others' ability to copy, modify, publish, use, compile, or distribute parts or full of it in source code form.
# Finances
Ari-web is fully funded by the Authoritative party and volunteer donations by Cryptocurrency. This includes:
Personal finances
Monero (XMR) donations through address 451VZy8FPDXCVvKWkq5cby3V24ApLnjaTdwDgKG11uqbUJYjxQWZVKiiefi4HvFd7haeUtGFRBaxgKNTr3vR78pkMzgJaAZ (OpenAlias: xmr@ari.lt)
Litecoin (LTC) donations through address ltc1qfmx6hvyfrphsp0uu29fjwzrqdpt8vse8p5xxh3 (OpenAlias: ltc@ari.lt)
Nobody shall ever, unless a change of status in Ari-web, be forced to pay for a publicly available service to use it unless it is by their own discretion through direct (monetary, which are logged in a public donation log) or indirect (code and help) donations.
Ari-web, as a project almost exclussively out of the Authoritative party's pocket, costs as follows:
Purpose Payment model Annual cost
Processing server 0 (mail.ari.lt) Quarterly ($45/qr) $180/yr
Storage server 0 (cdn.ari.lt) Quarterly ($15/qr) $60/yr
Domain (ari.lt) Annual ($12.58/yr) ~$13/yr
Total ~$253 ±$20 (for misc. costs and taxes)
These costs do not include labour costs as well as various mishaps. We spend a lot of effort and time trying to maintain Ari-web a clean, nice, and stable place as much as it is in our power, while maintaining best security and community.
By continuing to use ari-web's services, you agree to be bound by these terms and acknowledge Ari-web's right to enforce them as needed. You understand and accept that Ari-web is not a legal entity or company, but rather a service provided by a random person. As such, the terms outlined in this document are non-binding and subject to change without notice.
Ari-web reserves the right to enforce these terms as deemed necessary, but makes no guarantees regarding the consistency or enforceability of the policies described herein. Users are advised to use Ari-web's services at their own risk and discretion with common sense.
By continuing to access and use Ari-web services, you signify your understanding and acceptance of these terms. If you do not agree with the terms, you are advised to discontinue using Ari-web services immediately and/or request a permenant data deletion by sending a request to bye@ari.lt.
meow :3
The source code and all content, except the Nerd Hack font (see Nerd Hack font license), are licensed under the AGPL-3.0-or-later by Ari Archer <ari@ari.lt> as a part of the ari-web project. Copyright 2020-2024.

0
src/static/tos.txt → src/static/old-tos.txt
View file

13
src/templates/index.j2
View file

@ -263,7 +263,7 @@
<li><a target="_blank" rel="noopener noreferrer" href="{{ url_for("views.dotfiles") }}">My dotfiles (redirect)</a></li>
<li><a target="_blank" rel="noopener noreferrer" href="{{ url_for("views.gh") }}">My main Git account (redirect)</a></li>
<li><a target="_blank" rel="noopener noreferrer" href="{{ url_for("views.lh") }}">Main Ari.lt organization (redirect)</a></li>
<li><a href="{{ url_for("views.tos" ) }}">General guidelines (Terms of Service) of ari.lt</a></li>
<li><a href="{{ url_for("views.legal" ) }}">Legal framework of ari.lt</a></li>
</ul>
</div>
@ -428,12 +428,12 @@
</tr>
<tr>
<td>Matrix homeserver</td>
<td>Semi-open registration, follow the process described <a href="{{ url_for('views.page', p='matrix') }}" target="_blank" rel="noopener noreferrer">here</a>.</td>
<td>Semi-open registration, contact <a href="mailto:register@ari.lt">register@ari.lt</a> for an account.</td>
<td><a href="https://matrix.ari.lt/" target="_blank" rel="noopener noreferrer">matrix.ari.lt</a></td>
</tr>
<tr>
<td>XMPP/Jabber server</td>
<td>Semi-open registration, follow the process described <a href="{{ url_for('views.page', p='xmpp') }}" target="_blank" rel="noopener noreferrer">here</a>.</td>
<td>Semi-open registration, contact <a href="mailto:register@ari.lt">register@ari.lt</a> for an account.</td>
<td><a href="{{ url_for("views.lh", _="xmpp") }}" target="_blank" rel="noopener noreferrer">lh/xmpp</a></td>
</tr>
<tr>
@ -448,7 +448,7 @@
</tr>
<tr>
<td>Roundcube webmail</td>
<td>Only for ari.lt users</td>
<td>Only for semi-managed Ari-web email users</td>
