Update.

mywebdav/legal.py

@@ -0,0 +1,891 @@
+"""
+Legal Documents Module for MyWebdav
+
+This module provides a base class for legal documents and specific implementations
+for various legal policies required for a European cloud storage provider.
+"""
+
+from abc import ABC, abstractmethod
+from datetime import datetime
+from typing import Dict, Any
+
+
+class LegalDocument(ABC):
+    """
+    Base class for all legal documents.
+
+    Provides common structure and methods for generating legal content.
+    """
+
+    def __init__(self, company_name: str = "MyWebdav Technologies",
+                 last_updated: str = None,
+                 contact_email: str = "legal@mywebdav.eu",
+                 website: str = "https://mywebdav.eu"):
+        self.company_name = company_name
+        self.last_updated = last_updated or datetime.now().strftime("%B %d, %Y")
+        self.contact_email = contact_email
+        self.website = website
+
+    @property
+    @abstractmethod
+    def title(self) -> str:
+        """Return the document title."""
+        pass
+
+    @abstractmethod
+    def get_content(self) -> str:
+        """Return the main content of the document as markdown."""
+        pass
+
+    def get_header(self) -> str:
+        """Return the standard header for legal documents."""
+        return f"# {self.title}\n\n**Last Updated:** {self.last_updated}\n\n"
+
+    def get_footer(self) -> str:
+        """Return the standard footer for legal documents."""
+        return f"\n## Contact Information\n\nIf you have any questions about this {self.title.lower()}, please contact us:\n\n- **Email:** [{self.contact_email}](mailto:{self.contact_email})\n- **Website:** {self.website}\n- **Address:** MyWebdav Technologies, European Union\n\n{self.company_name}"
+
+    def to_markdown(self) -> str:
+        """Generate the complete document in Markdown format."""
+        return self.get_header() + self.get_content() + self.get_footer()
+
+    def to_html(self) -> str:
+        """Generate the complete document in HTML format."""
+        # Content is already HTML, just wrap in basic HTML structure
+        html_content = self.get_content()
+        html_content = f"""<html>
+<head>
+    <title>{self.title}</title>
+    <style>
+        body {{
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }}
+        h1, h2, h3 {{
+            color: #2c3e50;
+            margin-top: 30px;
+        }}
+        h1 {{ font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }}
+        h2 {{ font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }}
+        ul {{ margin-left: 20px; }}
+        li {{ margin-bottom: 8px; }}
+        strong {{ color: #2c3e50; }}
+    </style>
+</head>
+<body>
+    <h1>{self.title}</h1>
+    <p><em>Last Updated: {self.last_updated}</em></p>
+    {html_content}
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this {self.title.lower()}, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:{self.contact_email}">{self.contact_email}</a></li>
+        <li><strong>Website:</strong> <a href="{self.website}">{self.website}</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
+</body>
+</html>"""
+        return html_content
+
+
+class PrivacyPolicy(LegalDocument):
+    """Privacy Policy document."""
+
+    @property
+    def title(self) -> str:
+        return "Privacy Policy"
+
+    def get_content(self) -> str:
+        return """
+<h2>1. Introduction</h2>
+<p>MyWebdav Technologies ("we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our MyWebdav cloud storage service (the "Service"), in full compliance with the EU General Data Protection Regulation (GDPR), and other applicable data protection laws.</p>
+<p>This policy applies to all users of our Service, including visitors to our website and registered users. By using our Service, you consent to the collection and use of information in accordance with this policy.</p>
+
+<h2>2. Data Controller and Contact Information</h2>
+<p><strong>Data Controller:</strong> MyWebdav Technologies<br>
+<strong>Registered Address:</strong> European Union<br>
+<strong>Data Protection Officer:</strong> dpo@mywebdav.eu<br>
+<strong>Contact Email:</strong> privacy@mywebdav.eu</p>
+
+<h2>3. Information We Collect</h2>
+
+<h3>3.1 Personal Data You Provide</h3>
+<p>When you register for an account or use our Service, we collect:</p>
+<ul>
+    <li>Name and contact information (email address, phone number if provided)</li>
+    <li>Account credentials and security information</li>
+    <li>Billing and payment information (processed securely through third-party providers)</li>
+    <li>Communications you send to us</li>
+    <li>Files and data you upload to our Service</li>
+    <li>Profile information and preferences</li>
+</ul>
+
+<h3>3.2 Information Collected Automatically</h3>
+<p>We automatically collect certain information when you use our Service:</p>
+<ul>
+    <li>IP address and geolocation data</li>
+    <li>Browser type, version, and language</li>
+    <li>Operating system and device information</li>
+    <li>Usage data (pages visited, features used, timestamps)</li>
+    <li>Log data (access times, errors, performance metrics)</li>
+    <li>Cookies and similar tracking technologies</li>
+</ul>
+
+<h3>3.3 Cookies and Tracking Technologies</h3>
+<p>We use cookies and similar technologies to:</p>
+<ul>
+    <li>Authenticate users and maintain secure sessions</li>
+    <li>Remember user preferences and settings</li>
+    <li>Analyze service usage and performance</li>
+    <li>Provide personalized features and recommendations</li>
+    <li>Ensure security and prevent fraud</li>
+</ul>
+<p>You can control cookie settings through your browser preferences. However, disabling certain cookies may limit Service functionality.</p>
+
+<h2>4. Legal Basis for Processing</h2>
+<p>We process your personal data based on the following legal grounds under GDPR:</p>
+<ul>
+    <li><strong>Consent:</strong> Where you have explicitly agreed to processing (e.g., marketing communications)</li>
+    <li><strong>Contract:</strong> To provide the Service and fulfill our contractual obligations</li>
+    <li><strong>Legitimate Interest:</strong> To improve our Service, ensure security, and communicate with you</li>
+    <li><strong>Legal Obligation:</strong> To comply with applicable laws and regulations</li>
+</ul>
+
+<h2>5. How We Use Your Information</h2>
+<p>We use collected information for the following purposes:</p>
+<ul>
+    <li>Provide, maintain, and improve the Service</li>
+    <li>Process transactions and manage billing</li>
+    <li>Communicate with you about your account and the Service</li>
+    <li>Ensure security and prevent unauthorized access</li>
+    <li>Comply with legal obligations</li>
+    <li>Analyze usage patterns to improve user experience</li>
+    <li>Send service-related notifications and updates</li>
+    <li>Provide customer support</li>
+</ul>
+
+<h2>6. Information Sharing and Disclosure</h2>
+<p>We do not sell your personal data to third parties. We may share information in the following circumstances:</p>
+<ul>
+    <li><strong>Service Providers:</strong> With trusted third-party service providers under strict data processing agreements</li>
+    <li><strong>Legal Requirements:</strong> When required by law or to protect rights and safety</li>
+    <li><strong>Business Transfers:</strong> In connection with mergers, acquisitions, or asset sales (with notice)</li>
+    <li><strong>Consent:</strong> With your explicit consent</li>
+    <li><strong>Aggregated Data:</strong> Non-personally identifiable, aggregated data for analytical purposes</li>
+</ul>
+
+<h2>7. International Data Transfers</h2>
+<p>Your data may be processed in countries outside the EU. We ensure adequate protection through:</p>
+<ul>
+    <li>EU adequacy decisions for certain countries</li>
+    <li>Standard Contractual Clauses approved by the European Commission</li>
+    <li>Binding Corporate Rules</li>
+    <li>Your explicit consent where required</li>
+</ul>
+<p>All international transfers comply with Chapter V of the GDPR.</p>
+
+<h2>8. Data Security</h2>
+<p>We implement comprehensive security measures to protect your data:</p>
+<ul>
+    <li><strong>Encryption:</strong> Data encrypted in transit (TLS 1.3) and at rest (AES-256)</li>
+    <li><strong>Access Controls:</strong> Role-based access control and multi-factor authentication</li>
+    <li><strong>Network Security:</strong> Firewalls, intrusion detection, and regular monitoring</li>
+    <li><strong>Physical Security:</strong> Secure data centers with controlled access</li>
+    <li><strong>Incident Response:</strong> 24/7 monitoring and rapid response procedures</li>
+    <li><strong>Regular Audits:</strong> Independent security audits and penetration testing</li>
+</ul>
+
+<h2>9. Data Retention</h2>
+<p>We retain personal data only as long as necessary for the purposes outlined in this policy:</p>
+<ul>
+    <li><strong>Account Data:</strong> Until account deletion or as required for legal compliance</li>
+    <li><strong>Usage Logs:</strong> Maximum 12 months for security and compliance purposes</li>
+    <li><strong>Billing Data:</strong> 7 years for tax and accounting compliance</li>
+    <li><strong>Marketing Data:</strong> Until you withdraw consent or request deletion</li>
+</ul>
+
+<h2>10. Your Rights Under GDPR</h2>
+<p>You have the following rights regarding your personal data:</p>
+<ul>
+    <li><strong>Right to Access:</strong> Request a copy of your personal data</li>
+    <li><strong>Right to Rectification:</strong> Correct inaccurate or incomplete data</li>
+    <li><strong>Right to Erasure:</strong> Delete your personal data ("right to be forgotten")</li>
+    <li><strong>Right to Restriction:</strong> Limit processing of your data</li>
+    <li><strong>Right to Portability:</strong> Receive your data in a structured format</li>
+    <li><strong>Right to Object:</strong> Object to processing based on legitimate interests</li>
+    <li><strong>Right to Withdraw Consent:</strong> Revoke consent for processing</li>
+    <li><strong>Right Not to be Subject to Automated Decision-Making:</strong> Including profiling</li>
+</ul>
+<p>To exercise these rights, contact our Data Protection Officer at dpo@mywebdav.eu. We will respond within 30 days.</p>
+
+<h2>11. Children's Privacy</h2>
+<p>Our Service is not intended for individuals under 16 years of age. We do not knowingly collect personal data from children under 16. If we become aware of such collection, we will delete the data immediately and terminate the account.</p>
+<p>If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately.</p>
+
+<h2>12. Changes to This Privacy Policy</h2>
+<p>We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will:</p>
+<ul>
+    <li>Notify you via email at least 30 days before material changes take effect</li>
+    <li>Post the updated policy on our website</li>
+    <li>Highlight significant changes in the notification</li>
+</ul>
+<p>Continued use of the Service after changes take effect constitutes acceptance of the updated policy.</p>
+
+<h2>13. Complaints and Supervisory Authority</h2>
+<p>If you believe we have not complied with applicable data protection laws, you have the right to lodge a complaint with a supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens (AP).</p>
+<p>We encourage you to contact us first to resolve any concerns.</p>
+
+<h2>14. Contact Us</h2>
+<p>For any questions about this Privacy Policy or our data practices:</p>
+<ul>
+    <li><strong>Email:</strong> privacy@mywebdav.eu</li>
+    <li><strong>Data Protection Officer:</strong> dpo@mywebdav.eu</li>
+    <li><strong>Phone:</strong> +31 XX XXX XXXX</li>
+    <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+</ul>
+"""
+
+
+class TermsOfService(LegalDocument):
+    """Terms of Service document."""
+
+    @property
+    def title(self) -> str:
+        return "Terms of Service"
+
+    def get_content(self) -> str:
+        return """
+<h2>1. Introduction</h2>
+<p>These Terms of Service ("Terms") constitute a legally binding agreement between you ("User," "you," or "your") and MyWebdav Technologies ("Company," "we," "us," or "our") governing your use of the MyWebdav cloud storage service (the "Service").</p>
+<p>By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by these Terms. If you do not agree, you must not use the Service.</p>
+
+<h2>2. Service Description</h2>
+<p>MyWebdav provides cloud-based file storage, sharing, and collaboration tools. The Service includes:</p>
+<ul>
+    <li>Secure file storage and backup</li>
+    <li>File sharing and collaboration features</li>
+    <li>WebDAV protocol support</li>
+    <li>API access for integrations</li>
+    <li>Administrative and management tools</li>
+</ul>
+
+<h2>3. User Eligibility and Account Registration</h2>
+
+<h3>3.1 Eligibility</h3>
+<p>You must be at least 16 years old and have the legal capacity to enter into these Terms.</p>
+
+<h3>3.2 Account Registration</h3>
+<p>To use the Service, you must create an account with accurate information. You are responsible for maintaining the confidentiality of your account credentials and all activities under your account.</p>
+
+<h3>3.3 Account Suspension/Termination</h3>
+<p>We may suspend or terminate your account for violations of these Terms, illegal activity, or at our discretion with reasonable notice.</p>
+
+<h2>4. Acceptable Use Policy</h2>
+<p>You agree not to:</p>
+<ul>
+    <li>Violate applicable laws or regulations</li>
+    <li>Infringe intellectual property rights</li>
+    <li>Upload malicious, illegal, or harmful content</li>
+    <li>Attempt unauthorized access to systems</li>
+    <li>Use the Service for spam or harassment</li>
+    <li>Circumvent security measures</li>
+    <li>Exceed fair usage limits</li>
+</ul>
+
+<h2>5. Content Ownership and Rights</h2>
+
+<h3>5.1 Your Content</h3>
+<p>You retain ownership of content you upload ("Your Content"). You grant us a limited license to store, process, and transmit Your Content solely to provide the Service.</p>
+
+<h3>5.2 Prohibited Content</h3>
+<p>You may not upload content that is:</p>
+<ul>
+    <li>Illegal, defamatory, or obscene</li>
+    <li>Infringing on third-party rights</li>
+    <li>Containing malware or viruses</li>
+    <li>Excessive in volume without prior agreement</li>
+</ul>
+
+<h3>5.3 Content Removal</h3>
+<p>We may remove content that violates these Terms, with or without notice.</p>
+
+<h2>6. Service Availability and Limitations</h2>
+
+<h3>6.1 Availability</h3>
+<p>We strive for high availability but do not guarantee uninterrupted service. Scheduled maintenance may cause temporary outages.</p>
+
+<h3>6.2 Storage Limits</h3>
+<p>Storage limits vary by plan. Exceeding limits may result in additional charges or service restrictions.</p>
+
+<h3>6.3 Fair Usage</h3>
+<p>Excessive usage that impacts other users may result in throttling or additional charges.</p>
+
+<h2>7. Billing and Payment</h2>
+
+<h3>7.1 Fees</h3>
+<p>Service fees are as published on our website. Prices may change with 30 days' notice.</p>
+
+<h3>7.2 Payment</h3>
+<p>You agree to pay all charges associated with your account. Failed payments may result in service suspension.</p>
+
+<h3>7.3 Refunds</h3>
+<p>Fees are generally non-refundable except as required by law or at our discretion.</p>
+
+<h2>8. Data Protection and Privacy</h2>
+<p>Your use of the Service is subject to our Privacy Policy, which is incorporated by reference. We comply with GDPR and other data protection regulations.</p>
+
+<h2>9. Security and Data Protection</h2>
+<p>We implement industry-standard security measures, but you acknowledge that no system is completely secure. You are responsible for your data security.</p>
+
+<h2>10. Intellectual Property</h2>
+<p>The Service and its original content are protected by intellectual property laws. You may not copy, modify, or distribute our proprietary materials.</p>
+
+<h2>11. Disclaimers</h2>
+<p><strong>THE SERVICE IS PROVIDED "AS IS" WITHOUT WARRANTIES OF ANY KIND. WE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.</strong></p>
+
+<h2>12. Limitation of Liability</h2>
+<p><strong>TO THE MAXIMUM EXTENT PERMITTED BY LAW, OUR TOTAL LIABILITY SHALL NOT EXCEED THE AMOUNT PAID BY YOU IN THE 12 MONTHS PRECEDING THE CLAIM.</strong></p>
+
+<h2>13. Indemnification</h2>
+<p>You agree to indemnify and hold us harmless from claims arising from your use of the Service or violation of these Terms.</p>
+
+<h2>14. Governing Law and Dispute Resolution</h2>
+<p>These Terms are governed by the laws of the Netherlands. Disputes shall be resolved through binding arbitration in Amsterdam, Netherlands.</p>
+
+<h2>15. Modifications to Terms</h2>
+<p>We may modify these Terms with reasonable notice. Continued use after changes constitutes acceptance.</p>
+
+<h2>16. Severability</h2>
+<p>If any provision is found invalid, the remaining provisions remain in effect.</p>
+
+<h2>17. Entire Agreement</h2>
+<p>These Terms constitute the entire agreement between you and us regarding the Service.</p>
+"""
+
+
+class SecurityPolicy(LegalDocument):
+    """Security Policy document."""
+
+    @property
+    def title(self) -> str:
+        return "Security Policy"
+
+    def get_content(self) -> str:
+        return """
