You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CP-CPS.md
+10-10Lines changed: 10 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -12,7 +12,7 @@ ISRG PKI services are most commonly, but not necessarily exclusively, provided u
12
12
13
13
The ISRG PKI conforms to the current version of the Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates published at <https://www.cabforum.org>. In the event of any inconsistency between this document and those Requirements, those Requirements take precedence over this document.
14
14
15
-
Other documents related to the behavior and control of the ISRG PKI, such as a Subscriber Agreement and Privacy Policy, can be found at <https://letsencrypt.org/repository/>.
15
+
Other documents related to the behavior and control of the ISRG PKI, such as a Subscriber Agreement and Privacy Policy, can be found in the Policy and Legal Repository.
16
16
17
17
Per IETF PKIX RFC 3647, this CP/CPS is divided into nine components that cover security controls, practices, and procedures for certification services provided by the ISRG PKI.
18
18
@@ -31,7 +31,7 @@ Commons, PO Box 1866, Mountain View, CA 94042, USA.
31
31
32
32
## 1.2 Document name and identification
33
33
34
-
This is the ISRG CP/CPS. This document was approved for publication by the ISRG Policy Management Authority, and is made available at <https://letsencrypt.org/repository/>.
34
+
This is the ISRG CP/CPS. This document was approved for publication by the ISRG Policy Management Authority, and is made available in the Policy and Legal Repository.
35
35
36
36
The following revisions have been made:
37
37
@@ -172,9 +172,9 @@ See Sections 4.9.7 and 4.9.10 for details on revocation information.
172
172
173
173
## 2.2 Publication of certification information
174
174
175
-
ISRG Combined CP/CPS, Privacy Policy, Subscriber Agreement, and WebTrust audit documents are made publicly available in the Policy and Legal Repository at <https://letsencrypt.org/repository/>.
175
+
ISRG Combined CP/CPS, Privacy Policy, Subscriber Agreement, and WebTrust audit documents are made publicly available in the Policy and Legal Repository.
176
176
177
-
Records of all ISRG Root and Subordinate CA certificates, including valid/expired/revoked test pages, are available in the Certificate Repository at <https://letsencrypt.org/certificates/>.
177
+
Records of all ISRG Root and Subordinate CA certificates, including valid/expired/revoked test pages, are available in the Certificate Repository.
178
178
179
179
## 2.3 Time or frequency of publication
180
180
@@ -1224,31 +1224,31 @@ ISRG employees, agents, and contractors are responsible for protecting confident
1224
1224
1225
1225
### 9.4.1 Privacy plan
1226
1226
1227
-
ISRG follows the privacy policy posted on its website (<https://letsencrypt.org/repository/>) when handling personal information.
1227
+
ISRG follows the privacy policy posted in the Policy and Legal Repository when handling personal information.
1228
1228
1229
1229
### 9.4.2 Information treated as private
1230
1230
1231
-
The privacy policy posted on ISRG's website (<https://letsencrypt.org/repository/>) identifies information that ISRG treats as private.
1231
+
The privacy policy posted in the Policy and Legal Repository identifies information that ISRG treats as private.
1232
1232
1233
1233
### 9.4.3 Information not deemed private
1234
1234
1235
-
The privacy policy posted on ISRG's website (<https://letsencrypt.org/repository/>) identifies information that ISRG does not treat as private.
1235
+
The privacy policy posted in the Policy and Legal Repository identifies information that ISRG does not treat as private.
1236
1236
1237
1237
### 9.4.4 Responsibility to protect private information
1238
1238
1239
-
ISRG employees and contractors are subject to policies or contractual obligations requiring them to comply with ISRG's privacy policy (<https://letsencrypt.org/repository/>) or contractual obligations at least as protective of private information as ISRG's privacy policy.
1239
+
ISRG employees and contractors are subject to policies or contractual obligations requiring them to comply with ISRG's privacy policy (see the Policy and Legal Repository) or contractual obligations at least as protective of private information as ISRG's privacy policy.
1240
1240
1241
1241
### 9.4.5 Notice and consent to use private information
1242
1242
1243
-
ISRG follows the privacy policy posted on its website (<https://letsencrypt.org/repository/>) when using personal information.
1243
+
ISRG follows the privacy policy posted in the Policy and Legal Repository when using personal information.
1244
1244
1245
1245
### 9.4.6 Disclosure pursuant to judicial or administrative process
1246
1246
1247
1247
ISRG may disclose personal information if compelled to do so by court order or other compulsory legal process, provided that if ISRG determines that such court order or legal process is invalid or unconstitutional, ISRG will make reasonable legal efforts to oppose disclosure.
1248
1248
1249
1249
### 9.4.7 Other information disclosure circumstances
1250
1250
1251
-
ISRG may disclose personal information under other circumstances that are described in the privacy policy posted on its website (<https://letsencrypt.org/repository/>).
1251
+
ISRG may disclose personal information under other circumstances that are described in the privacy policy posted in the Policy and Legal Repository.
0 commit comments