<td><a href="https://rc.ari.lt/" target="_blank" rel="noopener noreferrer">rc.ari.lt</a></td>
</tr>
<tr>
@ -471,11 +471,6 @@
<td>Private database storage for <a href="https://github.com/TheCubiq/" target="_blank" rel="noopener noreferrer">Github: TheCubiq</a></td>
<td><a href="https://db.cubiq.dev/" target="_blank" rel="noopener noreferrer">db.cubiq.dev</a></td>
</tr>
<tr>
<td>t1nklas.lt's email</td>
<td>Custom domain on ari-web email</td>
<td><a href="https://t1nklas.lt/" target="_blank" rel="noopener noreferrer">t1nklas.lt</a></td>
</tr>
<tr>
<td>Forgejo instance for <a href="https://kappach.at/" target="_blank" rel="noopener noreferrer">kappach.at</a></td>
<td>Git forge instance of KappaChat - An extensible Matrix client written in C.</td>

644
src/templates/legal.j2 Normal file
View file

@ -0,0 +1,644 @@
{% extends "base.j2" %}
{% block title %}Legal{% endblock %}
{% block description %}Legal information of ari-web.{% endblock %}
{% block keywords %}ari::web, services, foss services, homepage, portfolio, resume, matrix, says, https, email, guestbook, illegal lgbt propaganda, legal, privacy policy, privacy, logging, gdpr, dmca{% endblock %}
{% block head %}
<link rel="stylesheet" href="{{ url_for("static", filename="fonts/Hack.css") }}" type="text/css" referrerpolicy="no-referrer" />
<link rel="stylesheet" href="{{ url_for("static", filename="css/index.css") }}" type="text/css" referrerpolicy="no-referrer" />
<script type="text/javascript">
<!--//--><![CDATA[//><!--
/**
* @licstart The following is the entire license notice for the JavaScript
* code in this page.
*
* Copyright (C) 2024 Ari Archer
*
* The JavaScript code in this page is free software: you can redistribute
* it and/or modify it under the terms of the GNU Affero General Public License
* (AGPL) as published by the Free Software Foundation, either version 3
* of the License, or (at your option) any later version. The code is
* distributed WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the AGPL
* for more details.
*
* As additional permission under AGPL version 3 section 7, you may
* distribute non-source (e.g., minimized or compacted) forms of that code
* without the copy of the AGPL normally required by section 4, provided
* you include this license notice and a URL through which recipients can
* access the Corresponding Source.
*
* @licend The above is the entire license notice for the JavaScript code
* in this page.
*/
//--><!]]>
</script>
<script src="{{ url_for("static", filename="js/particles.js") }}" referrerpolicy="no-referrer" defer></script>
{% endblock %}
{% block header %}
<h1>Legal information of Ari-web</h1>
{% endblock %}
{% block main %}
<p>
This is the legal information of ari-web which covers topics such as logging policy,
privacy policy, data control, data control compliance, as well as other legal aspects
when it comes to using ari-web services. By using or requesting to use any ari-web services
you agree to the legal framework outlined in this document, and agree to keep yourself updated
with or without notice.
</p>
<p>
This document serves as an agreement between you and Ari-web parties, regarding the use and management of Ari-web's services.
It outlines the expectations, responsibilities, and limitations for both parties.
</p>
<ul>
<li>Last updated: 2024-11-25 (YYYY-MM-DD)</li>
<li>
OpenPGP signture of this document by the <a href="{{ url_for("views.pgp") }}">Authorative party's OpenPGP key</a>: <a href="{{ url_for("static", filename="legal.sig") }}">legal.sig</a>
(Note: Only the text content is what was signed in <a href="{{ url_for("static", filename="legal.txt") }}">legal.txt</a>)
</li>
</ul>
<h2 id="parties"><a href="#parties">#</a> Involved Parties</h2>
<p>
Ari-web, albeit mainly a single-person curated project by the authority party,
has multiple members separated into three authority layers: Authorative Party
(the party/-ies who make and finalize decisions as well as handling most of the project),
Members (which may have the say in Authorative Party's decisions as well as have
volunteer responsibilities on the project), and Hosters (which may use or host services
on Ari-web managed servers as per decision of the Authorative Party).
