Quote:
Originally Posted by rigogsilva
MGlitch, thanks for sharing this. I was not aware of that before trying to create this.
Yes, I believe security would definitely be an issue. To mitigate some of that, I was thinking of creating a tool that would run in your local machine that would pull just the data needed out of the database. So, no need to share the whole database which has emails and other personal info.
After pulling the data, this "tool" would show to the user with checkboxes where the user can accept and decline sharing that specific data (e.g.: percentage read, and others).
In regards to storing the data. The data can be anonymized, so there is no email or other personal info attached to the user; just the user id.
Thoughts about that?
|
Hello,
First of all congrats on your work! It is very similar to what we have on thekobonotes.
Since I am the developer of thekobonotes.com I have to just clarify "the security issue" that was addressed. When you upload your notes on our app, the .sqlite file is processed on the browser! We then only upload the data related to the annotations and highlights to the server so you can access them everywhere (including in our new mobile app). This way any sensitive data that is on the kobo sqlite file stays on your browser (on the client) and we do not have access and we do not store it in any way on our server. This was an important aspect that we addressed in our app for security reasons.
Again congrats on your work
All the best