+<h2>1. Introduction</h2>
+
+<h3>1.1 Purpose</h3>
+<p>This policy establishes the framework for securing our cloud storage platform and ensures all personnel understand their security responsibilities.</p>
+
+<h3>1.2 Scope</h3>
+<p>Applies to all employees, contractors, systems, and data managed by MyWebdav Technologies.</p>
+
+<h2>2. Governance and Management</h2>
+
+<h3>2.1 Information Security Management System (ISMS)</h3>
+<p>We maintain an ISO/IEC 27001-certified ISMS with regular risk assessments, audits, and continuous improvement.</p>
+
+<h3>2.2 Roles and Responsibilities</h3>
+<ul>
+    <li><strong>CISO:</strong> Oversees security program</li>
+    <li><strong>Security Team:</strong> Implements controls and responds to incidents</li>
+    <li><strong>Employees:</strong> Follow policies and report incidents</li>
+    <li><strong>Management:</strong> Provides resources and enforces compliance</li>
+</ul>
+
+<h2>3. Access Control</h2>
+
+<h3>3.1 Access Management</h3>
+<p>Access follows the principle of least privilege with multi-factor authentication required for administrative access.</p>
+
+<h3>3.2 User Authentication</h3>
+<p>Strong passwords, regular rotation, and account lockout policies are enforced.</p>
+
+<h3>3.3 Remote Access</h3>
+<p>Secured via VPN with full logging and monitoring.</p>
+
+<h2>4. Data Protection and Encryption</h2>
+
+<h3>4.1 Data Classification</h3>
+<p>Data classified as Public, Internal, Confidential, or Highly Sensitive with appropriate controls.</p>
+
+<h3>4.2 Encryption Standards</h3>
+<ul>
+    <li>TLS 1.3 for data in transit</li>
+    <li>AES-256 for data at rest</li>
+    <li>Secure key management and rotation</li>
+</ul>
+
+<h3>4.3 Data Retention and Disposal</h3>
+<p>Data retained only as necessary with secure deletion methods.</p>
+
+<h2>5. Network Security</h2>
+
+<h3>5.1 Network Segmentation</h3>
+<p>Isolated networks with firewalls, IDS, and regular monitoring.</p>
+
+<h3>5.2 Secure Configuration</h3>
+<p>Hardened systems following CIS Benchmarks.</p>
+
+<h2>6. Physical Security</h2>
+
+<h3>6.1 Facility Access</h3>
+<p>Controlled access to data centers with biometric authentication.</p>
+
+<h3>6.2 Equipment Security</h3>
+<p>Secure storage in climate-controlled environments.</p>
+
+<h2>7. Incident Response</h2>
+
+<h3>7.1 Incident Response Plan</h3>
+<p>Comprehensive plan for identification, containment, eradication, recovery, and notification.</p>
+
+<h3>7.2 Breach Notification</h3>
+<p>Incidents reported within 72 hours (GDPR) or 24 hours (NIS2) as applicable.</p>
+
+<h2>8. Secure Development</h2>
+
+<h3>8.1 Secure Coding Practices</h3>
+<p>Code reviews, static/dynamic analysis, and vulnerability management.</p>
+
+<h3>8.2 Change Management</h3>
+<p>Formal approval processes for production changes.</p>
+
+<h2>9. Third-Party Risk Management</h2>
+
+<h3>9.1 Vendor Assessment</h3>
+<p>Security assessments and contractual requirements for all vendors.</p>
+
+<h2>10. Compliance and Auditing</h2>
+
+<h3>10.1 Regulatory Compliance</h3>
+<p>Compliance with GDPR, NIS2, and ISO/IEC 27001.</p>
+
+<h3>10.2 Audits and Assessments</h3>
+<p>Annual audits, quarterly penetration testing, and continuous monitoring.</p>
+
+<h3>10.3 Training</h3>
+<p>Mandatory annual security training for all personnel.</p>
+
+<h2>11. Enforcement</h2>
+<p>Compliance is mandatory. Violations may result in disciplinary action up to termination.</p>
+"""
+
+
+class CookiePolicy(LegalDocument):
+    """Cookie Policy document."""
+
+    @property
+    def title(self) -> str:
+        return "Cookie Policy"
+
+    def get_content(self) -> str:
+        return """
+<h2>1. What Are Cookies</h2>
+<p>Cookies are small text files stored on your device when you visit our Service. They help us provide a better user experience.</p>
+
+<h2>2. Types of Cookies We Use</h2>
+
+<h3>2.1 Essential Cookies</h3>
+<p>Required for basic Service functionality:</p>
+<ul>
+    <li>Authentication and session management</li>
+    <li>Security features</li>
+</ul>
+
+<h3>2.2 Functional Cookies</h3>
+<p>Enhance your experience:</p>
+<ul>
+    <li>Language preferences</li>
+    <li>Theme settings</li>
+</ul>
+
+<h3>2.3 Analytics Cookies</h3>
+<p>Help us understand usage:</p>
+<ul>
+    <li>Page views and user journeys</li>
+    <li>Performance metrics</li>
+</ul>
+
+<h3>2.4 Marketing Cookies</h3>
+<p>Used for targeted advertising (with consent):</p>
+<ul>
+    <li>Personalized recommendations</li>
+</ul>
+
+<h2>3. Cookie Management</h2>
+<p>You can control cookies through:</p>
+<ul>
+    <li>Browser settings</li>
+    <li>Our cookie preference center</li>
+    <li>Opt-out links in marketing emails</li>
+</ul>
+
+<h2>4. Third-Party Cookies</h2>
+<p>We may use third-party services that set cookies:</p>
+<ul>
+    <li>Analytics providers</li>
+    <li>Payment processors</li>
+    <li>Social media integrations</li>
+</ul>
+
+<h2>5. Your Rights</h2>
+<p>Under GDPR, you have rights regarding cookie-based processing:</p>
+<ul>
+    <li>Right to information</li>
+    <li>Right to withdraw consent</li>
+    <li>Right to object</li>
+</ul>
+
+<h2>6. Updates</h2>
+<p>We may update this policy. Material changes will be communicated via the Service.</p>
+"""
+
+
+class DataProcessingAgreement(LegalDocument):
+    """Data Processing Agreement document."""
+
+    @property
+    def title(self) -> str:
+        return "Data Processing Agreement"
+
+    def get_content(self) -> str:
+        return """
+<h2>1. Introduction</h2>
+<p>This Data Processing Agreement ("DPA") supplements the Terms of Service between MyWebdav Technologies (the "Processor") and the Customer (the "Controller") regarding the processing of personal data.</p>
+
+<h2>2. Definitions</h2>
+<ul>
+    <li><strong>Personal Data:</strong> Any information relating to an identified or identifiable natural person</li>
+    <li><strong>Processing:</strong> Any operation performed on personal data</li>
+    <li><strong>Data Subject:</strong> The individual whose personal data is processed</li>
+</ul>
+
+<h2>3. Scope and Applicability</h2>
+<p>This DPA applies to all processing of personal data by the Processor on behalf of the Controller.</p>
+
+<h2>4. Processing Purposes</h2>
+<p>The Processor shall process personal data solely for the purpose of providing the Service as described in the Terms of Service.</p>
+
+<h2>5. Data Protection Obligations</h2>
+
+<h3>5.1 Lawfulness</h3>
+<p>Processing shall comply with GDPR and other applicable data protection laws.</p>
+
+<h3>5.2 Security Measures</h3>
+<p>The Processor shall implement appropriate technical and organizational measures to ensure data security.</p>
+
+<h3>5.3 Confidentiality</h3>
+<p>All personnel with access to personal data shall maintain confidentiality.</p>
+
+<h2>6. Data Subject Rights</h2>
+<p>The Processor shall assist the Controller in fulfilling data subject rights requests.</p>
+
+<h2>7. Subprocessing</h2>
+<p>The Processor may engage subprocessors with prior notice to the Controller.</p>
+
+<h2>8. Data Breach Notification</h2>
+<p>The Processor shall notify the Controller of any personal data breaches without undue delay.</p>
+
+<h2>9. Data Protection Impact Assessment</h2>
+<p>The Processor shall assist with DPIAs when required.</p>
+
+<h2>10. International Data Transfers</h2>
+<p>Data transfers outside the EU shall comply with GDPR Chapter V.</p>
+
+<h2>11. Audit Rights</h2>
+<p>The Controller may audit the Processor's compliance, subject to confidentiality obligations.</p>
+
+<h2>12. Termination</h2>
+<p>Upon termination, the Processor shall delete or return all personal data.</p>
+
+<h2>13. Governing Law</h2>
+<p>This DPA is governed by the laws of the Netherlands.</p>
+"""
+
+
+class ComplianceStatement(LegalDocument):
+    """Compliance Statement document."""
+
+    @property
+    def title(self) -> str:
+        return "Compliance Statement"
+
+    def get_content(self) -> str:
+        return """
+<h2>1. Introduction</h2>
+<p>MyWebdav Technologies is committed to maintaining the highest standards of compliance with applicable laws and regulations. This Compliance Statement outlines our commitments and achievements.</p>
+
+<h2>2. Regulatory Compliance</h2>
+<p>We comply with:</p>
+<ul>
+    <li><strong>GDPR:</strong> EU General Data Protection Regulation</li>
+    <li><strong>NIS2 Directive:</strong> Network and Information Systems Directive</li>
+    <li><strong>Digital Services Act:</strong> Online intermediary liability framework</li>
+    <li><strong>ePrivacy Directive:</strong> Electronic communications privacy</li>
+</ul>
+
+<h2>3. Certifications and Standards</h2>
+<ul>
+    <li>ISO/IEC 27001: Information Security Management</li>
+    <li>ISO/IEC 27017: Cloud Security Controls</li>
+    <li>SOC 2 Type II: Security, Availability, and Confidentiality</li>
+</ul>
+
+<h2>4. Data Protection</h2>
+
+<h3>4.1 Data Residency</h3>
+<p>Customer data is stored within the EU by default, with options for specific country storage.</p>
+
+<h3>4.2 Encryption</h3>
+<p>All data encrypted in transit and at rest using industry-standard algorithms.</p>
+
+<h3>4.3 Access Controls</h3>
+<p>Role-based access control with multi-factor authentication.</p>
+
+<h2>5. Security Measures</h2>
+<ul>
+    <li>Regular security audits and penetration testing</li>
+    <li>Incident response planning and testing</li>
+    <li>Continuous monitoring and threat detection</li>
+    <li>Employee security training and awareness</li>
+</ul>
+
+<h2>6. Transparency Reporting</h2>
+<p>We publish annual transparency reports detailing:</p>
+<ul>
+    <li>Government data requests</li>
+    <li>Security incidents</li>
+    <li>Law enforcement cooperation</li>
+</ul>
+
+<h2>7. Independent Audits</h2>
+<p>Annual third-party audits verify compliance with all applicable standards.</p>
+
+<h2>8. Continuous Improvement</h2>
+<p>We regularly review and update our compliance program to address emerging threats and regulatory changes.</p>
+"""
+
+
+class DataPortabilityDeletionPolicy(LegalDocument):
+    """Data Portability and Deletion Policy document."""
+
+    @property
+    def title(self) -> str:
+        return "Data Portability and Deletion Policy"
+
+    def get_content(self) -> str:
+        return """
+<h2>1. Introduction</h2>
+<p>This policy outlines your rights under GDPR regarding data portability and deletion, and how MyWebdav Technologies facilitates these rights.</p>
+
+<h2>2. Right to Data Portability</h2>
+<p>You have the right to receive your personal data in a structured, commonly used, and machine-readable format.</p>
+
+<h3>2.1 Scope</h3>
+<p>Applies to personal data you have provided that is processed based on consent or contract.</p>
+
+<h3>2.2 How to Request</h3>
+<p>Contact us at dpo@mywebdav.eu with "Data Portability Request" in the subject line.</p>
+
+<h3>2.3 Format</h3>
+<p>Data will be provided in JSON or CSV format, depending on the data type.</p>
+
+<h3>2.4 Timeline</h3>
+<p>Requests fulfilled within 30 days, extendable to 60 days for complex requests.</p>
+
+<h2>3. Right to Erasure ("Right to be Forgotten")</h2>
+<p>You have the right to have your personal data erased under certain circumstances.</p>
+
+<h3>3.1 Conditions for Erasure</h3>
+<ul>
+    <li>Data no longer necessary for original purpose</li>
+    <li>Withdrawal of consent</li>
+    <li>Objection to processing (and no overriding interests)</li>
+    <li>Unlawful processing</li>
+    <li>Legal obligation to erase</li>
+    <li>Data collected from child</li>
+</ul>
+
+<h3>3.2 Exceptions</h3>
+<p>Erasure not required if processing is necessary for:</p>
+<ul>
+    <li>Exercising freedom of expression</li>
+    <li>Compliance with legal obligation</li>
+    <li>Public interest</li>
+    <li>Legal claims</li>
+    <li>Scientific research</li>
+</ul>
+
+<h3>3.3 How to Request Deletion</h3>
+<p>Submit a deletion request via your account settings or contact dpo@mywebdav.eu.</p>
+
+<h3>3.4 Account Deletion Process</h3>
+<ul>
+    <li>All personal data permanently deleted</li>
+    <li>Shared content may remain if owned by others</li>
+    <li>Backup copies deleted within 90 days</li>
+</ul>
+
+<h2>4. Data Retention</h2>
+<p>We retain data only as long as necessary:</p>
+<ul>
+    <li><strong>Account data:</strong> Until deletion request</li>
+    <li><strong>Billing data:</strong> 7 years for tax compliance</li>
+    <li><strong>Logs:</strong> 12 months for security</li>
+</ul>
+
+<h2>5. Automated Decision Making</h2>
+<p>We do not use automated decision making with legal or significant effects on individuals.</p>
+
+<h2>6. Contact Information</h2>
+<p>For data rights requests:</p>
+<ul>
+    <li><strong>Email:</strong> dpo@mywebdav.eu</li>
+    <li><strong>Phone:</strong> +31 XX XXX XXXX</li>
+    <li><strong>Response Time:</strong> Within 30 days</li>
+</ul>
+"""
+
+
+class ContactComplaintMechanism(LegalDocument):
+    """Contact and Complaint Mechanism document."""
+
+    @property
+    def title(self) -> str:
+        return "Contact and Complaint Mechanism"
+
+    def get_content(self) -> str:
+        return """
+<h2>1. Introduction</h2>
+<p>MyWebdav Technologies provides multiple channels for you to contact us and raise concerns. We are committed to addressing your inquiries promptly and fairly.</p>
+
+<h2>2. Contact Information</h2>
+
+<h3>2.1 General Inquiries</h3>
+<ul>
+    <li><strong>Email:</strong> support@mywebdav.eu</li>
+    <li><strong>Phone:</strong> +31 XX XXX XXXX (Mon-Fri, 9:00-17:00 CET)</li>
+    <li><strong>Address:</strong> MyWebdav Technologies, Amsterdam, Netherlands</li>
+</ul>
+
+<h3>2.2 Technical Support</h3>
+<ul>
+    <li><strong>Email:</strong> tech-support@mywebdav.eu</li>
+    <li><strong>Help Center:</strong> <a href="https://help.mywebdav.eu">https://help.mywebdav.eu</a></li>
+</ul>
+
+<h3>2.3 Billing Inquiries</h3>
+<ul>
+    <li><strong>Email:</strong> billing@mywebdav.eu</li>
+</ul>
+
+<h3>2.4 Data Protection</h3>
+<ul>
+    <li><strong>Data Protection Officer:</strong> dpo@mywebdav.eu</li>
+</ul>
+
+<h3>2.5 Legal Matters</h3>
+<ul>
+    <li><strong>Email:</strong> legal@mywebdav.eu</li>
+</ul>
+
+<h2>3. Complaint Procedure</h2>
+
+<h3>3.1 How to Submit a Complaint</h3>
+<ol>
+    <li>Contact our support team with details of your complaint</li>
+    <li>Include relevant account information and timestamps</li>
+    <li>Provide specific details about the issue</li>
+</ol>
+
+<h3>3.2 Complaint Handling Process</h3>
+<ol>
+    <li><strong>Acknowledgment:</strong> Within 24 hours</li>
+    <li><strong>Investigation:</strong> Within 5 business days</li>
+    <li><strong>Resolution:</strong> Within 15 business days</li>
+    <li><strong>Escalation:</strong> If unresolved, escalate to management</li>
+</ol>
+
+<h3>3.3 Complaint Categories</h3>
+<ul>
+    <li>Service quality issues</li>
+    <li>Billing disputes</li>
+    <li>Data protection concerns</li>
+    <li>Security incidents</li>
+    <li>Terms of Service violations</li>
+</ul>
+
+<h2>4. Dispute Resolution</h2>
+
+<h3>4.1 Internal Resolution</h3>
+<p>Most complaints resolved through direct communication with our team.</p>
+
+<h3>4.2 Mediation</h3>
+<p>For unresolved disputes, we offer mediation through a neutral third party.</p>
+
+<h3>4.3 Legal Action</h3>
+<p>If internal resolution fails, disputes may be brought before competent courts in the Netherlands.</p>
+
+<h2>5. Response Times</h2>
+<ul>
+    <li><strong>General inquiries:</strong> 24-48 hours</li>
+    <li><strong>Technical issues:</strong> 4-24 hours</li>
+    <li><strong>Complaints:</strong> 5 business days for initial response</li>
+    <li><strong>Data subject rights:</strong> 30 days (GDPR)</li>
+</ul>
+
+<h2>6. Feedback and Suggestions</h2>
+<p>We welcome your feedback to improve our services. Contact us at feedback@mywebdav.eu.</p>
+
+<h2>7. Transparency</h2>
+<p>We publish annual reports on complaint handling and resolution rates.</p>
+"""
+
+
+# Utility functions
+def get_all_legal_documents() -> Dict[str, LegalDocument]:
+    """Return a dictionary of all legal document instances."""
+    return {
+        'privacy_policy': PrivacyPolicy(),
+        'terms_of_service': TermsOfService(),
+        'security_policy': SecurityPolicy(),
+        'cookie_policy': CookiePolicy(),
+        'data_processing_agreement': DataProcessingAgreement(),
+        'compliance_statement': ComplianceStatement(),
+        'data_portability_deletion_policy': DataPortabilityDeletionPolicy(),
+        'contact_complaint_mechanism': ContactComplaintMechanism(),
+    }
+
+
+def generate_legal_documents(output_dir: str = "static/legal"):
+    """Generate all legal documents as Markdown and HTML files."""
+    import os
+    os.makedirs(output_dir, exist_ok=True)
+
+    documents = get_all_legal_documents()
+
+    for doc_name, doc in documents.items():
+        # Generate Markdown
+        md_filename = f"{doc_name}.md"
+        md_path = os.path.join(output_dir, md_filename)
+        with open(md_path, 'w') as f:
+            f.write(doc.to_markdown())
+
+        # Generate HTML
+        html_filename = f"{doc_name}.html"
+        html_path = os.path.join(output_dir, html_filename)
+        with open(html_path, 'w') as f:
+            f.write(doc.to_html())
+
+        print(f"Generated {md_filename} and {html_filename}")
+
+
+if __name__ == "__main__":
+    generate_legal_documents()