</p>
<p>
Full list of the parties involved:
</p>
<ul>
<li>
Authorative Party: Ari Archer
<ul>
<li>Email: <a href="mailto:ari@ari.lt">ari@ari.lt</a></li>
<li>Matrix: <a href="https://matrix.to/#/@ari:ari.lt">@ari:ari.lt</a></li>
<li>XMPP/Jabber: <a href="xmpp:ari@ari.lt">ari@ari.lt</a></li>
<li>Fediverse: <a href="https://ak.ari.lt/ari">@ari@ak.ari.lt</a></li>
<li>Contact form: <a href="https://ari.lt/#gb">https://ari.lt/#gb</a></li>
<li>OpenPGP key ID: <a href="https://ari.lt/4FAD63E936B305906A6C4894A50D5B4B599AF8A2.asc">4FAD63E936B305906A6C4894A50D5B4B599AF8A2</a></li>
</ul>
</li>
<li>
Ari-web Members
<ul>
<li>
Zayd (administrates and moderates Akkoma)
<ul>
<li>IRC: zayd on libera.chat</li>
<li>Session (not checked often): 05d790add6647a049f58ce81c80aacc476859880af911cad105cf34fb8757b8872</li>
<li>Signal: <a href="https://signal.me/#eu/CDgDVDNMuKpx2BxAwHIcMq2iR3G-gw2XbKOOMm5BAg4XnhVXqHhKtJPvBXCDpwnu">https://signal.me/#eu/CDgDVDNMuKpx2BxAwHIcMq2iR3G-gw2XbKOOMm5BAg4XnhVXqHhKtJPvBXCDpwnu</a></li>
<li>Matrix: <a href="https://matrix.to/#/@zayd:imagisphe.re">@zayd:imagisphe.re</a></li>
<li>XMPP/Jabber: <a href="xmpp:zayd@telepath.im">zayd@telepath.im</a></li>
<li>Telegram (avoid unless needed): <a href="https://t.me/nsa_employee">@nsa_employee</a></li>
<li>Website: <a href="https://zayd.fsky.io/">https://zayd.fsky.io/</a></li>
</ul>
</li>
<li>
Joseph Winkie (A.K.A. jjj333_p) (moderates parts of Matrix, helps to collect spam for Ari-web email spam protection, moderates XMPP)
<ul>
<li>Signal: <a href="https://signal.me/#eu/r55YrtN-TA9jTN90X9S0uxwAG7h1gi9m6qnwFQfyy4klBJaNwMZMI6wNBqUHsbWq">@jjj333_p.69</a></li>
<li>Telegram: <a href="https://t.me/jjj333_p_1325">@jjj333_p_1325</a></li>
<li>Matrix: @jjj333:pain.agency, @jjj333_p_1325:envs.net, @jjj333_p_1325:matrix.org, and more alternative accounts on <a href="https://pain.agency/">their website</a></li>
<li>Phone: +1 (740) 481 1253</li>
<li>XMPP: <a href="xmpp:jjj333@pain.agency">jjj333@pain.agency</a></li>
<li>Snapchat: <a href="https://t.snapchat.com/nmgUTzne">@jjj333_p</a></li>
<li>Email: <a href="mailto:jjj333.p.1325@gmail.com">jjj333.p.1325@gmail.com</a></li>
<li>Fediverse: <a href="https://ak.ari.lt/jjj333_p">@jjj333_p@ak.ari.lt</a></li>
<li>Twitter/X: <a href="https://twitter.com/Jjj333P">@Jjj333P</a></li>
<li>Website: <a href="https://pain.agency/">https://pain.agency/</a></li>
</ul>
</li>
<li>
LDA (moderates parts of Matrix)
<ul>
<li>Matrix: @lda:a.freetards.xyz, @fourier:ari.lt</li>
<li>Discord (avoid): ldasux</li>
<li>Fediverse: <a href="https://masto.doskel.net/@lda">@lda@masto.doskel.net</a></li>
<li>XMPP: lda["at&amp;t" without the "&amp;t"]freetards.xyz</li>
<li>Website: <a href="https://freetards.xyz/">https://freetards.xyz/</a></li>
</ul>
</li>
<li>
Morguldir (moderates parts of Matrix)
<ul>
<li>Matrix: @morguldir:sulian.eu, @morguwuldir:uwu.sulian.eu</li>
<li>Website: <a href="https://sulian.eu/">https://sulian.eu/</a></li>
</ul>
</li>
</ul>
</li>
<li>
Ari-web Hosters
<ul>
<li>
Alyssa/T1nklas/Al (hosted/semi-managed email Hoster)
<ul>
<li>Email: <a href="mailto:alyssa@t1nklas.lt">alyssa@t1nklas.lt</a></li>
<li>Fediverse: <a href="https://crumb.lt/lyra">@lyra@crumb.lt</a></li>
<li>Website: <a href="https://t1nklas.lt/">https://t1nklas.lt/</a></li>
</ul>
</li>
<li>
Lenvx (hosted/semi-managed email Hoster)
<ul>
<li>Email: <a href="mailto:hi@lenvx.dev">hi@lenvx.dev</a></li>
<li>Fediverse (inactive): <a href="https://ak.ari.lt/lonely">@lonely@ak.ari.lt</a></li>
<li>Website: <a href="https://lenvx.dev/">https://lenvx.dev/</a></li>
</ul>
</li>
<li>
Cubiq (Managed db.cubiq.dev Hoster)
<ul>
<li>Twitter/X: <a href="https://twitter.com/CubiqNation">@CubiqNation</a></li>
<li>Instagram: <a href="https://www.instagram.com/tennajivniblazenztgm/">@tennajivniblazenztgm</a></li>
<li>LinkedIn: <a href="https://www.linkedin.com/in/jakub-lajsek/">@jakub-lajsek</a></li>
<li>Email: <a href="mailto:jlajsek@gmail.com">jlajsek@gmail.com</a></li>
<li>Website: <a href="https://cubiq.dev/">https://cubiq.dev/</a></li>
</ul>
</li>
</ul>
</li>
</ul>
<p>
Collectively, we are called <b>Ari-web</b>. You are an outside party using our free (libre and gratis) and open source services.
