All requests to the hex.pm and hexdocs.pm websites are logged. The logs include information about the time the request was made and to which URL, the IP address it was from and browser user agent.
The logged data is only available to hex.pm’s administrative team, but may be made available in aggregate and anonymized forms.
A cookie is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns.
A registered user is required to publish packages, to otherwise consume the API a user is not required. See the “User information” section below for more information about what user information is stored and is public.
Requests to the API is logged and the same information is stored as for the websites.
Packages published to hex.pm are public. Package metadata will be displayed on the hex.pm website and the full contents of the package will be available on the repository, as such care needs to be taken to not include private or confidential information in the package. Additionally, documentation that has been published to hex.pm will be displayed to the public on hexdocs.pm. Anything published to hex.pm should be seen as public immediately and forever, if credentials are accidentally published they should be changed immediately.
Requests to the repository is logged and the same information is stored as for the websites.
For registered users their username, email address, and cryptographically hashed password is stored and is required to be provided by users. In addition to this profile information, such as user’s full name and social media handles, may be stored of the user if the user chooses to provide it.
Profile information is public and accessible to anyone including the user’s username, email address, and full name with the ability to opt-out of showing the email address and full name. Packages owned and published by the user is also public. No other information, including the user’s password, is public and will not be shared with other parties.
Hex.pm may disclose personally identifiable information under special circumstances, such as to comply with subpoenas or when your actions violate the Terms of Service.
All emails to
***@hex.pm are stored, including the email address of the sender and the contents of the email. This information is available internally to hex.pm but will not be disclosed to the outside. See the “Disclosure” section for exceptions to this.
This document may be reused under a Creative Commons Attribution-ShareAlike License.