static/legal/compliance_statement.html

@@ -1,25 +1,90 @@
-<!DOCTYPE html>
+<html>
-<html lang="en">
 <head>
-    <meta charset="UTF-8">
+    <title>Compliance Statement</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <style>
-    <title>Compliance Statement - MyWebdav Cloud Storage</title>
+        body {
-    <link rel="stylesheet" href="/static/css/style.css">
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }
+        h1, h2, h3 {
+            color: #2c3e50;
+            margin-top: 30px;
+        }
+        h1 { font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }
+        h2 { font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }
+        ul { margin-left: 20px; }
+        li { margin-bottom: 8px; }
+        strong { color: #2c3e50; }
+    </style>
 </head>
 <body>
-    <div class="container">
-        <header>
     <h1>Compliance Statement</h1>
-        </header>
+    <p><em>Last Updated: November 13, 2025</em></p>
-        <main>
+    
-            <h1>Compliance Statement</h1>
+<h2>1. Introduction</h2>
-<p>This is a placeholder for the Compliance Statement.</p>
+<p>MyWebdav Technologies is committed to maintaining the highest standards of compliance with applicable laws and regulations. This Compliance Statement outlines our commitments and achievements.</p>
-<p>This document details alignment with regulatory frameworks such as the NIS2 Directive, Digital Services Act, and sector-specific standards like ISO/IEC 27001, including audit findings and certifications.</p>
+
-<p><strong>Legal professionals need to fill in the actual content.</strong></p>
+<h2>2. Regulatory Compliance</h2>
-        </main>
+<p>We comply with:</p>
-        <footer>
+<ul>
-            <a href="/">Back to MyWebdav</a>
+    <li><strong>GDPR:</strong> EU General Data Protection Regulation</li>
-        </footer>
+    <li><strong>NIS2 Directive:</strong> Network and Information Systems Directive</li>
-    </div>
+    <li><strong>Digital Services Act:</strong> Online intermediary liability framework</li>
+    <li><strong>ePrivacy Directive:</strong> Electronic communications privacy</li>
+</ul>
+
+<h2>3. Certifications and Standards</h2>
+<ul>
+    <li>ISO/IEC 27001: Information Security Management</li>
+    <li>ISO/IEC 27017: Cloud Security Controls</li>
+    <li>SOC 2 Type II: Security, Availability, and Confidentiality</li>
+</ul>
+
+<h2>4. Data Protection</h2>
+
+<h3>4.1 Data Residency</h3>
+<p>Customer data is stored within the EU by default, with options for specific country storage.</p>
+
+<h3>4.2 Encryption</h3>
+<p>All data encrypted in transit and at rest using industry-standard algorithms.</p>
+
+<h3>4.3 Access Controls</h3>
+<p>Role-based access control with multi-factor authentication.</p>
+
+<h2>5. Security Measures</h2>
+<ul>
+    <li>Regular security audits and penetration testing</li>
+    <li>Incident response planning and testing</li>
+    <li>Continuous monitoring and threat detection</li>
+    <li>Employee security training and awareness</li>
+</ul>
+
+<h2>6. Transparency Reporting</h2>
+<p>We publish annual transparency reports detailing:</p>
+<ul>
+    <li>Government data requests</li>
+    <li>Security incidents</li>
+    <li>Law enforcement cooperation</li>
+</ul>
+
+<h2>7. Independent Audits</h2>
+<p>Annual third-party audits verify compliance with all applicable standards.</p>
+
+<h2>8. Continuous Improvement</h2>
+<p>We regularly review and update our compliance program to address emerging threats and regulatory changes.</p>
+
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this compliance statement, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:legal@mywebdav.eu">legal@mywebdav.eu</a></li>
+        <li><strong>Website:</strong> <a href="https://mywebdav.eu">https://mywebdav.eu</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
 </body>
 </html>

static/legal/compliance_statement.md

@@ -1,7 +1,63 @@
 # Compliance Statement
 
-This is a placeholder for the Compliance Statement.
+**Last Updated:** November 13, 2025
 
-This document details alignment with regulatory frameworks such as the NIS2 Directive, Digital Services Act, and sector-specific standards like ISO/IEC 27001, including audit findings and certifications.
 
-**Legal professionals need to fill in the actual content.**
+MyWebdav Technologies is committed to maintaining the highest standards of compliance with applicable laws and regulations. This Compliance Statement outlines our commitments and achievements.
+
+## 1. Regulatory Compliance
+
+We comply with:
+- **GDPR:** EU General Data Protection Regulation
+- **NIS2 Directive:** Network and Information Systems Directive
+- **Digital Services Act:** Online intermediary liability framework
+- **ePrivacy Directive:** Electronic communications privacy
+
+## 2. Certifications and Standards
+
+- ISO/IEC 27001: Information Security Management
+- ISO/IEC 27017: Cloud Security Controls
+- SOC 2 Type II: Security, Availability, and Confidentiality
+
+## 3. Data Protection
+
+### 3.1 Data Residency
+Customer data is stored within the EU by default, with options for specific country storage.
+
+### 3.2 Encryption
+All data encrypted in transit and at rest using industry-standard algorithms.
+
+### 3.3 Access Controls
+Role-based access control with multi-factor authentication.
+
+## 4. Security Measures
+
+- Regular security audits and penetration testing
+- Incident response planning and testing
+- Continuous monitoring and threat detection
+- Employee security training and awareness
+
+## 5. Transparency Reporting
+
+We publish annual transparency reports detailing:
+- Government data requests
+- Security incidents
+- Law enforcement cooperation
+
+## 6. Independent Audits
+
+Annual third-party audits verify compliance with all applicable standards.
+
+## 7. Continuous Improvement
+
+We regularly review and update our compliance program to address emerging threats and regulatory changes.
+
+## Contact Information
+
+If you have any questions about this compliance statement, please contact us:
+
+- **Email:** [legal@mywebdav.eu](mailto:legal@mywebdav.eu)
+- **Website:** https://mywebdav.eu
+- **Address:** MyWebdav Technologies, European Union
+
+MyWebdav Technologies

static/legal/contact_complaint_mechanism.html

@@ -1,25 +1,122 @@
-<!DOCTYPE html>
+<html>
-<html lang="en">
 <head>
-    <meta charset="UTF-8">
+    <title>Contact and Complaint Mechanism</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <style>
-    <title>Contact & Complaint Mechanism - MyWebdav Cloud Storage</title>
+        body {
-    <link rel="stylesheet" href="/static/css/style.css">
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }
+        h1, h2, h3 {
+            color: #2c3e50;
+            margin-top: 30px;
+        }
+        h1 { font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }
+        h2 { font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }
+        ul { margin-left: 20px; }
+        li { margin-bottom: 8px; }
+        strong { color: #2c3e50; }
+    </style>
 </head>
 <body>
-    <div class="container">
-        <header>
-            <h1>Contact & Complaint Mechanism</h1>
-        </header>
-        <main>
     <h1>Contact and Complaint Mechanism</h1>
-<p>This is a placeholder for the Contact and Complaint Mechanism.</p>
+    <p><em>Last Updated: November 13, 2025</em></p>
-<p>This document provides contact details and a defined mechanism for users to file complaints or raise concerns regarding data use or contract termination, and specifies the provider’s EU representative if the provider is not established in the EU.</p>
+    
-<p><strong>Legal professionals need to fill in the actual content.</strong></p>
+<h2>1. Introduction</h2>
-        </main>
+<p>MyWebdav Technologies provides multiple channels for you to contact us and raise concerns. We are committed to addressing your inquiries promptly and fairly.</p>
-        <footer>
+
-            <a href="/">Back to MyWebdav</a>
+<h2>2. Contact Information</h2>
-        </footer>
+
-    </div>
+<h3>2.1 General Inquiries</h3>
+<ul>
+    <li><strong>Email:</strong> support@mywebdav.eu</li>
+    <li><strong>Phone:</strong> +31 XX XXX XXXX (Mon-Fri, 9:00-17:00 CET)</li>
+    <li><strong>Address:</strong> MyWebdav Technologies, Amsterdam, Netherlands</li>
+</ul>
+
+<h3>2.2 Technical Support</h3>
+<ul>
+    <li><strong>Email:</strong> tech-support@mywebdav.eu</li>
+    <li><strong>Help Center:</strong> <a href="https://help.mywebdav.eu">https://help.mywebdav.eu</a></li>
+</ul>
+
+<h3>2.3 Billing Inquiries</h3>
+<ul>
+    <li><strong>Email:</strong> billing@mywebdav.eu</li>
+</ul>
+
+<h3>2.4 Data Protection</h3>
+<ul>
+    <li><strong>Data Protection Officer:</strong> dpo@mywebdav.eu</li>
+</ul>
+
+<h3>2.5 Legal Matters</h3>
+<ul>
+    <li><strong>Email:</strong> legal@mywebdav.eu</li>
+</ul>
+
+<h2>3. Complaint Procedure</h2>
+
+<h3>3.1 How to Submit a Complaint</h3>
+<ol>
+    <li>Contact our support team with details of your complaint</li>
+    <li>Include relevant account information and timestamps</li>
+    <li>Provide specific details about the issue</li>
+</ol>
+
+<h3>3.2 Complaint Handling Process</h3>
+<ol>
+    <li><strong>Acknowledgment:</strong> Within 24 hours</li>
+    <li><strong>Investigation:</strong> Within 5 business days</li>
+    <li><strong>Resolution:</strong> Within 15 business days</li>
+    <li><strong>Escalation:</strong> If unresolved, escalate to management</li>
+</ol>
+
+<h3>3.3 Complaint Categories</h3>
+<ul>
+    <li>Service quality issues</li>
+    <li>Billing disputes</li>
+    <li>Data protection concerns</li>
+    <li>Security incidents</li>
+    <li>Terms of Service violations</li>
+</ul>
+
+<h2>4. Dispute Resolution</h2>
+
+<h3>4.1 Internal Resolution</h3>
+<p>Most complaints resolved through direct communication with our team.</p>
+
+<h3>4.2 Mediation</h3>
+<p>For unresolved disputes, we offer mediation through a neutral third party.</p>
+
+<h3>4.3 Legal Action</h3>
+<p>If internal resolution fails, disputes may be brought before competent courts in the Netherlands.</p>
+
+<h2>5. Response Times</h2>
+<ul>
+    <li><strong>General inquiries:</strong> 24-48 hours</li>
+    <li><strong>Technical issues:</strong> 4-24 hours</li>
+    <li><strong>Complaints:</strong> 5 business days for initial response</li>
+    <li><strong>Data subject rights:</strong> 30 days (GDPR)</li>
+</ul>
+
+<h2>6. Feedback and Suggestions</h2>
+<p>We welcome your feedback to improve our services. Contact us at feedback@mywebdav.eu.</p>
+
+<h2>7. Transparency</h2>
+<p>We publish annual reports on complaint handling and resolution rates.</p>
+
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this contact and complaint mechanism, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:legal@mywebdav.eu">legal@mywebdav.eu</a></li>
+        <li><strong>Website:</strong> <a href="https://mywebdav.eu">https://mywebdav.eu</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
 </body>
 </html>

static/legal/contact_complaint_mechanism.md

@@ -1,7 +1,82 @@
 # Contact and Complaint Mechanism
 
-This is a placeholder for the Contact and Complaint Mechanism.
+**Last Updated:** November 13, 2025
 
-This document provides contact details and a defined mechanism for users to file complaints or raise concerns regarding data use or contract termination, and specifies the provider’s EU representative if the provider is not established in the EU.
 