<p>
<h2 id="liability"><a href="#liability">#</a> Liability Disclaimer</h2>
<p>
Ari-web disclaims all liability for any damages, data loss, dissatisfaction, or any other legal liability.
You, as an individual user, are solely responsible for your actions, their consequences, and protecting yourself
as well as your privacy and security.
</p>
<p>
In no event shall ari-web be liable for any indirect, special, incidental, or consequential damages related to your
use of its services.
</p>
<h2 id="privacy"><a href="#privacy">#</a> Privacy and Data Protection</h2>
<p>
Ari-web will make reasonable efforts to protect your privacy unless circumstances call for access termination,
transfer, or limitation with or without notice, such as in cases of legal compliance or suspected misuse of services.
Ari-web reserves the right to manage your access at its discretion.
</p>
<h2 id="modification"><a href="#privacy">#</a> Modifications and Exceptions</h2>
<p>
Ari-web reserves the right to modify these terms at any time without prior notice.
Exceptions to these terms may be granted by the Authoritative party in writing with a digital signature,
at their discretion.
</p>
<h2 id="servers"><a href="#servers">#</a> Servers</h2>
<ul>
<li>
<ul>
Processing server 0 (mail.ari.lt)
<ul>
<li>IPv4: 153.92.126.2</li>
<li>IPv6: 2a0e:dc0:2:11f1::/64 (Primary: 2a0e:dc0:2:11f1::1)</li>
<li>Location: Stockholm, Sweden</li>
<li>ISP: HostHatch</li>
<li>Hardware: 4 AMD EPYC cores (2 dedicated, 2 fair-shared), 16 GB of DDR4 RAM, 75 GB of NVMe storage, 4 TB of network bandwidth</li>
<li>Purpose: Processing of all requests, traffic, and hosting as well as processing of data and services.</li>
<li>Access: Only explicitly allowed traffic is allowed, exposed traffic is rate limited and sometimes strongly authenticated where needed.</li>
</ul>
</ul>
</li>
<li>
<ul>
Storage server 0 (cdn.ari.lt)
<ul>
<li>IPv4: 176.126.70.97</li>
<li>Location: Stockholm, Sweden</li>
<li>ISP: HostHatch</li>
<li>Hardware: 1 vCPU core, 1024 MB of RAM, 1000 GB of HDD storage + 20 GB NVMe storage, 2500 GB of network bandwidth.</li>
<li>Purpose: Storing data</li>
<li>Access: Cut off from the rest of the internet except rate limited and strongly autheticated port 22 traffic for SSH.</li>
</ul>
</ul>
</li>
</ul>
<h2 id="transparency"><a href="#transparency">#</a> Transparency</h2>
<p>
Ari-web is committed to providing the utmost transparency in its operations and services wherever possible.
This commitment includes, but is not limited to, clear communication regarding the use of data, service functionality, and
any changes to terms or policies. While Ari-web strives to maintain this level of transparency,
it acknowledges that certain circumstances may limit the extent of disclosure. Users are encouraged to reach out with any
questions or concerns regarding transparency in the services provided. Ari-web will do their best to notify of changes
of ToS, but it is your responsibility to keep up with the changes.
</p>
<h2 id="services"><a href="#services">#</a> Services</h2>
<p>
This table lists all self-hosted software (semi-)open for the public that people are welcome to use.
