Privacy Policy

Die neue Datenschutzerklärung nach EU-Datenschutz-Grundverordnung (DSGVO) gilt ab dem 25.05.2018.

This page attempts to describe what personal information dismail.de servers stores about you. If you have any questions, please don't hesitate to contact us.

XMPP

The XMPP Server stores the following data:

The Jabber ID (jid), consisting of user name and domain, used for identifying your account.
The SCRAM-SHA1 hash of the password to your account for authorization when your client connects to the server.
The saved contacts (often called "buddies") of a user, plus information about the visibility between this account and the contacts. This ensures that your buddy list stays the same, no matter which client you are using.
Date and time of account creation and when your account was last used. We use that data to periodically delete unused accounts.
"Offline messages" (that is, messages others send to you while you are offline) are stored until you log in again.
To help detecting automated registrations the IP-Address, username and the registration date are stored for 7 days (web registration) / 21 days (inband registration).
If your client uses XEP-0313: Message Archive Management, your chat messages are stored for 21 days.
If your client uses XEP-0363: HTTP File Upload, your file uploads are stored for at most 31 days. Note that some clients only store an encrypted version of the file.

Additionally, a Jabber client may store data on the server. If that data is accessible to others (like a vCard which contains contact details) or accessible only to you (like configuration settings for a Jabber client) lies in the hand of the client you use.

EMAIL

All emails you send and receive while using our email platform, as well as all contacts, are stored on an encrypted file system.

The email system stores the following data:

Your username and domain.
Your hashed and salted password.
Saved contacts.
SMTP logfiles: Sender, recipient, message ID, and size of every sent and received email. Neither the email content nor its subject line are stored. (Deletion after 3 days.)
IMAP logfiles: Which account has logged in when from which IP address. (Deletion after 3 days.)
Last login date.
Deleted messages stays in your trash for 7 days.
Messages in the spam folder are automatically deleted after 30 days

What happens to that data?

The information about our users are neither being used commercially nor sold or otherwise made available to third parties. No advertisements are being sent to the users of this service.

There exist a few exceptions to that rule: When a user stores data specifically to make it available to others (think of, for example, a stored vCard), it can be retrieved by other users.

The Jabber IDs (JID) or the email address of users will not be published; if a user, however, publishes his/her ID, third parties could use that information to send advertisements to that user. This is not unlikely to occur with the receival of a common mail message through the e-mail transport. The provider of this service specifically forbids using it to send unsolicited (that is, not explicitly requested) ads. However, the provider can not guarantee all users' compliance to this rule.

Messages sent from a user to another one connected to a different server can be sent to the latter entity. How data is being treated at the receiving end can differ from what is described in this document. The same holds true for information the user has selected for display to other users or all users (e.g. information about the online status/the presence).

The Jabber server does not report the IP addresses of users to other users. All communication using the Jabber protocol (XMPP) takes place with the server as a middleman. Clients can, however, exchange IP addresses, for instance before starting a file transfer. The server will neither examine those addresses nor forward them to third parties.

Statistics about the server's load will be derived from collected data. These statistics are anonymous. No information about single persons can be obtained from them.

Backups

The Servers are backuped daily to an encrypted remote location. The data is encrypted before it is send over the wire. The backups are stored for 7 days.

Cookies

The webmailer:

Session Cookie - Used for authentication.
Mobile Theme Cookie - Used if you are using the mobile version of the Webmailer.

The cookies expire at the end of the respective session. This cookies will not be used to track you or compile a user profile. If you wish to delete or disable cookies, you may do so through your individual browser options. More detailed information about cookie management with specific web browsers can be found at the browsers' respective websites.

Transparency report

How often authorities request user data from dismail.de

2018

Total: 2

2017

Total: 0

2016

Total: 0

2015

Total: 0