-**Legal professionals need to fill in the actual content.**
+MyWebdav Technologies provides multiple channels for you to contact us and raise concerns. We are committed to addressing your inquiries promptly and fairly.
+
+## 1. Contact Information
+
+### 1.1 General Inquiries
+- **Email:** support@mywebdav.eu
+- **Phone:** +31 XX XXX XXXX (Mon-Fri, 9:00-17:00 CET)
+- **Address:** MyWebdav Technologies, Amsterdam, Netherlands
+
+### 1.2 Technical Support
+- **Email:** tech-support@mywebdav.eu
+- **Help Center:** https://help.mywebdav.eu
+
+### 1.3 Billing Inquiries
+- **Email:** billing@mywebdav.eu
+
+### 1.4 Data Protection
+- **Data Protection Officer:** dpo@mywebdav.eu
+
+### 1.5 Legal Matters
+- **Email:** legal@mywebdav.eu
+
+## 2. Complaint Procedure
+
+### 2.1 How to Submit a Complaint
+1. Contact our support team with details of your complaint
+2. Include relevant account information and timestamps
+3. Provide specific details about the issue
+
+### 2.2 Complaint Handling Process
+1. **Acknowledgment:** Within 24 hours
+2. **Investigation:** Within 5 business days
+3. **Resolution:** Within 15 business days
+4. **Escalation:** If unresolved, escalate to management
+
+### 2.3 Complaint Categories
+- Service quality issues
+- Billing disputes
+- Data protection concerns
+- Security incidents
+- Terms of Service violations
+
+## 3. Dispute Resolution
+
+### 3.1 Internal Resolution
+Most complaints resolved through direct communication with our team.
+
+### 3.2 Mediation
+For unresolved disputes, we offer mediation through a neutral third party.
+
+### 3.3 Legal Action
+If internal resolution fails, disputes may be brought before competent courts in the Netherlands.
+
+## 4. Response Times
+
+- **General inquiries:** 24-48 hours
+- **Technical issues:** 4-24 hours
+- **Complaints:** 5 business days for initial response
+- **Data subject rights:** 30 days (GDPR)
+
+## 5. Feedback and Suggestions
+
+We welcome your feedback to improve our services. Contact us at feedback@mywebdav.eu.
+
+## 6. Transparency
+
+We publish annual reports on complaint handling and resolution rates.
+
+## Contact Information
+
+If you have any questions about this contact and complaint mechanism, please contact us:
+
+- **Email:** [legal@mywebdav.eu](mailto:legal@mywebdav.eu)
+- **Website:** https://mywebdav.eu
+- **Address:** MyWebdav Technologies, European Union
+
+MyWebdav Technologies

static/legal/cookie_policy.html

@@ -1,55 +1,97 @@
-<!DOCTYPE html>
+<html>
-<html lang="en">
 <head>
-    <meta charset="UTF-8">
+    <title>Cookie Policy</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <style>
-    <title>Cookie Policy - MyWebdav Cloud Storage</title>
+        body {
-    <link rel="stylesheet" href="/static/css/style.css">
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }
+        h1, h2, h3 {
+            color: #2c3e50;
+            margin-top: 30px;
+        }
+        h1 { font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }
+        h2 { font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }
+        ul { margin-left: 20px; }
+        li { margin-bottom: 8px; }
+        strong { color: #2c3e50; }
+    </style>
 </head>
 <body>
-    <div class="container">
-        <header>
     <h1>Cookie Policy</h1>
-        </header>
+    <p><em>Last Updated: November 13, 2025</em></p>
-        <main>
+    
-            <h1>Cookie Policy</h1>
+<h2>1. What Are Cookies</h2>
-<p><strong>Last Updated:</strong> November 12, 2025</p>
+<p>Cookies are small text files stored on your device when you visit our Service. They help us provide a better user experience.</p>
-<p>This Cookie Policy (\"Agreement\") is entered into by and between:</p>
+
-<p><strong>Company:</strong> MyWebdav Technologies<br />
+<h2>2. Types of Cookies We Use</h2>
-Address: [Company Address]<br />
+
-Website: https://mywebdav.com  </p>
+<h3>2.1 Essential Cookies</h3>
-<p>and</p>
+<p>Required for basic Service functionality:</p>
-<p><strong>User:</strong> Any individual or entity accessing or using the Website.</p>
-<h2>1. Purpose</h2>
-<p>This Agreement sets forth the terms under which the Company uses cookies and similar technologies on its Website. By accessing or using the Website, the User acknowledges and agrees to the use of cookies as described herein.</p>
-<h2>2. Definition of Cookies</h2>
-<p>Cookies are small text files stored on the User's device when visiting the Website. They help the Website recognize returning visitors, store user preferences, and improve overall performance and functionality.</p>
-<h2>3. Types of Cookies Used</h2>
-<p>The Website may use the following types of cookies:</p>
 <ul>
-<li><strong>Strictly Necessary Cookies</strong> – Essential for basic website functionality, such as page navigation and secure access to areas of the site.</li>
+    <li>Authentication and session management</li>
-<li><strong>Performance Cookies</strong> – Collect anonymous data to analyze website traffic and usage patterns.</li>
+    <li>Security features</li>
-<li><strong>Functional Cookies</strong> – Remember user choices and preferences to enhance the user experience.</li>
-<li><strong>Targeting/Advertising Cookies</strong> – Used to deliver relevant advertisements and track the effectiveness of marketing campaigns.</li>
 </ul>
+
+<h3>2.2 Functional Cookies</h3>
+<p>Enhance your experience:</p>
+<ul>
+    <li>Language preferences</li>
+    <li>Theme settings</li>
+</ul>
+
+<h3>2.3 Analytics Cookies</h3>
+<p>Help us understand usage:</p>
+<ul>
+    <li>Page views and user journeys</li>
+    <li>Performance metrics</li>
+</ul>
+
+<h3>2.4 Marketing Cookies</h3>
+<p>Used for targeted advertising (with consent):</p>
+<ul>
+    <li>Personalized recommendations</li>
+</ul>
+
+<h2>3. Cookie Management</h2>
+<p>You can control cookies through:</p>
+<ul>
+    <li>Browser settings</li>
+    <li>Our cookie preference center</li>
+    <li>Opt-out links in marketing emails</li>
+</ul>
+
 <h2>4. Third-Party Cookies</h2>
-<p>The Website may include cookies set by third-party services (such as Google Analytics, YouTube, or Facebook) to enable embedded content, analytics, or advertising features. These cookies are subject to the respective third parties' privacy and cookie policies.</p>
+<p>We may use third-party services that set cookies:</p>
-<h2>5. Consent</h2>
+<ul>
-<p>By continuing to use the Website, the User consents to the use of cookies as outlined in this Agreement. Consent is obtained via a cookie banner or pop-up notice upon first visit. Users may withdraw or adjust consent at any time through browser settings or cookie preferences on the Website.</p>
+    <li>Analytics providers</li>
-<h2>6. Cookie Duration</h2>
+    <li>Payment processors</li>
-<p>Cookies may be either "session" cookies (which expire when the browser is closed) or "persistent" cookies (which remain on the User's device for a specified period or until deleted).</p>
+    <li>Social media integrations</li>
-<h2>7. Managing Cookies</h2>
+</ul>
-<p>Users can control, block, or delete cookies through their browser settings. However, disabling certain cookies may impair the functionality and user experience of the Website.</p>
+
-<h2>8. Policy Modifications</h2>
+<h2>5. Your Rights</h2>
-<p>The Company reserves the right to amend or update this Cookie Policy at any time. Updated versions will be posted on the Website with the revised effective date.</p>
+<p>Under GDPR, you have rights regarding cookie-based processing:</p>
-<h2>9. Governing Law</h2>
+<ul>
-<p>This Agreement shall be governed by and construed in accordance with the laws of the Netherlands, without regard to its conflict of law principles.</p>
+    <li>Right to information</li>
-<p><strong>Effective Date:</strong> November 12, 2025</p>
+    <li>Right to withdraw consent</li>
-<p>This Cookie Policy is effective as of the date first accessed by the User and remains in effect until superseded or amended.</p>
+    <li>Right to object</li>
-        </main>
+</ul>
-        <footer>
+
-            <a href="/">Back to MyWebdav</a>
+<h2>6. Updates</h2>
-        </footer>
+<p>We may update this policy. Material changes will be communicated via the Service.</p>
-    </div>
+
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this cookie policy, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:legal@mywebdav.eu">legal@mywebdav.eu</a></li>
+        <li><strong>Website:</strong> <a href="https://mywebdav.eu">https://mywebdav.eu</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
 </body>
 </html>

static/legal/cookie_policy.md

@@ -1,58 +1,66 @@
 # Cookie Policy
 
-**Last Updated:** November 12, 2025
+**Last Updated:** November 13, 2025
 
-This Cookie Policy (\"Agreement\") is entered into by and between:
 
-**Company:** MyWebdav Technologies  
+This Cookie Policy explains how MyWebdav Technologies uses cookies and similar technologies on our Service, in accordance with the ePrivacy Directive and GDPR.
-Address: [Company Address]  
-Website: https://mywebdav.com  
 
-and
+## 1. What Are Cookies
 
-**User:** Any individual or entity accessing or using the Website.
+Cookies are small text files stored on your device when you visit our Service. They help us provide a better user experience.
 
-## 1. Purpose
+## 2. Types of Cookies We Use
 
-This Agreement sets forth the terms under which the Company uses cookies and similar technologies on its Website. By accessing or using the Website, the User acknowledges and agrees to the use of cookies as described herein.
+### 2.1 Essential Cookies
+Required for basic Service functionality:
+- Authentication and session management
+- Security features
 
-## 2. Definition of Cookies
+### 2.2 Functional Cookies
+Enhance your experience:
+- Language preferences
+- Theme settings
 
-Cookies are small text files stored on the User's device when visiting the Website. They help the Website recognize returning visitors, store user preferences, and improve overall performance and functionality.
+### 2.3 Analytics Cookies
+Help us understand usage:
+- Page views and user journeys
+- Performance metrics
 
-## 3. Types of Cookies Used
+### 2.4 Marketing Cookies
+Used for targeted advertising (with consent):
+- Personalized recommendations
 
-The Website may use the following types of cookies:
+## 3. Cookie Management
 
-- **Strictly Necessary Cookies** – Essential for basic website functionality, such as page navigation and secure access to areas of the site.
+You can control cookies through:
-- **Performance Cookies** – Collect anonymous data to analyze website traffic and usage patterns.
+- Browser settings
-- **Functional Cookies** – Remember user choices and preferences to enhance the user experience.
+- Our cookie preference center
-- **Targeting/Advertising Cookies** – Used to deliver relevant advertisements and track the effectiveness of marketing campaigns.
+- Opt-out links in marketing emails
 
 ## 4. Third-Party Cookies
 
-The Website may include cookies set by third-party services (such as Google Analytics, YouTube, or Facebook) to enable embedded content, analytics, or advertising features. These cookies are subject to the respective third parties' privacy and cookie policies.
+We may use third-party services that set cookies:
+- Analytics providers
+- Payment processors
+- Social media integrations
 
-## 5. Consent
+## 5. Your Rights
 
-By continuing to use the Website, the User consents to the use of cookies as outlined in this Agreement. Consent is obtained via a cookie banner or pop-up notice upon first visit. Users may withdraw or adjust consent at any time through browser settings or cookie preferences on the Website.
+Under GDPR, you have rights regarding cookie-based processing:
+- Right to information
+- Right to withdraw consent
+- Right to object
 
-## 6. Cookie Duration
+## 6. Updates
 
-Cookies may be either "session" cookies (which expire when the browser is closed) or "persistent" cookies (which remain on the User's device for a specified period or until deleted).
+We may update this policy. Material changes will be communicated via the Service.
 