</p>
<div align="center">
<table>
<tr>
<th>Service</th>
<th>Description</th>
<th>Link</th>
</tr>
<tr>
<td>Matrix homeserver</td>
<td>Semi-open registration, contact <a href="mailto:register@ari.lt">register@ari.lt</a> for an account.</td>
<td><a href="https://matrix.ari.lt/" target="_blank" rel="noopener noreferrer">matrix.ari.lt</a></td>
</tr>
<tr>
<td>XMPP/Jabber server</td>
<td>Semi-open registration, contact <a href="mailto:register@ari.lt">register@ari.lt</a> for an account.</td>
<td><a href="{{ url_for("views.lh", _="xmpp") }}" target="_blank" rel="noopener noreferrer">lh/xmpp</a></td>
</tr>
<tr>
<td>Forgejo git forge instance</td>
<td>Open registration.</td>
<td><a href="https://git.ari.lt/" target="_blank" rel="noopener noreferrer">git.ari.lt</a></td>
</tr>
<tr>
<td>Email server hosting <a href="https://mailcow.email/" target="_blank" rel="noopener noreferrer">Mailcow</a></td>
<td>Contact <a href="mailto:domains@ari.lt">domains@ari.lt</a> for custom domains (aggressive policy).</td>
<td><a href="https://mail.ari.lt/" target="_blank" rel="noopener noreferrer">mail.ari.lt</a> (<a href="https://mail.ari.lt/signup" target="_blank" rel="noopener noreferrer">register here</a>) Hosted domains: <b>ari.lt, t1nklas.lt, lenvx.dev, cubiq.dev</b></td>
</tr>
<tr>
<td>Roundcube webmail</td>
<td>Only for semi-managed Ari-web email users</td>
<td><a href="https://rc.ari.lt/" target="_blank" rel="noopener noreferrer">rc.ari.lt</a></td>
</tr>
<tr>
<td>Akkoma fediverse instance</td>
<td>Open registration.</td>
<td><a href="https://ak.ari.lt/" target="_blank" rel="noopener noreferrer">ak.ari.lt</a></td>
</tr>
<tr>
<td>SchildiChat &amp; Cinny Matrix web clients</td>
<td>Web clients for Matrix.</td>
<td><a href="https://schildi.ari.lt/" target="_blank" rel="noopener noreferrer">schildi.ari.lt</a> &amp; <a href="https://cinny.ari.lt/" target="_blank" rel="noopener noreferrer">cinny.ari.lt</a></td>
</tr>
<tr>
<td>PrivateBin instance</td>
<td>Private public encrypted pastebin.</td>
<td><a href="https://pb.ari.lt/" target="_blank" rel="noopener noreferrer">pb.ari.lt</a></td>
</tr>
<tr>
<td>Private PocketBase instance</td>
<td>Private database storage for <a href="https://github.com/TheCubiq/" target="_blank" rel="noopener noreferrer">Github: TheCubiq</a></td>
<td><a href="https://db.cubiq.dev/" target="_blank" rel="noopener noreferrer">db.cubiq.dev</a></td>
</tr>
<tr>
<td>Forgejo instance for <a href="https://kappach.at/" target="_blank" rel="noopener noreferrer">kappach.at</a></td>
<td>Git forge instance of KappaChat - An extensible Matrix client written in C.</td>
<td><a href="https://git.kappach.at/" target="_blank" rel="noopener noreferrer">git.kappach.at</a></td>
</tr>
</table>
</div>
<h2 id="community"><a href="#community">#</a> Community standards</h2>
<ol>
<li>Abide by United States of America, Lithuanian, and Swedish Laws</li>
<li>Maintain a Healthy Environment</li>
<li>Uphold Human Decency. This includes:
<ul>
<li>Tolerance.</li>
<li>Ensuring non-discrimination. This covers racism, homophobia, transphobia, sexism, xenophobia, fatphobia, and other negative attitudes.</li>
<li>Avoiding the spread of misinformation and disinformation.</li>
<li>Being responsible and accountable for your actions.</li>
<li>Prohibit the spread of Child Sexual Abuse Material (CSAM), which includes forms such as Lolicon and Shotacon. Additionally, avoid any discussions that might imply a positive view of CSAM or related content.</li>
<li>Respecting other users.</li>
<li>Adhering to other generally accepted norms of behaviour.</li>
</ul>
</li>
<li>Do not share anyone&#39;s personal information without their explicit consent (also known as Doxing) - respect privacy of everyone.</li>
<li>Do not engage in activities that infringe on the intellectual property rights of others.</li>
<li>No Spam.</li>
<li>No Harassment or Stalking. Engaging in harassment or stalking of other users is strictly prohibited.</li>
<li>Avoid Harmful Behaviors - do not partake in actions that could harm individuals, jurisdictions, or systems.</li>
<li>Sending sexually explicit or suggestive messages is not allowed.</li>
<li>Follow Admin Guidelines - any behaviour deemed abusive by the administrators will be considered a violation of these guidelines.</li>
</ol>
<h2 id="compliance"><a href="#compliance">#</a> Compliance</h2>
<p>Ari-web is committed to complying with the General Data Protection Regulation (GDPR) and the Digital Millennium Copyright Act (DMCA).</p>
<p>It adheres to the principles outlined in the GDPR, ensuring that all personal data is processed lawfully, fairly, and transparently.
