Initial addition of Mailfence

Update nitrohorse's key (#1778 )
Add new browser tweaks and remove deprecated info (#1772 )
2020-03-12 20:52:07 +10:30 · 2020-03-11 15:50:51 +01:00 · 2020-03-11 12:19:19 +00:00 · 2020-03-10 17:15:14 +01:00 · 2020-03-10 16:30:50 +01:00 · 2020-03-10 17:26:50 +02:00
680 changed files with 1970 additions and 1058 deletions
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@ -8,6 +8,11 @@
 # Administration Related Files
 /pages/donate.html @JonahAragon @BurungHantu1605
 /pages/notices.md @JonahAragon
 /pages/sponsors.html @JonahAragon
 /_includes/sponsors/ @JonahAragon
 /assets/img/svg/3rd-party/sponsors/ @JonahAragon
 /README.md @JonahAragon @BurungHantu1605
 /assets/js/redirects.js @JonahAragon
 /.well-known/ @JonahAragon
 /404.html @JonahAragon
@ -17,3 +22,11 @@
 /.travis.yml @JonahAragon @Shifterovich @nitrohorse
 /CNAME @JonahAragon
 /nginx/ @JonahAragon
 # WKD
 /.well-known/openpgpkey/hu/mrobfoimg5wz876m7kp6spyu66941weo @Mikaela
 /.well-known/openpgpkey/hu/nqspr7yd4bgs8ry43zbzpjd45p4iug5b @dawidpotocki
 /.well-known/openpgpkey/hu/dnrefmbtd6i58w8xfy4imj94cmbw3u3h @dngray
 /.well-known/openpgpkey/hu/rse6m7dxfdjo86qhyj6wqs1hcdcp7em4 @danarel
 /.well-known/openpgpkey/hu/zt71pstaerw1jpa5ru3borqmfsnbwnf6 @nitrohorse
 /.well-known/openpgpkey/hu/omn8s4nziz8zmyz6f756asto39gefr63 @JonahAragon
--- a/.github/CONTRIBUTING.md
+++ b/.github/CONTRIBUTING.md
@ -95,8 +95,9 @@ See https://www.privacytools.io/providers/vpn/#criteria for more details.
 ## Images
- Provider logos are 200px x 70px ([example](https://github.com/privacytoolsIO/privacytools.io/blob/master/assets/img/provider/Mullvad.png))
+- SVG file format is strongly preferred. PNG files can be used as a fallback if images are too complex or otherwise unsuitable as a vector format.
- Tool logos are 120px x 120px ([example](https://github.com/privacytoolsIO/privacytools.io/blob/master/assets/img/tools/Firefox.png))
+- Provider logo dimensions are 384px x 128px ([example](https://github.com/privacytoolsIO/privacytools.io/blob/master/assets/img/svg/3rd-party/mullvad.svg))
 - Tool logo dimensions are 120px x 120px ([SVG example](https://github.com/privacytoolsIO/privacytools.io/blob/master/assets/img/svg/3rd-party/firefox_browser.svg), [PNG example](https://github.com/privacytoolsIO/privacytools.io/blob/master/assets/img/png/3rd-party/claws_mail.png))
 ## Licensing
--- a/.github/ISSUE_TEMPLATE/1_Software_Suggestion.md
+++ b/.github/ISSUE_TEMPLATE/1_Software_Suggestion.md
@ -12,3 +12,16 @@ labels: 🆕 software suggestion
 **URL:**
 ## Description
 ## Why I am making the suggestion
 <!-- Anything you would like to tell us about the software? -->
 ## My connection with the software
 <!-- Are you the author? Enthustiastic or early adopter? Friends with the author or requested by them to open the isue? An employee of the software maker? -->
 - [ ] I will keep the issue up-to-date if something I have said changes or I remember a connection with the software.
--- a/.github/ISSUE_TEMPLATE/2_Software_Removal.md
+++ b/.github/ISSUE_TEMPLATE/2_Software_Removal.md
@ -7,3 +7,15 @@ labels: ❌ software removal
 ## Description
 ## Why I am making the suggestion
 <!-- Anything you would like to tell us about the software? -->
 ## My connection with the software
 <!-- Are you the author? Competitor? Just hating the software with passsion for some reason? -->
 - [ ] I will keep the issue up-to-date if something I have said changes or I remember a connection with the software.
--- a/.github/ISSUE_TEMPLATE/3_Discussion.md
+++ b/.github/ISSUE_TEMPLATE/3_Discussion.md
@ -1,13 +0,0 @@
 <!--
    Is there already a discussion about this on the forum (https://forum.privacytools.io/search)?
    If not, please open a new discussion there. Thank you!