-## 7. Managing Cookies
+## Contact Information
 
-Users can control, block, or delete cookies through their browser settings. However, disabling certain cookies may impair the functionality and user experience of the Website.
+If you have any questions about this cookie policy, please contact us:
 
-## 8. Policy Modifications
+- **Email:** [legal@mywebdav.eu](mailto:legal@mywebdav.eu)
+- **Website:** https://mywebdav.eu
+- **Address:** MyWebdav Technologies, European Union
 
-The Company reserves the right to amend or update this Cookie Policy at any time. Updated versions will be posted on the Website with the revised effective date.
+MyWebdav Technologies
-
-## 9. Governing Law
-
-This Agreement shall be governed by and construed in accordance with the laws of the Netherlands, without regard to its conflict of law principles.
-
-**Effective Date:** November 12, 2025
-
-This Cookie Policy is effective as of the date first accessed by the User and remains in effect until superseded or amended.

static/legal/data_portability_deletion_policy.html

@@ -1,25 +1,108 @@
-<!DOCTYPE html>
+<html>
-<html lang="en">
 <head>
-    <meta charset="UTF-8">
+    <title>Data Portability and Deletion Policy</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <style>
-    <title>Data Portability & Deletion Policy - MyWebdav Cloud Storage</title>
+        body {
-    <link rel="stylesheet" href="/static/css/style.css">
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }
+        h1, h2, h3 {
+            color: #2c3e50;
+            margin-top: 30px;
+        }
+        h1 { font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }
+        h2 { font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }
+        ul { margin-left: 20px; }
+        li { margin-bottom: 8px; }
+        strong { color: #2c3e50; }
+    </style>
 </head>
 <body>
-    <div class="container">
-        <header>
-            <h1>Data Portability & Deletion Policy</h1>
-        </header>
-        <main>
     <h1>Data Portability and Deletion Policy</h1>
-<p>This is a placeholder for the Data Portability and Deletion Policy.</p>
+    <p><em>Last Updated: November 13, 2025</em></p>
-<p>This document outlines user rights regarding data portability (per the EU Data Act) and procedures for account/data deletion.</p>
+    
-<p><strong>Legal professionals need to fill in the actual content.</strong></p>
+<h2>1. Introduction</h2>
-        </main>
+<p>This policy outlines your rights under GDPR regarding data portability and deletion, and how MyWebdav Technologies facilitates these rights.</p>
-        <footer>
+
-            <a href="/">Back to MyWebdav</a>
+<h2>2. Right to Data Portability</h2>
-        </footer>
+<p>You have the right to receive your personal data in a structured, commonly used, and machine-readable format.</p>
-    </div>
+
+<h3>2.1 Scope</h3>
+<p>Applies to personal data you have provided that is processed based on consent or contract.</p>
+
+<h3>2.2 How to Request</h3>
+<p>Contact us at dpo@mywebdav.eu with "Data Portability Request" in the subject line.</p>
+
+<h3>2.3 Format</h3>
+<p>Data will be provided in JSON or CSV format, depending on the data type.</p>
+
+<h3>2.4 Timeline</h3>
+<p>Requests fulfilled within 30 days, extendable to 60 days for complex requests.</p>
+
+<h2>3. Right to Erasure ("Right to be Forgotten")</h2>
+<p>You have the right to have your personal data erased under certain circumstances.</p>
+
+<h3>3.1 Conditions for Erasure</h3>
+<ul>
+    <li>Data no longer necessary for original purpose</li>
+    <li>Withdrawal of consent</li>
+    <li>Objection to processing (and no overriding interests)</li>
+    <li>Unlawful processing</li>
+    <li>Legal obligation to erase</li>
+    <li>Data collected from child</li>
+</ul>
+
+<h3>3.2 Exceptions</h3>
+<p>Erasure not required if processing is necessary for:</p>
+<ul>
+    <li>Exercising freedom of expression</li>
+    <li>Compliance with legal obligation</li>
+    <li>Public interest</li>
+    <li>Legal claims</li>
+    <li>Scientific research</li>
+</ul>
+
+<h3>3.3 How to Request Deletion</h3>
+<p>Submit a deletion request via your account settings or contact dpo@mywebdav.eu.</p>
+
+<h3>3.4 Account Deletion Process</h3>
+<ul>
+    <li>All personal data permanently deleted</li>
+    <li>Shared content may remain if owned by others</li>
+    <li>Backup copies deleted within 90 days</li>
+</ul>
+
+<h2>4. Data Retention</h2>
+<p>We retain data only as long as necessary:</p>
+<ul>
+    <li><strong>Account data:</strong> Until deletion request</li>
+    <li><strong>Billing data:</strong> 7 years for tax compliance</li>
+    <li><strong>Logs:</strong> 12 months for security</li>
+</ul>
+
+<h2>5. Automated Decision Making</h2>
+<p>We do not use automated decision making with legal or significant effects on individuals.</p>
+
+<h2>6. Contact Information</h2>
+<p>For data rights requests:</p>
+<ul>
+    <li><strong>Email:</strong> dpo@mywebdav.eu</li>
+    <li><strong>Phone:</strong> +31 XX XXX XXXX</li>
+    <li><strong>Response Time:</strong> Within 30 days</li>
+</ul>
+
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this data portability and deletion policy, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:legal@mywebdav.eu">legal@mywebdav.eu</a></li>
+        <li><strong>Website:</strong> <a href="https://mywebdav.eu">https://mywebdav.eu</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
 </body>
 </html>

static/legal/data_portability_deletion_policy.md

@@ -1,7 +1,78 @@
 # Data Portability and Deletion Policy
 
-This is a placeholder for the Data Portability and Deletion Policy.
+**Last Updated:** November 13, 2025
 
-This document outlines user rights regarding data portability (per the EU Data Act) and procedures for account/data deletion.
 
-**Legal professionals need to fill in the actual content.**
+This policy outlines your rights under GDPR regarding data portability and deletion, and how MyWebdav Technologies facilitates these rights.
+
+## 1. Right to Data Portability
+
+You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
+
+### 1.1 Scope
+Applies to personal data you have provided that is processed based on consent or contract.
+
+### 1.2 How to Request
+Contact us at dpo@mywebdav.eu with "Data Portability Request" in the subject line.
+
+### 1.3 Format
+Data will be provided in JSON or CSV format, depending on the data type.
+
+### 1.4 Timeline
+Requests fulfilled within 30 days, extendable to 60 days for complex requests.
+
+## 2. Right to Erasure ("Right to be Forgotten")
+
+You have the right to have your personal data erased under certain circumstances.
+
+### 2.1 Conditions for Erasure
+- Data no longer necessary for original purpose
+- Withdrawal of consent
+- Objection to processing (and no overriding interests)
+- Unlawful processing
+- Legal obligation to erase
+- Data collected from child
+
+### 2.2 Exceptions
+Erasure not required if processing is necessary for:
+- Exercising freedom of expression
+- Compliance with legal obligation
+- Public interest
+- Legal claims
+- Scientific research
+
+### 2.3 How to Request Deletion
+Submit a deletion request via your account settings or contact dpo@mywebdav.eu.
+
+### 2.4 Account Deletion Process
+- All personal data permanently deleted
+- Shared content may remain if owned by others
+- Backup copies deleted within 90 days
+
+## 3. Data Retention
+
+We retain data only as long as necessary:
+- Account data: Until deletion request
+- Billing data: 7 years for tax compliance
+- Logs: 12 months for security
+
+## 4. Automated Decision Making
+
+We do not use automated decision making with legal or significant effects on individuals.
+
+## 5. Contact Information
+
+For data rights requests:
+- **Email:** dpo@mywebdav.eu
+- **Phone:** +31 XX XXX XXXX
+- **Response Time:** Within 30 days
+
+## Contact Information
+
+If you have any questions about this data portability and deletion policy, please contact us:
+
+- **Email:** [legal@mywebdav.eu](mailto:legal@mywebdav.eu)
+- **Website:** https://mywebdav.eu
+- **Address:** MyWebdav Technologies, European Union
+
+MyWebdav Technologies

static/legal/data_processing_agreement.html

@@ -1,25 +1,89 @@
-<!DOCTYPE html>
+<html>
-<html lang="en">
 <head>
-    <meta charset="UTF-8">
+    <title>Data Processing Agreement</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <style>
-    <title>Data Processing Agreement - MyWebdav Cloud Storage</title>
+        body {
-    <link rel="stylesheet" href="/static/css/style.css">
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }
+        h1, h2, h3 {
+            color: #2c3e50;
+            margin-top: 30px;
+        }
+        h1 { font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }
+        h2 { font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }
+        ul { margin-left: 20px; }
+        li { margin-bottom: 8px; }
+        strong { color: #2c3e50; }
+    </style>
 </head>
 <body>
-    <div class="container">
-        <header>
     <h1>Data Processing Agreement</h1>
-        </header>
+    <p><em>Last Updated: November 13, 2025</em></p>
-        <main>
+    
-            <h1>Data Processing Agreement (DPA)</h1>
+<h2>1. Introduction</h2>
-<p>This is a placeholder for the Data Processing Agreement.</p>
+<p>This Data Processing Agreement ("DPA") supplements the Terms of Service between MyWebdav Technologies (the "Processor") and the Customer (the "Controller") regarding the processing of personal data.</p>
-<p>This document sets out the terms under which personal data is processed, defining responsibilities between [Your Company Name] (as processor) and the customer (as controller), incorporating all GDPR Article 28.3 requirements.</p>
+
-<p><strong>Legal professionals need to fill in the actual content.</strong></p>
+<h2>2. Definitions</h2>
-        </main>
+<ul>
-        <footer>
+    <li><strong>Personal Data:</strong> Any information relating to an identified or identifiable natural person</li>
-            <a href="/">Back to MyWebdav</a>
+    <li><strong>Processing:</strong> Any operation performed on personal data</li>
-        </footer>
+    <li><strong>Data Subject:</strong> The individual whose personal data is processed</li>
-    </div>
+</ul>
+
+<h2>3. Scope and Applicability</h2>
+<p>This DPA applies to all processing of personal data by the Processor on behalf of the Controller.</p>
+
+<h2>4. Processing Purposes</h2>
+<p>The Processor shall process personal data solely for the purpose of providing the Service as described in the Terms of Service.</p>
+
+<h2>5. Data Protection Obligations</h2>
+
+<h3>5.1 Lawfulness</h3>
+<p>Processing shall comply with GDPR and other applicable data protection laws.</p>
+
+<h3>5.2 Security Measures</h3>
+<p>The Processor shall implement appropriate technical and organizational measures to ensure data security.</p>
+
+<h3>5.3 Confidentiality</h3>
+<p>All personnel with access to personal data shall maintain confidentiality.</p>
+
+<h2>6. Data Subject Rights</h2>
+<p>The Processor shall assist the Controller in fulfilling data subject rights requests.</p>
+
+<h2>7. Subprocessing</h2>
+<p>The Processor may engage subprocessors with prior notice to the Controller.</p>
+
+<h2>8. Data Breach Notification</h2>
+<p>The Processor shall notify the Controller of any personal data breaches without undue delay.</p>
+
+<h2>9. Data Protection Impact Assessment</h2>
+<p>The Processor shall assist with DPIAs when required.</p>
+
+<h2>10. International Data Transfers</h2>
+<p>Data transfers outside the EU shall comply with GDPR Chapter V.</p>
+
+<h2>11. Audit Rights</h2>
+<p>The Controller may audit the Processor's compliance, subject to confidentiality obligations.</p>
+
+<h2>12. Termination</h2>
+<p>Upon termination, the Processor shall delete or return all personal data.</p>
+
+<h2>13. Governing Law</h2>
+<p>This DPA is governed by the laws of the Netherlands.</p>
+
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this data processing agreement, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:legal@mywebdav.eu">legal@mywebdav.eu</a></li>
+        <li><strong>Website:</strong> <a href="https://mywebdav.eu">https://mywebdav.eu</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
 </body>
 </html>

static/legal/data_processing_agreement.md

@@ -1,7 +1,73 @@
-# Data Processing Agreement (DPA)
+# Data Processing Agreement
 
-This is a placeholder for the Data Processing Agreement.
+**Last Updated:** November 13, 2025
 
-This document sets out the terms under which personal data is processed, defining responsibilities between [Your Company Name] (as processor) and the customer (as controller), incorporating all GDPR Article 28.3 requirements.
 
-**Legal professionals need to fill in the actual content.**
+This Data Processing Agreement ("DPA") supplements the Terms of Service between MyWebdav Technologies (the "Processor") and the Customer (the "Controller") regarding the processing of personal data.
+
+## 1. Definitions
+
+- **Personal Data:** Any information relating to an identified or identifiable natural person
+- **Processing:** Any operation performed on personal data
+- **Data Subject:** The individual whose personal data is processed
+
+## 2. Scope and Applicability
+
+This DPA applies to all processing of personal data by the Processor on behalf of the Controller.
+
+## 3. Processing Purposes
+
+The Processor shall process personal data solely for the purpose of providing the Service as described in the Terms of Service.
+
+## 4. Data Protection Obligations
+
+### 4.1 Lawfulness
+Processing shall comply with GDPR and other applicable data protection laws.
+
+### 4.2 Security Measures
+The Processor shall implement appropriate technical and organizational measures to ensure data security.
+
+### 4.3 Confidentiality
+All personnel with access to personal data shall maintain confidentiality.
+
+## 5. Data Subject Rights
+
+The Processor shall assist the Controller in fulfilling data subject rights requests.
+
+## 6. Subprocessing
+
+The Processor may engage subprocessors with prior notice to the Controller.
+
+## 7. Data Breach Notification
+
+The Processor shall notify the Controller of any personal data breaches without undue delay.
+
+## 8. Data Protection Impact Assessment
+
+The Processor shall assist with DPIAs when required.
+
+## 9. International Data Transfers
+
+Data transfers outside the EU shall comply with GDPR Chapter V.
+
+## 10. Audit Rights
+
+The Controller may audit the Processor's compliance, subject to confidentiality obligations.
+
+## 11. Termination
+
+Upon termination, the Processor shall delete or return all personal data.
+
+## 12. Governing Law
+
+This DPA is governed by the laws of the Netherlands.
+
+## Contact Information
+
+If you have any questions about this data processing agreement, please contact us:
+
+- **Email:** [legal@mywebdav.eu](mailto:legal@mywebdav.eu)
+- **Website:** https://mywebdav.eu
+- **Address:** MyWebdav Technologies, European Union
+
+MyWebdav Technologies

