I disabled the Privacy app on my server, because I don’t see the point of it, if I host a server on prem for myself or even for a company. I mean I know where my server is located. It’s in my appartement next to my desk And I know that I have access to the data, and so does my girlfriend, who’s the only other user
And in a company, the empoloyes shouldn’t store personal data on company servers anyways, and company data is ownd by the company, and the employees hopefully know that admins have access to the data. Or would you add privacy information to a regular company NAS server or to an on prem Exchange server, that your empolyees have to use in order to do their work?
The situation is of course diffrent if you offer Nextcloud accounts on your server as a service to 3rd parties outside of your company.
You do not need index.php . You can deactive/remove it 'htaccess.RewriteBase' => '/', in config/config.php
and sudo -u www-data php occ maintenance:update:htaccess
(it then also works with and without index.php)
Yeah maybe not. But my point is, do they have to know? If they had to know legaly, you would probably include these things in the employment contrac or to your companys work regulations, because most applications don’t offer such a feature. When I open Outlook or mount a NAS share on my company laptop, I don’t see a privacy information tab in Outlook, and there is no text file on the file server, that tells me where this server is located
Anyways, I agree that it is nice. But I thing it is only needed, if Nextcloud itself is the service you offer. But I’m no legal expert.
Yes. And when i open Windows 365, Outlook with email hosted at Microsoft, Google, Apple there is also no location info. I do not know if GDPR Compliance forces to inform the user about the location of the data. https://nextcloud.com/gdpr
But I do think that when it comes to security and privacy, you shouldn’t hide where the data is stored. I think you also have no reason to hide it. It would be more honest with the user to publish it
I don’t think that the employees of a company need to know, where exactley the company data is stored. The company itself should probably know and depending on the industry they operate in and the type of data they store, they may even be legally required to know, respectively, they may not be allowed to use a certain service at all, if the servers are located in a foreign country for example. Whether a provider of such services is obliged to disclose it, I don’t know for sure.
But the problem is that you must resolve the name and then see the corresponding server/provider and/or ASN for more details. Normal users don’t understand this. They probably don’t care either. And in your Nextcloud, they are not informed.
Yeah sure. I don’t say you shouldn’t use it. I just don’t see it as a necessity for home users or internal usage in a company. There are certainly usecases for it. And if I had an expanded user base on my server, I would probably enable it too