 -->
 ---
 name: "💬 Discussion"
 about: Discuss the website or any mentioned software in general.
 title: "💬 Discussion | "
 labels: 💬 discussion, feedback wanted
 ---
 <!-- Remember to stay civil! -->
--- a/.github/ISSUE_TEMPLATE/3_Feature_Suggestion.md
+++ b/.github/ISSUE_TEMPLATE/3_Feature_Suggestion.md
@ -1,9 +1,8 @@
 ---
 name: "✨ Feature Suggestion"
-about: Suggest a new feature for the website.
+about: Suggest a new feature/section/page for the website.
 title: "✨ Feature Suggestion | "
 labels: ✨ enhancement
 ---
-## Description:
+## Description
--- a/.github/ISSUE_TEMPLATE/4_Content_Correction.md
+++ b/.github/ISSUE_TEMPLATE/4_Content_Correction.md
@ -0,0 +1,21 @@
 ---
 name: "📝 Content Correction"
 about: Report any inaccurate, incorrect, or outdated information on the website.
 title: "📝 Correction | "
 labels: 📝 correction
 ---
 ## Description
 ## Why I am making the suggestion
 <!-- Anything you would like to tell us about the software? -->
 ## My connection with the software
 <!-- Are you the author? Competitor? Just hating the software with passsion for some reason? -->
 - [ ] I will keep the issue up-to-date if something I have said changes or I remember a connection with the software.
--- a/.github/ISSUE_TEMPLATE/5_Website_Issues.md
+++ b/.github/ISSUE_TEMPLATE/5_Website_Issues.md
@ -1,10 +1,19 @@
 ---
 name: "🌐 Website Issue"
-about: Report an issue with the website.
+about: Report a bug with the website. (NO CONTENT ISSUES)
 title: "🌐 Website Issue | "
-labels: 🌐 website issue, high priority
+labels: 🌐 website issue
 ---
 <!--
 READ ME FIRST:
 This is NOT the place to request changes to the content of the website.
 This is NOT the place to report issues with our services. (That is https://github.com/privacytoolsIO/services/issues/new)
 This is ONLY for reporting bugs or technical issues with www.privacytools.io.
 -->
 ## Description
 <!--
--- a/.github/ISSUE_TEMPLATE/7_DNS_provider.md
+++ b/.github/ISSUE_TEMPLATE/7_DNS_provider.md
@ -1,36 +0,0 @@
 ---
 name: "🗄️ encrypted DNS provider suggestion"
 about: Suggest a new encrypted DNS provider.
 title: "🗄️ DNS provider suggestion | "
 labels: 🌐 website issue, 🗄️ DNS
 ---
 <!-- Please feel free to overwrite these comments -->
 ## Basic Information
 **Name:** 
 **Filtering:** <!-- What is being filtered? Is it opt-in with separate address or not? -->
 **Privacy policy:** <!-- Link, especially when there is logging -->
 **Protocols:** <!-- at least DoH or DoT? DNSCrypt? -->
 **Server/Location:** <!-- Where is the provider based? Where are their servers located? Anycast if there are multiple servers answering to the same address -->
 **Source:** <!-- link to the source code, preferred, but optional -->
 **Type:** <!-- Non-profit, commercial, hobby project? -->
 **Website:** 
 ## Description
 <!-- Why should we list your suggestion? Anything else, that you wish us to know? -->
 ### Required features:
 <!-- DoH and DoT are supported natively by platforms like Firefox and Android 9+ -->
 * [ ] supports DoH or DoT <!-- We love DNSCrypt, but there is already https://github.com/DNSCrypt/dnscrypt-resolvers which is directly supported by dnscrypt-proxy, so we don't consider useful to list providers only supporting it.  -->
 * [ ] supports DNSSEC <!--  https://dnssec.vs.uni-due.de/ can test your current DNS provider. -->
 * [ ] doesn't log IP addresses during normal operation <!-- If your suggestion logs, please compare its privacy policy with other servers on our table that keep logs. -->
 #### Desired features
 * [ ] supports QNAME minimization <!-- if you have access to the dig command run `dig +short txt qnamemintest.internet.nl` or `Resolve-DnsName -Type TXT -Name qnamemintest.internet.nl` if you are on Windows 10 -->
--- a/.github/ISSUE_TEMPLATE/config.yml
+++ b/.github/ISSUE_TEMPLATE/config.yml
@ -0,0 +1,7 @@
 contact_links:
  - name: Services issues
    url: https://github.com/privacytoolsIO/services/issues/new/choose
    about: Open any issues/bug reports/requests related to our services (Mastodon, Matrix, etc) here.