static/legal/privacy_policy.html

@@ -1,95 +1,185 @@
-<!DOCTYPE html>
+<html>
-<html lang="en">
 <head>
-    <meta charset="UTF-8">
+    <title>Privacy Policy</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <style>
-    <title>Privacy Policy - MyWebdav Cloud Storage</title>
+        body {
-    <link rel="stylesheet" href="/static/css/style.css">
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }
+        h1, h2, h3 {
+            color: #2c3e50;
+            margin-top: 30px;
+        }
+        h1 { font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }
+        h2 { font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }
+        ul { margin-left: 20px; }
+        li { margin-bottom: 8px; }
+        strong { color: #2c3e50; }
+    </style>
 </head>
 <body>
-    <div class="container">
-        <header>
     <h1>Privacy Policy</h1>
-        </header>
+    <p><em>Last Updated: November 13, 2025</em></p>
-        <main>
+    
-            <h1>Privacy Policy</h1>
+<h2>1. Introduction</h2>
-<p><strong>Last Updated:</strong> November 12, 2025</p>
+<p>MyWebdav Technologies ("we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our MyWebdav cloud storage service (the "Service"), in full compliance with the EU General Data Protection Regulation (GDPR), and other applicable data protection laws.</p>
-<p>MyWebdav operates the mywebdav website and web application (the "Service"). This page informs you of our policies regarding the collection, use, and disclosure of personal information when you use our Service.</p>
+<p>This policy applies to all users of our Service, including visitors to our website and registered users. By using our Service, you consent to the collection and use of information in accordance with this policy.</p>
-<p>If you choose to use our Service, you agree to the collection and use of information in relation to this policy. The personal information we collect is used to provide and improve the Service. We will not use or share your information except as described in this Privacy Policy.</p>
+
-<h2>Information We Collect</h2>
+<h2>2. Data Controller and Contact Information</h2>
-<h3>Personal Information You Provide</h3>
+<p><strong>Data Controller:</strong> MyWebdav Technologies<br>
-<p>When you register for an account, use our Service, or contact us, we may collect the following personally identifiable information:</p>
+<strong>Registered Address:</strong> European Union<br>
+<strong>Data Protection Officer:</strong> dpo@mywebdav.eu<br>
+<strong>Contact Email:</strong> privacy@mywebdav.eu</p>
+
+<h2>3. Information We Collect</h2>
+
+<h3>3.1 Personal Data You Provide</h3>
+<p>When you register for an account or use our Service, we collect:</p>
 <ul>
-<li>Name</li>
+    <li>Name and contact information (email address, phone number if provided)</li>
-<li>Email address</li>
+    <li>Account credentials and security information</li>
-<li>Phone number (optional)</li>
+    <li>Billing and payment information (processed securely through third-party providers)</li>
-<li>Company name (optional)</li>
+    <li>Communications you send to us</li>
-<li>Any other information you provide in forms or communications</li>
+    <li>Files and data you upload to our Service</li>
+    <li>Profile information and preferences</li>
 </ul>
-<h3>Information Collected Automatically</h3>
+
-<p>When you visit our Service, we automatically collect certain information, including:</p>
+<h3>3.2 Information Collected Automatically</h3>
+<p>We automatically collect certain information when you use our Service:</p>
 <ul>
-<li>IP address</li>
+    <li>IP address and geolocation data</li>
-<li>Browser type and version</li>
+    <li>Browser type, version, and language</li>
-<li>Operating system</li>
+    <li>Operating system and device information</li>
-<li>Pages visited and time spent on pages</li>
+    <li>Usage data (pages visited, features used, timestamps)</li>
-<li>Referring/exit pages</li>
+    <li>Log data (access times, errors, performance metrics)</li>
-<li>Date and time of visits</li>
+    <li>Cookies and similar tracking technologies</li>
-<li>Device identifiers</li>
 </ul>
-<p>This information is collected through cookies and similar technologies.</p>
+
-<h2>How We Use Your Information</h2>
+<h3>3.3 Cookies and Tracking Technologies</h3>
-<p>We use the information we collect for the following purposes:</p>
+<p>We use cookies and similar technologies to:</p>
 <ul>
-<li>To provide, maintain, and improve our Service</li>
+    <li>Authenticate users and maintain secure sessions</li>
-<li>To create and manage your account</li>
+    <li>Remember user preferences and settings</li>
-<li>To communicate with you (e.g., respond to inquiries, send updates)</li>
+    <li>Analyze service usage and performance</li>
-<li>To personalize your experience</li>
+    <li>Provide personalized features and recommendations</li>
-<li>To analyze usage and improve our Service</li>
+    <li>Ensure security and prevent fraud</li>
-<li>To comply with legal obligations</li>
-<li>To prevent fraud and ensure security</li>
 </ul>
-<h2>Cookies and Tracking Technologies</h2>
+<p>You can control cookie settings through your browser preferences. However, disabling certain cookies may limit Service functionality.</p>
-<p>We use cookies and similar technologies to enhance your experience. Cookies are small files stored on your device.</p>
+
-<h3>Types of Cookies We Use:</h3>
+<h2>4. Legal Basis for Processing</h2>
+<p>We process your personal data based on the following legal grounds under GDPR:</p>
 <ul>
-<li><strong>Essential Cookies:</strong> Required for the Service to function (e.g., authentication)</li>
+    <li><strong>Consent:</strong> Where you have explicitly agreed to processing (e.g., marketing communications)</li>
-<li><strong>Analytics Cookies:</strong> Help us understand how you use the Service (e.g., Google Analytics)</li>
+    <li><strong>Contract:</strong> To provide the Service and fulfill our contractual obligations</li>
-<li><strong>Functional Cookies:</strong> Remember your preferences</li>
+    <li><strong>Legitimate Interest:</strong> To improve our Service, ensure security, and communicate with you</li>
+    <li><strong>Legal Obligation:</strong> To comply with applicable laws and regulations</li>
 </ul>
-<p>You can control cookies through your browser settings. However, disabling cookies may affect Service functionality.</p>
+
-<h2>Sharing Your Information</h2>
+<h2>5. How We Use Your Information</h2>
-<p>We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:</p>
+<p>We use collected information for the following purposes:</p>
 <ul>
-<li>With service providers who assist us (e.g., hosting, analytics), bound by confidentiality agreements</li>
+    <li>Provide, maintain, and improve the Service</li>
-<li>When required by law or to protect our rights</li>
+    <li>Process transactions and manage billing</li>
-<li>In connection with a business transfer (e.g., merger or sale)</li>
+    <li>Communicate with you about your account and the Service</li>
+    <li>Ensure security and prevent unauthorized access</li>
+    <li>Comply with legal obligations</li>
+    <li>Analyze usage patterns to improve user experience</li>
+    <li>Send service-related notifications and updates</li>
+    <li>Provide customer support</li>
 </ul>
-<h2>Data Security</h2>
+
-<p>We implement appropriate security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet is 100% secure.</p>
+<h2>6. Information Sharing and Disclosure</h2>
-<h2>Your Rights</h2>
+<p>We do not sell your personal data to third parties. We may share information in the following circumstances:</p>
-<p>Depending on your location, you may have rights regarding your personal information, including:</p>
 <ul>
-<li>Access to your data</li>
+    <li><strong>Service Providers:</strong> With trusted third-party service providers under strict data processing agreements</li>
-<li>Correction of inaccurate data</li>
+    <li><strong>Legal Requirements:</strong> When required by law or to protect rights and safety</li>
-<li>Deletion of your data</li>
+    <li><strong>Business Transfers:</strong> In connection with mergers, acquisitions, or asset sales (with notice)</li>
-<li>Restriction of processing</li>
+    <li><strong>Consent:</strong> With your explicit consent</li>
-<li>Data portability</li>
+    <li><strong>Aggregated Data:</strong> Non-personally identifiable, aggregated data for analytical purposes</li>
-<li>Objection to processing</li>
 </ul>
-<p>To exercise these rights, contact us at <a href="mailto:privacy@mywebdav.com">privacy@mywebdav.com</a>.</p>
+
-<h2>Children's Privacy</h2>
+<h2>7. International Data Transfers</h2>
-<p>Our Service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information promptly.</p>
+<p>Your data may be processed in countries outside the EU. We ensure adequate protection through:</p>
-<h2>Changes to This Privacy Policy</h2>
+<ul>
-<p>We may update this Privacy Policy from time to time. We will notify you of changes by posting the new policy on this page and updating the "Last Updated" date.</p>
+    <li>EU adequacy decisions for certain countries</li>
-<h2>Contact Us</h2>
+    <li>Standard Contractual Clauses approved by the European Commission</li>
-<p>If you have questions about this Privacy Policy, contact us at:</p>
+    <li>Binding Corporate Rules</li>
-<p>Email: privacy@mywebdav.com
+    <li>Your explicit consent where required</li>
-Website: https://mywebdav.com</p>
+</ul>
-        </main>
+<p>All international transfers comply with Chapter V of the GDPR.</p>
-        <footer>
+
-            <a href="/">Back to MyWebdav</a>
+<h2>8. Data Security</h2>
-        </footer>
+<p>We implement comprehensive security measures to protect your data:</p>
-    </div>
+<ul>
+    <li><strong>Encryption:</strong> Data encrypted in transit (TLS 1.3) and at rest (AES-256)</li>
+    <li><strong>Access Controls:</strong> Role-based access control and multi-factor authentication</li>
+    <li><strong>Network Security:</strong> Firewalls, intrusion detection, and regular monitoring</li>
+    <li><strong>Physical Security:</strong> Secure data centers with controlled access</li>
+    <li><strong>Incident Response:</strong> 24/7 monitoring and rapid response procedures</li>
+    <li><strong>Regular Audits:</strong> Independent security audits and penetration testing</li>
+</ul>
+
+<h2>9. Data Retention</h2>
+<p>We retain personal data only as long as necessary for the purposes outlined in this policy:</p>
+<ul>
+    <li><strong>Account Data:</strong> Until account deletion or as required for legal compliance</li>
+    <li><strong>Usage Logs:</strong> Maximum 12 months for security and compliance purposes</li>
+    <li><strong>Billing Data:</strong> 7 years for tax and accounting compliance</li>
+    <li><strong>Marketing Data:</strong> Until you withdraw consent or request deletion</li>
+</ul>
+
+<h2>10. Your Rights Under GDPR</h2>
+<p>You have the following rights regarding your personal data:</p>
+<ul>
+    <li><strong>Right to Access:</strong> Request a copy of your personal data</li>
+    <li><strong>Right to Rectification:</strong> Correct inaccurate or incomplete data</li>
+    <li><strong>Right to Erasure:</strong> Delete your personal data ("right to be forgotten")</li>
+    <li><strong>Right to Restriction:</strong> Limit processing of your data</li>
+    <li><strong>Right to Portability:</strong> Receive your data in a structured format</li>
+    <li><strong>Right to Object:</strong> Object to processing based on legitimate interests</li>
+    <li><strong>Right to Withdraw Consent:</strong> Revoke consent for processing</li>
+    <li><strong>Right Not to be Subject to Automated Decision-Making:</strong> Including profiling</li>
+</ul>
+<p>To exercise these rights, contact our Data Protection Officer at dpo@mywebdav.eu. We will respond within 30 days.</p>
+
+<h2>11. Children's Privacy</h2>
+<p>Our Service is not intended for individuals under 16 years of age. We do not knowingly collect personal data from children under 16. If we become aware of such collection, we will delete the data immediately and terminate the account.</p>
+<p>If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately.</p>
+
+<h2>12. Changes to This Privacy Policy</h2>
+<p>We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will:</p>
+<ul>
+    <li>Notify you via email at least 30 days before material changes take effect</li>
+    <li>Post the updated policy on our website</li>
+    <li>Highlight significant changes in the notification</li>
+</ul>
+<p>Continued use of the Service after changes take effect constitutes acceptance of the updated policy.</p>
+
+<h2>13. Complaints and Supervisory Authority</h2>
+<p>If you believe we have not complied with applicable data protection laws, you have the right to lodge a complaint with a supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens (AP).</p>
+<p>We encourage you to contact us first to resolve any concerns.</p>
+
+<h2>14. Contact Us</h2>
+<p>For any questions about this Privacy Policy or our data practices:</p>
+<ul>
+    <li><strong>Email:</strong> privacy@mywebdav.eu</li>
+    <li><strong>Data Protection Officer:</strong> dpo@mywebdav.eu</li>
+    <li><strong>Phone:</strong> +31 XX XXX XXXX</li>
+    <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+</ul>
+
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this privacy policy, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:legal@mywebdav.eu">legal@mywebdav.eu</a></li>
+        <li><strong>Website:</strong> <a href="https://mywebdav.eu">https://mywebdav.eu</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
 </body>
 </html>

static/legal/privacy_policy.md

@@ -1,97 +1,120 @@
 # Privacy Policy
 
-**Last Updated:** November 12, 2025
+**Last Updated:** November 13, 2025
 
-MyWebdav operates the mywebdav website and web application (the "Service"). This page informs you of our policies regarding the collection, use, and disclosure of personal information when you use our Service.
 
-If you choose to use our Service, you agree to the collection and use of information in relation to this policy. The personal information we collect is used to provide and improve the Service. We will not use or share your information except as described in this Privacy Policy.
+MyWebdav Technologies ("we," "us," or "our") operates the MyWebdav cloud storage service (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service, in compliance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws.
 
-## Information We Collect
+## 1. Information We Collect
 
-### Personal Information You Provide
+### 1.1 Personal Data You Provide
+When you register for an account or use our Service, we collect:
+- Name and contact information (email address, phone number)
+- Account credentials and security information
+- Billing and payment information (if applicable)
+- Communications you send to us
+- Files and data you upload to our Service
 
-When you register for an account, use our Service, or contact us, we may collect the following personally identifiable information:
+### 1.2 Information Collected Automatically
+We automatically collect:
+- IP address and geolocation data
+- Browser and device information
+- Usage data (pages visited, features used, timestamps)
+- Log data (access times, errors, performance metrics)
 
-- Name
+### 1.3 Cookies and Tracking Technologies
-- Email address
+We use cookies and similar technologies to:
-- Phone number (optional)
+- Authenticate users and maintain sessions
-- Company name (optional)
+- Remember user preferences
-- Any other information you provide in forms or communications
+- Analyze service usage and performance
+- Provide personalized features
 
-### Information Collected Automatically
+You can control cookie settings through your browser, but disabling cookies may limit Service functionality.
 
-When you visit our Service, we automatically collect certain information, including:
+## 2. Legal Basis for Processing
 
-- IP address
+We process your personal data based on:
-- Browser type and version
+- **Consent:** Where you have explicitly agreed
-- Operating system
+- **Contract:** To provide the Service and fulfill our obligations
-- Pages visited and time spent on pages
+- **Legitimate Interest:** To improve our Service and ensure security
-- Referring/exit pages
+- **Legal Obligation:** To comply with applicable laws
-- Date and time of visits
-- Device identifiers
 
-This information is collected through cookies and similar technologies.
+## 3. How We Use Your Information
 
-## How We Use Your Information
+We use collected information to:
+- Provide, maintain, and improve the Service
+- Process transactions and manage billing
+- Communicate with you about your account and the Service
+- Ensure security and prevent fraud
+- Comply with legal obligations
+- Analyze usage patterns and improve user experience
 
-We use the information we collect for the following purposes:
+## 4. Information Sharing and Disclosure
 
-- To provide, maintain, and improve our Service
+We do not sell your personal data. We may share information:
-- To create and manage your account
+- With service providers under data processing agreements
-- To communicate with you (e.g., respond to inquiries, send updates)
+- When required by law or to protect rights
-- To personalize your experience
+- In connection with business transfers (with notice)
-- To analyze usage and improve our Service
+- With your explicit consent
-- To comply with legal obligations
-- To prevent fraud and ensure security
 
-## Cookies and Tracking Technologies
+All data transfers outside the EU comply with GDPR requirements, including adequacy decisions or appropriate safeguards.
 
-We use cookies and similar technologies to enhance your experience. Cookies are small files stored on your device.
+## 5. Data Security
 
-### Types of Cookies We Use:
+We implement comprehensive security measures:
+- Encryption of data in transit (TLS 1.3) and at rest (AES-256)
+- Access controls and authentication mechanisms
+- Regular security audits and penetration testing
+- Incident response procedures
 
-- **Essential Cookies:** Required for the Service to function (e.g., authentication)
+## 6. Data Retention
-- **Analytics Cookies:** Help us understand how you use the Service (e.g., Google Analytics)
-- **Functional Cookies:** Remember your preferences
 
-You can control cookies through your browser settings. However, disabling cookies may affect Service functionality.
+We retain personal data only as long as necessary for the purposes outlined in this policy, typically:
+- Account data: Until account deletion
+- Usage logs: 12 months for security and compliance
+- Billing data: 7 years for tax compliance
 
-## Sharing Your Information
+## 7. Your Rights Under GDPR
 
-We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:
+You have the right to:
+- **Access:** Request a copy of your personal data
+- **Rectification:** Correct inaccurate or incomplete data
+- **Erasure:** Delete your personal data ("right to be forgotten")
+- **Restriction:** Limit processing of your data
+- **Portability:** Receive your data in a structured format
+- **Objection:** Object to processing based on legitimate interests
+- **Withdraw Consent:** Revoke consent for processing
 
-- With service providers who assist us (e.g., hosting, analytics), bound by confidentiality agreements
+To exercise these rights, contact our Data Protection Officer at dpo@mywebdav.eu.
-- When required by law or to protect our rights
-- In connection with a business transfer (e.g., merger or sale)
 
-## Data Security
+## 8. International Data Transfers
 
-We implement appropriate security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet is 100% secure.
+Your data may be processed in countries outside the EU. We ensure adequate protection through:
+- EU adequacy decisions
+- Standard Contractual Clauses
+- Binding Corporate Rules
+- Your explicit consent where required
 
-## Your Rights
+## 9. Children's Privacy
 
-Depending on your location, you may have rights regarding your personal information, including:
+Our Service is not intended for individuals under 16. We do not knowingly collect personal data from children under 16. If we become aware of such collection, we will delete the data immediately.
 