I collect and process personal data only for specified, legitimate purposes and ensure that such data is accurate, up-to-date, and
retained only as long as necessary for those purposes. Users have rights regarding their personal data, including access,
rectification, and erasure, which we honor in accordance with GDPR requirements.</p>
<p>It also respects intellectual property rights and complies with the provisions of the DMCA. We have implemented procedures to
address any claims of copyright infringement and provide a mechanism for copyright holders to report alleged infringements.
We take such claims seriously and will respond promptly to any notices of claimed infringement.</p>
<p>If you see any resource violating the law, GDPR, or DMCA, contact the Authoritative party with all information and full paths
and URLs/URIs of the violating content. Without sufficient information, the Authoritative party cannot do anything about
the violations.</p>
<p>By using our services, you acknowledge our commitment to these regulations and understand that we will take all necessary steps
to ensure compliance with the law, GDPR, and DMCA.</p>
<p>Per GDPR, you are required to be at least the age of digital consent in your jurisdiction to use our services, or have your
legal guardians consent to allow digital processing of your data.</p>
<p>Send any DMCA complaints or requests to <a href="mailto:dmca@ari.lt">dmca@ari.lt</a> and any GDPR-related messages to <a href="mailto:gdpr@ari.lt">gdpr@ari.lt</a>.</p>
<h2 id="data"><a href="#data">#</a> Logging, privacy, and data processing</h2>
<p>
By using our services, you agree that any data you send to Ari-web servers to be processed, stored, logged, and served.
We reserve to change these policies at any point for genuine interest which includes service functionality, moderation,
administration, or allowing extra features with or without prior notice.
</p>
<p>
You reserve the right to request mass data deletion of any data logged or stored, even if GDPR does not apply in your
jurisdiction by simply sending a request to <a href="mailto:gdpr@ari.lt">gdpr@ari.lt</a>.
Logs are mainly collected for moderation and service stability ensurance.
</p>
<div align="center">
<table>
<tr>
<th>Service</th>
<th>Logged information</th>
<th>Stored information</th>
<th>Notes</th>
</tr>
<tr>
<td>All</td>
<td>Your IP address (logs are rotated every 64 days), access URI, authentication attempts, timestamp, response code, and parameters</td>
<td>Your IP address (temporarily for up to a week in-memory), all data you sent to be processed and expect it to be stored (such as comments, messages, files, ...), cookies</td>
<td>You are responsible for your own privacy by using client-side encryption. Data on Ari-web is mninimally processed, and even though we strive for best privacy and security, we place the responsibility of true privacy so only you see your data by using client-side encryption on you. (See <a href="https://www.openpgp.org/">OpenPGP</a>). Your IP may be stored indefinitely if we notice large amount of potentially abusive traffic from you to block your IP address. Most logs are rotated every 64 days.</td>
</tr>
<tr>
<td>Matrix (matrix.ari.lt)</td>
<td>Error reporting information with nonidenfiable or minimally idenfiable information.</td>
<td>All <a href="https://matrix.org/docs/matrix-concepts/rooms_and_events/">Matrix rooms and events</a> as well as files to be stored, federated or not. Federates the aforementioned events to other servers out of our control due to the nature of the mash nature of the Matrix protocol.</td>
<td></td>
</tr>
<tr>
<td>XMPP/Jabber (ari.lt ports 5222, 5269, 5223, 5270, and 5281)</td>
<td>Client/server events (federated or not), including (but not limited to) connections and error reporting information.</td>
<td>All XMPP events and multi-user chats as well as files to be stored, federated or not.</td>
<td>XMPP has a unique way of storing various events, therefore, you are strongly encouraged to use private-only MUCs (multi-user chats) on muc.ari.lt with encryption with OMEMO or OpenPGP.</td>
</tr>
<tr>
<td>Git forge (Forgejo at git.ari.lt)</td>
<td>Any events or actions taken by You on git Forge, including authenticating, creating repositories, organisations, using runners (actions), deleting repositories, commits, etc.</td>
<td>All repositories (private and public) and their data as well as metadata, user profile data, authentication data, prefrences, blocked users, avatars, descriptions, emails, organizations, etc.</td>
<td>Git forge is meant to store data like a versioned file store of sort (i.e. <a href="https://git-scm.com/">Git VCS</a>), therefore, all you send there will be served, to public or not (depending on your prefrences).</td>
</tr>
<tr>
<td>Email mailboxes of Ari-web email using <a href="https://mailcow.email/">Mailcow</a> (mail.ari.lt)</td>
<td>All actions performed on email are agressively logged. This includes: Email subject, email headers, rSpamD scan result, ClamAV antivirus results, access and authentication of both email and web UI, sent and received mail, IP address spam statistics, mailbox spam statistics, email (and its body) spam statistics (fuzzy hashes and scores mainly). This ensures full stability and deliverability of the email server.</td>