  - name: PrivacyTools Community
    url: https://forum.privacytools.io/
    about: Please ask any generic questions on our forum.
--- a/.github/PULL_REQUEST_TEMPLATE.md
+++ b/.github/PULL_REQUEST_TEMPLATE.md
@ -1,4 +1,4 @@
-<!-- PLEASE READ OUR CODE OF CONDUCT (https://github.com/privacytoolsIO/privacytools.io/blob/master/CODE_OF_CONDUCT.md) AND CONTRIBUTING GUIDELINES (https://github.com/privacytoolsIO/privacytools.io/blob/master/.github/CONTRIBUTING.md) BEFORE SUBMITTING -->
+<!-- PLEASE READ OUR CODE OF CONDUCT (https://wiki.privacytools.io/view/PrivacyTools:Code_of_Conduct) AND CONTRIBUTING GUIDELINES (https://github.com/privacytoolsIO/privacytools.io/blob/master/.github/CONTRIBUTING.md) BEFORE SUBMITTING -->
 ## Description
@ -6,6 +6,8 @@ Resolves: #none <!-- A link to the (discussion) issue resolved by this pull requ
 #### Check List <!-- Please add an x in each box below, like so: [x] -->
 - [ ] I understand that by not opening an issue about a software/service/similar addition/removal, this pull request will be closed without merging.
 - [ ] I have read and understand [the contributing guidelines](https://github.com/privacytoolsIO/privacytools.io/blob/master/.github/CONTRIBUTING.md).
 - [ ] The project is [Free Libre](https://en.wikipedia.org/wiki/Free_software) and/or [Open Source](https://en.wikipedia.org/wiki/Open-source_software) Software
--- a/.travis.yml
+++ b/.travis.yml
@ -1,11 +0,0 @@
 language: ruby
 rvm:
  - 2.4.1
 # Assume bundler is being used, therefore
 # the `install` step will run `bundle install` by default.
 script: ./build.sh
 sudo: false # route your build to the container-based infrastructure for a faster build
 cache: bundler # caching bundler gem packages will speed up build
--- a/.well-known/openpgpkey/hu/dnrefmbtd6i58w8xfy4imj94cmbw3u3h
+++ b/.well-known/openpgpkey/hu/dnrefmbtd6i58w8xfy4imj94cmbw3u3h
--- a/.well-known/openpgpkey/hu/mrobfoimg5wz876m7kp6spyu66941weo
+++ b/.well-known/openpgpkey/hu/mrobfoimg5wz876m7kp6spyu66941weo
--- a/.well-known/openpgpkey/hu/nqspr7yd4bgs8ry43zbzpjd45p4iug5b
+++ b/.well-known/openpgpkey/hu/nqspr7yd4bgs8ry43zbzpjd45p4iug5b
--- a/.well-known/openpgpkey/hu/omn8s4nziz8zmyz6f756asto39gefr63
+++ b/.well-known/openpgpkey/hu/omn8s4nziz8zmyz6f756asto39gefr63
--- a/.well-known/openpgpkey/hu/rse6m7dxfdjo86qhyj6wqs1hcdcp7em4
+++ b/.well-known/openpgpkey/hu/rse6m7dxfdjo86qhyj6wqs1hcdcp7em4
--- a/.well-known/openpgpkey/hu/zt71pstaerw1jpa5ru3borqmfsnbwnf6
+++ b/.well-known/openpgpkey/hu/zt71pstaerw1jpa5ru3borqmfsnbwnf6
--- a/.well-known/openpgpkey/policy
+++ b/.well-known/openpgpkey/policy
--- a/Gemfile.lock
+++ b/Gemfile.lock
@ -219,7 +219,7 @@ GEM
    ruby-enum (0.7.2)
      i18n
    ruby_dep (1.5.0)
-    rubyzip (1.2.3)
+    rubyzip (2.0.0)
    safe_yaml (1.0.5)
    sass (3.7.4)
      sass-listen (~> 4.0.0)
--- a/README.md
+++ b/README.md
@ -1,25 +1,32 @@
-[![privacytools](./assets/img/layout/logo.png)](https://www.privacytools.io/)
+<a href="https://www.privacytools.io">
 	<img src="assets/img/svg/layout/brand/horizontal.svg" width="500px" alt="PrivacyTools" />
 </a>
 _Encryption Against Global Mass Surveillance._
-[![Build Status](https://travis-ci.com/privacytoolsIO/privacytools.io.svg?branch=master)](https://travis-ci.com/privacytoolsIO/privacytools.io)
+[![Netlify Status](https://api.netlify.com/api/v1/badges/afd98777-c205-4928-a301-f57a1448113f/deploy-status)](https://app.netlify.com/sites/privacytools-io/deploys)
 # Contributing
 It's important for a website like PrivacyTools to be up-to-date. Keep an eye on software updates of the applications listed here. Follow recent news about providers that are recommended. We try our best to keep up but we're not perfect and the internet is changing fast. So if you find an error, or you think a provider should not be listed here, or a qualified service provider is missing or a browser plugin is not the best choice anymore or anything else...