-- Access to your data
+## 10. Changes to This Privacy Policy
-- Correction of inaccurate data
-- Deletion of your data
-- Restriction of processing
-- Data portability
-- Objection to processing
 
-To exercise these rights, contact us at [privacy@mywebdav.com](mailto:privacy@mywebdav.com).
+We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will notify you of material changes via email or Service notifications at least 30 days before they take effect.
 
-## Children's Privacy
+## 11. Data Protection Officer
 
-Our Service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information promptly.
+For data protection matters, contact our DPO:
+- **Email:** dpo@mywebdav.eu
+- **Phone:** +31 XX XXX XXXX
 
-## Changes to This Privacy Policy
+## Contact Information
 
-We may update this Privacy Policy from time to time. We will notify you of changes by posting the new policy on this page and updating the "Last Updated" date.
+If you have any questions about this privacy policy, please contact us:
 
-## Contact Us
+- **Email:** [legal@mywebdav.eu](mailto:legal@mywebdav.eu)
+- **Website:** https://mywebdav.eu
+- **Address:** MyWebdav Technologies, European Union
 
-If you have questions about this Privacy Policy, contact us at:
+MyWebdav Technologies
-
-Email: privacy@mywebdav.com
-Website: https://mywebdav.com

static/legal/security_policy.html

@@ -1,25 +1,136 @@
-<!DOCTYPE html>
+<html>
-<html lang="en">
 <head>
-    <meta charset="UTF-8">
+    <title>Security Policy</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <style>
-    <title>Security Policy - MyWebdav Cloud Storage</title>
+        body {
-    <link rel="stylesheet" href="/static/css/style.css">
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }
+        h1, h2, h3 {
+            color: #2c3e50;
+            margin-top: 30px;
+        }
+        h1 { font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }
+        h2 { font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }
+        ul { margin-left: 20px; }
+        li { margin-bottom: 8px; }
+        strong { color: #2c3e50; }
+    </style>
 </head>
 <body>
-    <div class="container">
-        <header>
     <h1>Security Policy</h1>
-        </header>
+    <p><em>Last Updated: November 13, 2025</em></p>
-        <main>
+    
-            <h1>Security Policy</h1>
+<h2>1. Introduction</h2>
-<p>This is a placeholder for the Security Policy.</p>
+
-<p>This document describes organizational and technical measures adopted by [Your Company Name], as required under NIS2 and GDPR, including breach notification procedures, access controls, and data encryption.</p>
+<h3>1.1 Purpose</h3>
-<p><strong>Legal professionals need to fill in the actual content.</strong></p>
+<p>This policy establishes the framework for securing our cloud storage platform and ensures all personnel understand their security responsibilities.</p>
-        </main>
+
-        <footer>
+<h3>1.2 Scope</h3>
-            <a href="/">Back to MyWebdav</a>
+<p>Applies to all employees, contractors, systems, and data managed by MyWebdav Technologies.</p>
-        </footer>
+
-    </div>
+<h2>2. Governance and Management</h2>
+
+<h3>2.1 Information Security Management System (ISMS)</h3>
+<p>We maintain an ISO/IEC 27001-certified ISMS with regular risk assessments, audits, and continuous improvement.</p>
+
+<h3>2.2 Roles and Responsibilities</h3>
+<ul>
+    <li><strong>CISO:</strong> Oversees security program</li>
+    <li><strong>Security Team:</strong> Implements controls and responds to incidents</li>
+    <li><strong>Employees:</strong> Follow policies and report incidents</li>
+    <li><strong>Management:</strong> Provides resources and enforces compliance</li>
+</ul>
+
+<h2>3. Access Control</h2>
+
+<h3>3.1 Access Management</h3>
+<p>Access follows the principle of least privilege with multi-factor authentication required for administrative access.</p>
+
+<h3>3.2 User Authentication</h3>
+<p>Strong passwords, regular rotation, and account lockout policies are enforced.</p>
+
+<h3>3.3 Remote Access</h3>
+<p>Secured via VPN with full logging and monitoring.</p>
+
+<h2>4. Data Protection and Encryption</h2>
+
+<h3>4.1 Data Classification</h3>
+<p>Data classified as Public, Internal, Confidential, or Highly Sensitive with appropriate controls.</p>
+
+<h3>4.2 Encryption Standards</h3>
+<ul>
+    <li>TLS 1.3 for data in transit</li>
+    <li>AES-256 for data at rest</li>
+    <li>Secure key management and rotation</li>
+</ul>
+
+<h3>4.3 Data Retention and Disposal</h3>
+<p>Data retained only as necessary with secure deletion methods.</p>
+
+<h2>5. Network Security</h2>
+
+<h3>5.1 Network Segmentation</h3>
+<p>Isolated networks with firewalls, IDS, and regular monitoring.</p>
+
+<h3>5.2 Secure Configuration</h3>
+<p>Hardened systems following CIS Benchmarks.</p>
+
+<h2>6. Physical Security</h2>
+
+<h3>6.1 Facility Access</h3>
+<p>Controlled access to data centers with biometric authentication.</p>
+
+<h3>6.2 Equipment Security</h3>
+<p>Secure storage in climate-controlled environments.</p>
+
+<h2>7. Incident Response</h2>
+
+<h3>7.1 Incident Response Plan</h3>
+<p>Comprehensive plan for identification, containment, eradication, recovery, and notification.</p>
+
+<h3>7.2 Breach Notification</h3>
+<p>Incidents reported within 72 hours (GDPR) or 24 hours (NIS2) as applicable.</p>
+
+<h2>8. Secure Development</h2>
+
+<h3>8.1 Secure Coding Practices</h3>
+<p>Code reviews, static/dynamic analysis, and vulnerability management.</p>
+
+<h3>8.2 Change Management</h3>
+<p>Formal approval processes for production changes.</p>
+
+<h2>9. Third-Party Risk Management</h2>
+
+<h3>9.1 Vendor Assessment</h3>
+<p>Security assessments and contractual requirements for all vendors.</p>
+
+<h2>10. Compliance and Auditing</h2>
+
+<h3>10.1 Regulatory Compliance</h3>
+<p>Compliance with GDPR, NIS2, and ISO/IEC 27001.</p>
+
+<h3>10.2 Audits and Assessments</h3>
+<p>Annual audits, quarterly penetration testing, and continuous monitoring.</p>
+
+<h3>10.3 Training</h3>
+<p>Mandatory annual security training for all personnel.</p>
+
+<h2>11. Enforcement</h2>
+<p>Compliance is mandatory. Violations may result in disciplinary action up to termination.</p>
+
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this security policy, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:legal@mywebdav.eu">legal@mywebdav.eu</a></li>
+        <li><strong>Website:</strong> <a href="https://mywebdav.eu">https://mywebdav.eu</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
 </body>
 </html>

static/legal/security_policy.md

@@ -1,7 +1,111 @@
 # Security Policy
 
-This is a placeholder for the Security Policy.
+**Last Updated:** November 13, 2025
 
-This document describes organizational and technical measures adopted by [Your Company Name], as required under NIS2 and GDPR, including breach notification procedures, access controls, and data encryption.
 
-**Legal professionals need to fill in the actual content.**
+MyWebdav Technologies is committed to protecting the confidentiality, integrity, and availability of information assets. This Security Policy outlines our organizational and technical measures to safeguard data in compliance with NIS2 Directive, GDPR, and ISO/IEC 27001 standards.
+
+## 1. Introduction
+
+### 1.1 Purpose
+This policy establishes the framework for securing our cloud storage platform and ensures all personnel understand their security responsibilities.
+
+### 1.2 Scope
+Applies to all employees, contractors, systems, and data managed by MyWebdav Technologies.
+
+## 2. Governance and Management
+
+### 2.1 Information Security Management System (ISMS)
+We maintain an ISO/IEC 27001-certified ISMS with regular risk assessments, audits, and continuous improvement.
+
+### 2.2 Roles and Responsibilities
+- **CISO:** Oversees security program
+- **Security Team:** Implements controls and responds to incidents
+- **Employees:** Follow policies and report incidents
+- **Management:** Provides resources and enforces compliance
+
+## 3. Access Control
+
+### 3.1 Access Management
+Access follows the principle of least privilege with multi-factor authentication required for administrative access.
+
+### 3.2 User Authentication
+Strong passwords, regular rotation, and account lockout policies are enforced.
+
+### 3.3 Remote Access
+Secured via VPN with full logging and monitoring.
+
+## 4. Data Protection and Encryption
+
+### 4.1 Data Classification
+Data classified as Public, Internal, Confidential, or Highly Sensitive with appropriate controls.
+
+### 4.2 Encryption Standards
+- TLS 1.3 for data in transit
+- AES-256 for data at rest
+- Secure key management and rotation
+
+### 4.3 Data Retention and Disposal
+Data retained only as necessary with secure deletion methods.
+
+## 5. Network Security
+
+### 5.1 Network Segmentation
+Isolated networks with firewalls, IDS, and regular monitoring.
+
+### 5.2 Secure Configuration
+Hardened systems following CIS Benchmarks.
+
+## 6. Physical Security
+
+### 6.1 Facility Access
+Controlled access to data centers with biometric authentication.
+
+### 6.2 Equipment Security
+Secure storage in climate-controlled environments.
+
+## 7. Incident Response
+
+### 7.1 Incident Response Plan
+Comprehensive plan for identification, containment, eradication, recovery, and notification.
+
+### 7.2 Breach Notification
+Incidents reported within 72 hours (GDPR) or 24 hours (NIS2) as applicable.
+
+## 8. Secure Development
+
+### 8.1 Secure Coding Practices
+Code reviews, static/dynamic analysis, and vulnerability management.
+
+### 8.2 Change Management
+Formal approval processes for production changes.
+
+## 9. Third-Party Risk Management
+
+### 9.1 Vendor Assessment
+Security assessments and contractual requirements for all vendors.
+
+## 10. Compliance and Auditing
+
+### 10.1 Regulatory Compliance
+Compliance with GDPR, NIS2, and ISO/IEC 27001.
+
+### 10.2 Audits and Assessments
+Annual audits, quarterly penetration testing, and continuous monitoring.
+
+### 10.3 Training
+Mandatory annual security training for all personnel.
+
+## 11. Enforcement
+
+Compliance is mandatory. Violations may result in disciplinary action up to termination.
+
+## Contact Information
+
+If you have any questions about this security policy, please contact us:
+
+- **Email:** [legal@mywebdav.eu](mailto:legal@mywebdav.eu)
+- **Website:** https://mywebdav.eu
+- **Address:** MyWebdav Technologies, European Union
+
+MyWebdav Technologies