<td>All data related to your email is stored. This includes: IP address, email body, attachments, headers, spam scores and metadata, email threads, WebUI accounts (and their associated data), etc.</td>
<td>Even though we try to ensure best security of emails as well as secure access and storage, you are responsible for ensuring your total privacy. We are <b>NOT</b> allowed to invade your privacy unless circumstances call for it, although, to be safe, we suggest public key encryption to be used. See <a href="#termination">Termination, Limitation, and Transfer</a> for more details.</td>
</tr>
<tr>
<td>Semi-managed email using custom domains using <a href="https://mailcow.email/">Mailcow</a> (goes to mail.ari.lt)</td>
<td>All data related to email mailboxes is logged as described above. Although, email hosting with custom domains comes with its own caviates as well, for instance, you may be requested to add DMARC reports support to your domain. All administrator actions will also be logged and stored relating to your custom domain like login attempts, change of settings and rules as well as related events.</td>
<td>Mailbox information is stored as described above. Administrator information is stored similarly to mailbox WebUI accounts, including authentication information and various domain-related information such as logs and private keys (like DKIM).</td>
<td>You, as the domain administrator, are required to ensure best security practices when using Ari-web email and to not violate the described terms in this document. Your violation of these terms will be considered a breach, therefore, your access will be terminated with notice.</td>
</tr>
<tr>
<td>PrivateBin (pb.ari.lt)</td>
<td>Logs your paste ID, although, does not log the private key used for encrypting the paste.</td>
<td>Encrypted paste information is stored on the paste as sent by the client.</td>
<td>When reporting a paste for violating content, please provide us with as much information as possible about the paste, including its ID and private key (all in the URL, which you can just supply to us).</td>
</tr>
<tr>
<td>RoundCube webmail (rc.ari.lt)</td>
<td>Logs error information.</td>
<td>Stores your sessions as well as your password in an encrypted format as well as user prefrences, identities, and other related webmail data.</td>
<td></td>
</tr>
<tr>
<td>Matrix clients (schildi.ari.lt and cinny.ari.lt)</td>
<td></td>
<td></td>
<td>All data and processing happens client-side.</td>
</tr>
<tr>
<td>Akkoma/fediverse instance (ak.ari.lt)</td>
<td>All actions taken by administrators are logged as well as errors / warnings / faults related to various parts of the applications.</td>
<td>Stores all data sent to the server, federated or not, such as user-generated content (posts, dms), descriptions, content warnings, avatars, alt texts, interractions, tags, avatars, uploads, etc. and federates them to other servers out of our control due to the nature of the mash nature of the ActivityPub protocol.</td>
<td></td>
</tr>
</table>
</div>
<h2 id="availability"><a href="#availability">#</a> Service availability</h2>
<p>
Ari-web tries to provide the best uptime, although, there is zero guarantee on any sort of
service availability in percentage. You get what you get essentially. Although, expect minor
downtime monthly or bimonthly for maintenence tasks such as a maintenence reboot or a configuration
change. This assumption is not to be construed as a guarantee.
</p>
<p>
Ari-web disclaims any liability for service interruptions or downtime, and users acknowledge that they are using
the services at their own risk.
</p>
<h2 id="termination"><a href="#termination">#</a> Termination, Limitation, and Transfer</h2>
<p>
Ari-web reserves the right to terminate, limit, or transfer services, infrastructure, or general access in certain circumstances, as outlined below:
</p>
<p>
Termination or Limitation of Services: ari-web may terminate or limit services if Ari-web deems the service too difficult to control or moderate,
or if a constant pattern of violations or one extreme and severe violation is detected. For individuals, services may be terminated without notice if they continue
to violate the terms of service or engage in behaviour that Ari-web considers unacceptable. Such decisions will be based on the outlines in this document
as well as Ari-web interpretation of this document and their own discretion.
</p>
<p>
Transfer of Services: Ari-web will only transfer access to services in two scenarios:
</p>
<ul>
<li>User-Requested Transfer: Upon proof of identity, a user may request a transfer of their service to another party.</li>
<li>Legal Compliance Transfer: The Authoritative party may be required by law to transfer access to a user&#39;s service, with or without notice, to legal authorities.</li>
</ul>
<p>
In both cases, the Authoritative party reserves the right to make the final determination regarding the transfer of services based on their interpretation
of the law and the circumstances surrounding the request.
</p>
<p>
Users acknowledge and agree that the Authoritative party's decisions regarding service termination, limitation, and transfer are final and not subject
to appeal or legal action.
</p>
<h2 id="law"><a href="#law">#</a> Governing law</h2>
<p>
Ari-web and its services are subject to the laws of the United States of America, Lithuania, and Sweden.
