Docs: Relabel pages to new top-level "Reference/Policies and legal documents" (Diátaxis) (#9916)

benjaoming · ericholscher · web-flow · commit 9c1fdd17414b · 2023-01-27T22:53:57.000+01:00
* Diátaxis refactor: Collect legal documents and policies in a single top-level "Reference/Policies and legal documents"

* Replace only occurrence of "Policy for Unofficial and Unmaintanied Projects"

* Update docs/user/security.rst

Co-authored-by: Eric Holscher &lt;25510+ericholscher@users.noreply.github.com&gt;

* Hide TOC and use nice definition list only, put a placeholder in legal/index (pending that we do a redirect instead), move Account Security to Security Policy.

* Add comment about weird legacy locations

* Remove legal/index.rst again and replace with Exact Redirect

---------

Co-authored-by: Eric Holscher &lt;25510+ericholscher@users.noreply.github.com&gt;
diff --git a/docs/user/abandoned-projects.rst b/docs/user/abandoned-projects.rst
@@ -1,5 +1,5 @@
-Policy for Abandoned Projects
-=============================
+Abandoned projects policy
+=========================
 
 This policy describes the process by which a Read the Docs project :term:`slug` may be changed.
 
diff --git a/docs/user/index.rst b/docs/user/index.rst
@@ -111,6 +111,7 @@ to help you create fantastic documentation for your project.
    /server-side-search/api
    /reference/features
    /server-side-search/syntax
+   /reference/policies
 
 
 Read the Docs feature overview
@@ -304,10 +305,6 @@ of Read the Docs and the larger software documentation ecosystem.
    :hidden:
    :caption: About Read the Docs
 
-   security
-   dmca/index
-   abandoned-projects
-   unofficial-projects
    changelog
 
    about
@@ -318,7 +315,5 @@ of Read the Docs and the larger software documentation ecosystem.
    advertising/index
    sponsors
 
-   legal/index
-
    Developer Documentation <https://dev.readthedocs.io>
    glossary
diff --git a/docs/user/legal/index.rst b/docs/user/legal/index.rst
diff --git a/docs/user/legal/security-policy.rst b/docs/user/legal/security-policy.rst
@@ -1,4 +1,4 @@
-Security Policy
+Security policy
 ===============
 
 Read the Docs adheres to the following security policies and procedures with
@@ -73,3 +73,17 @@ Continuous integration
 Incident response
     Our engineering team is on a rotating on-call schedule to respond to
     security or availability incidents.
+
+Account security
+----------------
+
+* All traffic is encrypted in transit so your login is protected.
+* Read the Docs stores only one-way hashes of all passwords.
+  Nobody at Read the Docs has access to your passwords.
+* Account login is protected from brute force attacks with rate limiting.
+* While most projects and docs on Read the Docs are public,
+  we treat your private repositories and private documentation as confidential
+  and Read the Docs employees may only view them
+  with your explicit permission in response to your support requests,
+  or when required for security purposes.
+* You can read more about account privacy in our :doc:`/privacy-policy`.
diff --git a/docs/user/privacy-policy.rst b/docs/user/privacy-policy.rst
@@ -1,7 +1,7 @@
 .. This is linked from the footer of readthedocs.org
 .. and from the version (flyout) menu on docs sites
 
-Privacy Policy
+Privacy policy
 ==============
 
 Effective date: **September  30, 2019**
diff --git a/docs/user/reference/policies.rst b/docs/user/reference/policies.rst
@@ -0,0 +1,48 @@
+============================
+Policies and legal documents
+============================
+
+Here is some of the fine print used by |org_brand| and |com_brand|:
+
+.. File locations are a bit odd here because of legacy.
+.. We will move files to new locations and create redirects in a later refactor
+
+.. toctree::
+   :maxdepth: 1
+   :hidden:
+
+   /abandoned-projects
+   /unofficial-projects
+   /privacy-policy
+   /legal/security-policy
+   /security
+   /terms-of-service
+   DMCA takedown policy </dmca/index>
+   /legal/dpa/index
+
+:doc:`/abandoned-projects`
+    Our policy of taking action on abandoned projects.
+
+:doc:`/unofficial-projects`
+    Our policy of taking action on unofficial and unmaintained projects.
+
+:doc:`/terms-of-service`
+    The terms of service for using |org_brand| and |com_brand|. You may instead
+    have a master services agreement for your subscription if you have a custom
+    or enterprise contract.
+
+:doc:`/privacy-policy`
+    Our policy on collecting, storing, and protecting user and visitor data.
+
+:doc:`/legal/security-policy`
+    Our policies around application and infrastructure security.
+
+:doc:`/security`
+    How we respond to security incidents and how you report a security issue.
+
+:doc:`/legal/dpa/index`
+    For GDPR and CCPA compliance, we provide a data processing addendum for
+    |com_brand| customers.
+
+:doc:`/dmca/index`
+    Our process for taking down content based on DMCA requests and how to submit requests.
diff --git a/docs/user/security.rst b/docs/user/security.rst
@@ -2,8 +2,8 @@
 ..    https://readthedocs.org/.well-known/security.txt
 ..    https://readthedocs.org/security/
 
-Security
-========
+Security reports
+================
 
 Security is very important to us at Read the Docs.
 We follow generally accepted industry standards to protect the personal information
@@ -16,20 +16,10 @@ we are committed to responsible reporting and disclosure of security issues.
    :backlinks: none
    :depth: 1
 
+.. seealso::
 
-Account security
-----------------
-
-* All traffic is encrypted in transit so your login is protected.
-* Read the Docs stores only one-way hashes of all passwords.
-  Nobody at Read the Docs has access to your passwords.
-* Account login is protected from brute force attacks with rate limiting.
-* While most projects and docs on Read the Docs are public,
-  we treat your private repositories and private documentation as confidential
-  and Read the Docs employees may only view them
-  with your explicit permission in response to your support requests,
-  or when required for security purposes.
-* You can read more about account privacy in our :doc:`privacy-policy`.
+   :doc:`/legal/security-policy`
+      Read our policy for security, which we base our security handling and reporting on.
 
 Supported versions
 ------------------
diff --git a/docs/user/unofficial-projects.rst b/docs/user/unofficial-projects.rst
@@ -1,5 +1,5 @@
-Policy for Unofficial and Unmaintained Projects
-===============================================
+Unofficial and unmaintained projects policy
+===========================================
 
 This policy describes a process where we take actions against unmaintained_ and unofficial_ forks of project documentation.
 
@@ -84,7 +84,7 @@ Projects that are determined to be unmaintained_ and unofficial_ will have a ``r
 
   # robots.txt
   User-agent: *
-  # This project is delisted according to the Policy for Unofficial and Unmaintanied Projects
+  # This project is delisted according to the Unofficial and Unmaintanied Project Policy
   # https://docs.readthedocs.io/en/stable/unofficial-projects.html
   Disallow: /
 