static/legal/terms_of_service.html

@@ -1,68 +1,144 @@
-<!DOCTYPE html>
+<html>
-<html lang="en">
 <head>
-    <meta charset="UTF-8">
+    <title>Terms of Service</title>
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <style>
-    <title>Terms of Service - MyWebdav Cloud Storage</title>
+        body {
-    <link rel="stylesheet" href="/static/css/style.css">
+            font-family: 'Times New Roman', serif;
+            line-height: 1.6;
+            max-width: 800px;
+            margin: 0 auto;
+            padding: 20px;
+            color: #333;
+        }
+        h1, h2, h3 {
+            color: #2c3e50;
+            margin-top: 30px;
+        }
+        h1 { font-size: 2em; border-bottom: 2px solid #3498db; padding-bottom: 10px; }
+        h2 { font-size: 1.5em; border-bottom: 1px solid #bdc3c7; padding-bottom: 5px; }
+        ul { margin-left: 20px; }
+        li { margin-bottom: 8px; }
+        strong { color: #2c3e50; }
+    </style>
 </head>
 <body>
-    <div class="container">
-        <header>
     <h1>Terms of Service</h1>
-        </header>
+    <p><em>Last Updated: November 13, 2025</em></p>
-        <main>
+    
-            <h1>Terms of Service</h1>
+<h2>1. Introduction</h2>
-<p><strong>Last Updated:</strong> November 12, 2025</p>
+<p>These Terms of Service ("Terms") constitute a legally binding agreement between you ("User," "you," or "your") and MyWebdav Technologies ("Company," "we," "us," or "our") governing your use of the MyWebdav cloud storage service (the "Service").</p>
-<p>Welcome to MyWebdav! These Terms of Service ("Terms") govern your use of the MyWebdav website and web application (the "Service") operated by MyWebdav Technologies ("we," "us," or "our").</p>
+<p>By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by these Terms. If you do not agree, you must not use the Service.</p>
-<p>By accessing or using our Service, you agree to be bound by these Terms. If you do not agree to these Terms, please do not use the Service.</p>
+
-<h2>1. Acceptance of Terms</h2>
+<h2>2. Service Description</h2>
-<p>By creating an account or using the Service, you accept and agree to these Terms and our Privacy Policy, which is incorporated herein by reference.</p>
+<p>MyWebdav provides cloud-based file storage, sharing, and collaboration tools. The Service includes:</p>
-<h2>2. Description of Service</h2>
-<p>MyWebdav is a web application that allows users to manage and share repositories, files, and collaborate on projects. The Service includes features such as repository creation, file storage, collaboration tools, and public browsing of repositories.</p>
-<h2>3. User Accounts</h2>
-<h3>3.1 Account Creation</h3>
-<p>To use certain features of the Service, you must create an account. You agree to provide accurate, current, and complete information during the registration process and to update such information to keep it accurate, current, and complete.</p>
-<h3>3.2 Account Security</h3>
-<p>You are responsible for safeguarding your account credentials. You agree not to disclose your password to any third party and to take sole responsibility for any activities or actions under your account.</p>
-<h3>3.3 Account Termination</h3>
-<p>We reserve the right to terminate or suspend your account at our discretion, without prior notice, for conduct that we believe violates these Terms or is harmful to other users, us, or third parties, or for any other reason.</p>
-<h2>4. Acceptable Use Policy</h2>
-<p>You agree not to use the Service to:</p>
 <ul>
-<li>Violate any applicable laws or regulations</li>
+    <li>Secure file storage and backup</li>
-<li>Infringe on intellectual property rights</li>
+    <li>File sharing and collaboration features</li>
-<li>Distribute harmful, offensive, or illegal content</li>
+    <li>WebDAV protocol support</li>
-<li>Attempt to gain unauthorized access to our systems</li>
+    <li>API access for integrations</li>
-<li>Interfere with the Service's operation</li>
+    <li>Administrative and management tools</li>
-<li>Use the Service for spam or commercial solicitation without permission</li>
 </ul>
+
+<h2>3. User Eligibility and Account Registration</h2>
+
+<h3>3.1 Eligibility</h3>
+<p>You must be at least 16 years old and have the legal capacity to enter into these Terms.</p>
+
+<h3>3.2 Account Registration</h3>
+<p>To use the Service, you must create an account with accurate information. You are responsible for maintaining the confidentiality of your account credentials and all activities under your account.</p>
+
+<h3>3.3 Account Suspension/Termination</h3>
+<p>We may suspend or terminate your account for violations of these Terms, illegal activity, or at our discretion with reasonable notice.</p>
+
+<h2>4. Acceptable Use Policy</h2>
+<p>You agree not to:</p>
+<ul>
+    <li>Violate applicable laws or regulations</li>
+    <li>Infringe intellectual property rights</li>
+    <li>Upload malicious, illegal, or harmful content</li>
+    <li>Attempt unauthorized access to systems</li>
+    <li>Use the Service for spam or harassment</li>
+    <li>Circumvent security measures</li>
+    <li>Exceed fair usage limits</li>
+</ul>
+
 <h2>5. Content Ownership and Rights</h2>
+
 <h3>5.1 Your Content</h3>
-<p>You retain ownership of the content you upload or create using the Service ("Your Content"). By uploading Your Content, you grant us a non-exclusive, royalty-free, worldwide license to use, display, and distribute Your Content solely for the purpose of providing the Service.</p>
+<p>You retain ownership of content you upload ("Your Content"). You grant us a limited license to store, process, and transmit Your Content solely to provide the Service.</p>
-<h3>5.2 Our Content</h3>
+
-<p>All content provided by us, including but not limited to text, graphics, logos, and software, is our property or that of our licensors and is protected by intellectual property laws.</p>
+<h3>5.2 Prohibited Content</h3>
-<h2>6. Privacy</h2>
+<p>You may not upload content that is:</p>
-<p>Your privacy is important to us. Please review our Privacy Policy, which explains how we collect, use, and protect your information.</p>
+<ul>
-<h2>7. Payment Terms (if applicable)</h2>
+    <li>Illegal, defamatory, or obscene</li>
-<p>If you use paid features of the Service, you agree to pay all applicable fees. Fees are non-refundable unless otherwise stated.</p>
+    <li>Infringing on third-party rights</li>
-<h2>8. Disclaimers</h2>
+    <li>Containing malware or viruses</li>
-<p>The Service is provided "as is" without warranties of any kind. We do not warrant that the Service will be uninterrupted, error-free, or secure.</p>
+    <li>Excessive in volume without prior agreement</li>
-<h2>9. Limitation of Liability</h2>
+</ul>
-<p>To the fullest extent permitted by law, we shall not be liable for any indirect, incidental, special, or consequential damages arising out of or in connection with your use of the Service.</p>
+
-<h2>10. Indemnification</h2>
+<h3>5.3 Content Removal</h3>
-<p>You agree to indemnify and hold us harmless from any claims, damages, or expenses arising from your use of the Service or violation of these Terms.</p>
+<p>We may remove content that violates these Terms, with or without notice.</p>
-<h2>11. Governing Law</h2>
+
-<p>These Terms shall be governed by and construed in accordance with the laws of the Netherlands, without regard to its conflict of law provisions.</p>
+<h2>6. Service Availability and Limitations</h2>
-<h2>12. Changes to Terms</h2>
+
-<p>We reserve the right to modify these Terms at any time. We will notify users of changes by posting the updated Terms on our website.</p>
+<h3>6.1 Availability</h3>
-<h2>13. Contact Us</h2>
+<p>We strive for high availability but do not guarantee uninterrupted service. Scheduled maintenance may cause temporary outages.</p>
-<p>If you have questions about these Terms, please contact us at legal@mywebdav.com.</p>
+
-<p>By using MyWebdav, you acknowledge that you have read, understood, and agree to be bound by these Terms of Service.</p>
+<h3>6.2 Storage Limits</h3>
-        </main>
+<p>Storage limits vary by plan. Exceeding limits may result in additional charges or service restrictions.</p>
-        <footer>
+
-            <a href="/">Back to MyWebdav</a>
+<h3>6.3 Fair Usage</h3>
-        </footer>
+<p>Excessive usage that impacts other users may result in throttling or additional charges.</p>
-    </div>
+
+<h2>7. Billing and Payment</h2>
+
+<h3>7.1 Fees</h3>
+<p>Service fees are as published on our website. Prices may change with 30 days' notice.</p>
+
+<h3>7.2 Payment</h3>
+<p>You agree to pay all charges associated with your account. Failed payments may result in service suspension.</p>
+
+<h3>7.3 Refunds</h3>
+<p>Fees are generally non-refundable except as required by law or at our discretion.</p>
+
+<h2>8. Data Protection and Privacy</h2>
+<p>Your use of the Service is subject to our Privacy Policy, which is incorporated by reference. We comply with GDPR and other data protection regulations.</p>
+
+<h2>9. Security and Data Protection</h2>
+<p>We implement industry-standard security measures, but you acknowledge that no system is completely secure. You are responsible for your data security.</p>
+
+<h2>10. Intellectual Property</h2>
+<p>The Service and its original content are protected by intellectual property laws. You may not copy, modify, or distribute our proprietary materials.</p>
+
+<h2>11. Disclaimers</h2>
+<p><strong>THE SERVICE IS PROVIDED "AS IS" WITHOUT WARRANTIES OF ANY KIND. WE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.</strong></p>
+
+<h2>12. Limitation of Liability</h2>
+<p><strong>TO THE MAXIMUM EXTENT PERMITTED BY LAW, OUR TOTAL LIABILITY SHALL NOT EXCEED THE AMOUNT PAID BY YOU IN THE 12 MONTHS PRECEDING THE CLAIM.</strong></p>
+
+<h2>13. Indemnification</h2>
+<p>You agree to indemnify and hold us harmless from claims arising from your use of the Service or violation of these Terms.</p>
+
+<h2>14. Governing Law and Dispute Resolution</h2>
+<p>These Terms are governed by the laws of the Netherlands. Disputes shall be resolved through binding arbitration in Amsterdam, Netherlands.</p>
+
+<h2>15. Modifications to Terms</h2>
+<p>We may modify these Terms with reasonable notice. Continued use after changes constitutes acceptance.</p>
+
+<h2>16. Severability</h2>
+<p>If any provision is found invalid, the remaining provisions remain in effect.</p>
+
+<h2>17. Entire Agreement</h2>
+<p>These Terms constitute the entire agreement between you and us regarding the Service.</p>
+
+    <hr>
+    <h3>Contact Information</h3>
+    <p>If you have any questions about this terms of service, please contact us:</p>
+    <ul>
+        <li><strong>Email:</strong> <a href="mailto:legal@mywebdav.eu">legal@mywebdav.eu</a></li>
+        <li><strong>Website:</strong> <a href="https://mywebdav.eu">https://mywebdav.eu</a></li>
+        <li><strong>Address:</strong> MyWebdav Technologies, European Union</li>
+    </ul>
+    <p>MyWebdav Technologies</p>
 </body>
 </html>

static/legal/terms_of_service.md

@@ -1,79 +1,126 @@
 # Terms of Service
 
-**Last Updated:** November 12, 2025
+**Last Updated:** November 13, 2025
 
-Welcome to MyWebdav! These Terms of Service ("Terms") govern your use of the MyWebdav website and web application (the "Service") operated by MyWebdav Technologies ("we," "us," or "our").
 
-By accessing or using our Service, you agree to be bound by these Terms. If you do not agree to these Terms, please do not use the Service.
+These Terms of Service ("Terms") constitute a legally binding agreement between you ("User," "you," or "your") and MyWebdav Technologies ("Company," "we," "us," or "our") governing your use of the MyWebdav cloud storage service (the "Service").
 
-## 1. Acceptance of Terms
+By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by these Terms. If you do not agree, you must not use the Service.
 
-By creating an account or using the Service, you accept and agree to these Terms and our Privacy Policy, which is incorporated herein by reference.
+## 1. Service Description
 
-## 2. Description of Service
+MyWebdav provides cloud-based file storage, sharing, and collaboration tools. The Service includes:
+- Secure file storage and backup
+- File sharing and collaboration features
+- WebDAV protocol support
+- API access for integrations
+- Administrative and management tools
 
-MyWebdav is a web application that allows users to manage and share repositories, files, and collaborate on projects. The Service includes features such as repository creation, file storage, collaboration tools, and public browsing of repositories.
+## 2. User Eligibility and Account Registration
 
-## 3. User Accounts
+### 2.1 Eligibility
+You must be at least 16 years old and have the legal capacity to enter into these Terms.
 
-### 3.1 Account Creation
+### 2.2 Account Registration
-To use certain features of the Service, you must create an account. You agree to provide accurate, current, and complete information during the registration process and to update such information to keep it accurate, current, and complete.
+To use the Service, you must create an account with accurate information. You are responsible for maintaining the confidentiality of your account credentials and all activities under your account.
 
-### 3.2 Account Security
+### 2.3 Account Suspension/Termination
-You are responsible for safeguarding your account credentials. You agree not to disclose your password to any third party and to take sole responsibility for any activities or actions under your account.
+We may suspend or terminate your account for violations of these Terms, illegal activity, or at our discretion with reasonable notice.
 
-### 3.3 Account Termination
+## 3. Acceptable Use Policy
-We reserve the right to terminate or suspend your account at our discretion, without prior notice, for conduct that we believe violates these Terms or is harmful to other users, us, or third parties, or for any other reason.
 
-## 4. Acceptable Use Policy
+You agree not to:
+- Violate applicable laws or regulations
+- Infringe intellectual property rights
+- Upload malicious, illegal, or harmful content
+- Attempt unauthorized access to systems
+- Use the Service for spam or harassment
+- Circumvent security measures
+- Exceed fair usage limits
 
-You agree not to use the Service to:
+## 4. Content Ownership and Rights
 
-- Violate any applicable laws or regulations
+### 4.1 Your Content
-- Infringe on intellectual property rights
+You retain ownership of content you upload ("Your Content"). You grant us a limited license to store, process, and transmit Your Content solely to provide the Service.
-- Distribute harmful, offensive, or illegal content
-- Attempt to gain unauthorized access to our systems
-- Interfere with the Service's operation
-- Use the Service for spam or commercial solicitation without permission
 
-## 5. Content Ownership and Rights
+### 4.2 Prohibited Content
+You may not upload content that is:
+- Illegal, defamatory, or obscene
+- Infringing on third-party rights
+- Containing malware or viruses
+- Excessive in volume without prior agreement
 
-### 5.1 Your Content
+### 4.3 Content Removal
-You retain ownership of the content you upload or create using the Service ("Your Content"). By uploading Your Content, you grant us a non-exclusive, royalty-free, worldwide license to use, display, and distribute Your Content solely for the purpose of providing the Service.
+We may remove content that violates these Terms, with or without notice.
 
-### 5.2 Our Content
+## 5. Service Availability and Limitations
-All content provided by us, including but not limited to text, graphics, logos, and software, is our property or that of our licensors and is protected by intellectual property laws.
 
-## 6. Privacy
+### 5.1 Availability
+We strive for high availability but do not guarantee uninterrupted service. Scheduled maintenance may cause temporary outages.
 
-Your privacy is important to us. Please review our Privacy Policy, which explains how we collect, use, and protect your information.
+### 5.2 Storage Limits
+Storage limits vary by plan. Exceeding limits may result in additional charges or service restrictions.
 
-## 7. Payment Terms (if applicable)
+### 5.3 Fair Usage
+Excessive usage that impacts other users may result in throttling or additional charges.
 
-If you use paid features of the Service, you agree to pay all applicable fees. Fees are non-refundable unless otherwise stated.
+## 6. Billing and Payment
 
-## 8. Disclaimers
+### 6.1 Fees
+Service fees are as published on our website. Prices may change with 30 days' notice.
 
-The Service is provided "as is" without warranties of any kind. We do not warrant that the Service will be uninterrupted, error-free, or secure.
+### 6.2 Payment
+You agree to pay all charges associated with your account. Failed payments may result in service suspension.
 
-## 9. Limitation of Liability
+### 6.3 Refunds
+Fees are generally non-refundable except as required by law or at our discretion.
 
-To the fullest extent permitted by law, we shall not be liable for any indirect, incidental, special, or consequential damages arising out of or in connection with your use of the Service.
+## 7. Data Protection and Privacy
 
-## 10. Indemnification
+Your use of the Service is subject to our Privacy Policy, which is incorporated by reference. We comply with GDPR and other data protection regulations.
 
-You agree to indemnify and hold us harmless from any claims, damages, or expenses arising from your use of the Service or violation of these Terms.
+## 8. Security and Data Protection
 
-## 11. Governing Law
+We implement industry-standard security measures, but you acknowledge that no system is completely secure. You are responsible for your data security.
 
-These Terms shall be governed by and construed in accordance with the laws of the Netherlands, without regard to its conflict of law provisions.
+## 9. Intellectual Property
 
-## 12. Changes to Terms
+The Service and its original content are protected by intellectual property laws. You may not copy, modify, or distribute our proprietary materials.
 
-We reserve the right to modify these Terms at any time. We will notify users of changes by posting the updated Terms on our website.
+## 10. Disclaimers
 
-## 13. Contact Us
+THE SERVICE IS PROVIDED "AS IS" WITHOUT WARRANTIES OF ANY KIND. WE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
 
-If you have questions about these Terms, please contact us at legal@mywebdav.com.
+## 11. Limitation of Liability
 
-By using MyWebdav, you acknowledge that you have read, understood, and agree to be bound by these Terms of Service.
+TO THE MAXIMUM EXTENT PERMITTED BY LAW, OUR TOTAL LIABILITY SHALL NOT EXCEED THE AMOUNT PAID BY YOU IN THE 12 MONTHS PRECEDING THE CLAIM.
+
+## 12. Indemnification
+
+You agree to indemnify and hold us harmless from claims arising from your use of the Service or violation of these Terms.
+
+## 13. Governing Law and Dispute Resolution
+
+These Terms are governed by the laws of the Netherlands. Disputes shall be resolved through binding arbitration in Amsterdam, Netherlands.
+
+## 14. Modifications to Terms
+
+We may modify these Terms with reasonable notice. Continued use after changes constitutes acceptance.
+
+## 15. Severability
+
+If any provision is found invalid, the remaining provisions remain in effect.
+
+## 16. Entire Agreement
+
+These Terms constitute the entire agreement between you and us regarding the Service.
+
+## Contact Information
+
+If you have any questions about this terms of service, please contact us:
+
+- **Email:** [legal@mywebdav.eu](mailto:legal@mywebdav.eu)
+- **Website:** https://mywebdav.eu
+- **Address:** MyWebdav Technologies, European Union
+
+MyWebdav Technologies