Users acknowledge that these jurisdictions govern the use of ari-web services and any disputes that may arise in connection with them.
This statement is intended to clarify the legal framework applicable to the services offered by ari-web and does not create any
binding obligations beyond this acknowledgment.
</p>
<p>
We are also subject to the terms of HostHatch which you can read at:
</p>
<ul>
<li><a href="https://hosthatch.com/terms-of-service">https://hosthatch.com/terms-of-service</a></li>
<li><a href="https://hosthatch.com/acceptable-use-policy">https://hosthatch.com/acceptable-use-policy</a></li>
<li><a href="https://hosthatch.com/privacy-policy">https://hosthatch.com/privacy-policy</a></li>
</ul>
<h2 id="affiliations"><a href="#affiliations">#</a> Affiliations</h2>
<p>
Any member (volunteer) considered an Ari-web member (volunteer) is affiliated with Ari-web in a way where they are related
and working on making Ari-web a better place for everyone at their own discretion. Furthermore, Ari-web as a non-legally-formed
organization of individuals, cannot be affiliated with any legal entities. Affiliations are handled by the Authorative party
inidividually, and all benifits from that affiliation will be used at the Authorative party's discretion whether it be by
using it to support Ari-web, other projects, or for personal use.
</p>
<p>
All affiliate content on Ari-web share a part of the Ari-web license set, which usually includes copyright to the Authorative party
provided by licenses such as MIT, GPL, AGPL, BSD, or CC-BY-SA, or no copyright at all as provided by public domain licenses such as
Unlicense, CC0, or WTFPL. Ari-web shalt never produce proprietary assets licensed under a proprietary license with greatly restricts others'
ability to copy, modify, publish, use, compile, or distribute parts or full of it in source code form.
</p>
<h2 id="finances"><a href="#finances">#</a> Finances</h2>
<p>Ari-web is fully funded by the Authoritative party and volunteer donations by Cryptocurrency. This includes:</p>
<ul>
<li>Personal finances</li>
<li>Monero (XMR) donations through address 451VZy8FPDXCVvKWkq5cby3V24ApLnjaTdwDgKG11uqbUJYjxQWZVKiiefi4HvFd7haeUtGFRBaxgKNTr3vR78pkMzgJaAZ (OpenAlias: xmr@ari.lt)</li>
<li>Litecoin (LTC) donations through address ltc1qfmx6hvyfrphsp0uu29fjwzrqdpt8vse8p5xxh3 (OpenAlias: ltc@ari.lt)</li>
</ul>
<p>
Nobody shall ever, unless a change of status in Ari-web, be forced to pay for a publicly available service to use it unless it is
by their own discretion through direct (monetary, which are logged in <a href="{{ url_for("views.thanks") }}">a public donation log</a>) or indirect (code and help) donations.
</p>
<p>
Ari-web, as a project almost exclussively out of the Authoritative party's pocket, costs as follows:
</p>
<div align="center">
<table>
<tr>
<th>Purpose</th>
<th>Payment model</th>
<th>Annual cost</th>
</tr>
<tr>
<td>Processing server 0 (mail.ari.lt)</td>
<td>Quarterly ($45/qr)</td>
<td>$180/yr</td>
</tr>
<tr>
<td>Storage server 0 (cdn.ari.lt)</td>
<td>Quarterly ($15/qr)</td>
<td>$60/yr</td>
</tr>
<tr>
<td>Domain (ari.lt)</td>
<td>Annual ($12.58/yr)</td>
<td>~$13/yr</td>
</tr>
<tr>
<td>Total</td>
<td></td>
<td>~$253 ±$20 (for misc. costs and taxes)</td>
</tr>
</table>
</div>
<p>
These costs do not include labour costs as well as various mishaps. We spend a lot of
effort and time trying to maintain Ari-web a clean, nice, and stable place as much as it
is in our power, while maintaining best security and community.
</p>
<hr />
<p>
By continuing to use ari-web's services, you agree to be bound by these terms and acknowledge Ari-web's right
to enforce them as needed. You understand and accept that Ari-web is not a legal entity or company, but rather a service
provided by a random person. As such, the terms outlined in this document are non-binding and subject to change without notice.
</p>
<p>
Ari-web reserves the right to enforce these terms as deemed necessary, but makes no guarantees regarding
the consistency or enforceability of the policies described herein. Users are advised to use Ari-web's services
at their own risk and discretion with common sense.
</p>
<p>
By continuing to access and use Ari-web services, you signify your understanding and acceptance of these
terms. If you do not agree with the terms, you are advised to discontinue using Ari-web services immediately
and/or request a permenant data deletion by sending a request to <a href="mailto:bye@ari.lt">bye@ari.lt</a>.
</p>
{% endblock %}