-**Talk to us please.** Join our [subreddit](https://www.reddit.com/r/privacytoolsIO/) or [our Discourse community](https://forum.privacytools.io/) and start a discussion. This is a community project and we're aiming to deliver the best information available for a better privacy. Thank you for participating.
+**Talk to us!** If you want to help make privacytools.io the best website it can be, join our Matrix discussion chat at [`#dev:privacytools.io`](https://matrix.to/#/#dev:privacytools.io), where we talk about open issues and PRs in this repo, and changes to the site. You may submit any website suggestions here on GitHub [Issues](https://github.com/privacytoolsIO/privacytools.io/issues). Please refer to the [contribution guidelines](.github/CONTRIBUTING.md) and consider stopping by our chat room before submitting. Thank you.
-You can submit your suggestions here on GitHub [(Issues)](https://github.com/privacytoolsIO/privacytools.io/issues) and also in our [subreddit](https://www.reddit.com/r/privacytoolsIO/). Please refer to the [Contributing Guidelines](.github/CONTRIBUTING.md) before submitting. Thank you.
+If you want to discuss privacy in general, a new tool, or just something else, feel free to join [our Discourse community](https://forum.privacytools.io/) or our general Matrix room at [`#general:privacytools.io`](https://matrix.to/#/#general:privacytools.io) and start a discussion! This is a community project and we're aiming to deliver the best information available. Thank you for participating.
-## Building
+## Developing
-1. Install [Ruby](https://www.ruby-lang.org/en/documentation/installation/)
+1. Install the latest stable version of [Ruby](https://www.ruby-lang.org/en/downloads/).
-1. Install [bundler](https://bundler.io/) by running `gem install bundler`.
+1. Install [Bundler](https://bundler.io/) v2.0.1:
-1. Run `bundle install` to install the required dependencies.
+	* `gem install bundler -v 2.0.1`
-1. Use `bundle exec jekyll build` to build the website. The output can be found in the `_site` directory.  Live preview is also possible by running `bundle exec jekyll serve`
+1. Install the required dependencies:
 	* `bundle install`
 1. Build the website (the output can be found in the `_site` directory):
 	* `bundle exec jekyll build`
 1. Serve the website locally with live reloading:
 	* `bundle exec jekyll serve --incremental --livereload`
-# Support privacytools.io
+# Support
 - [Donate.](https://www.privacytools.io/donate/)
 - [Liberapay](https://liberapay.com/privacytools.io/donate) or [Patreon.](https://www.patreon.com/privacytools)
@ -28,6 +35,10 @@ You can submit your suggestions here on GitHub [(Issues)](https://github.com/pri
 - [Make suggestions on reddit.](https://www.reddit.com/r/privacytoolsIO/)
 - View and edit our website source code here on GitHub.
 # Sponsors
 - [Safing](https://safing.io/)
 # Community Translations
 - [繁体中文 / Chinese](https://privacytools.twngo.xyz/) - [GitHub](https://github.com/twngo/privacytools-zh)
 - [Español / Spanish](https://victorhck.gitlab.io/privacytools-es/) - [GitLab](https://gitlab.com/victorhck/privacytools-es)
@ -38,6 +49,6 @@ You can submit your suggestions here on GitHub [(Issues)](https://github.com/pri
 - [Русский / Russian](https://privacytools.ru) - [GitHub](https://github.com/c0rdis/privacytools.ru)
 - [Português / Portuguese](https://www.privacidade.digital/) - [GitHub](https://github.com/PrivacidadeDigital/privacidade.digital)
-# License
+# License & Notices
-The content and original technology of this website is made available under the [Creative Commons Zero v1.0 Universal](https://www.privacytools.io/LICENSE.txt) license text. Some files or folders may include works from other projects with separate licenses, and will be marked as such. By contributing to this repository, contributors do not necessarily agree to sign a CLA or legally transfer their copyright to the project, but they do at a minimum agree to license their work under the current license of this repository: In this case, the Creative Commons Zero v1.0 Universal.
+Please visit [https://www.privacytools.io/notices/](https://www.privacytools.io/notices/) for license information and other disclaimers. PrivacyTools is provided on an "as-is" basis, without warranty, and disclaiming liability for damages. By contributing to this repository you agree to license your work under the terms of the [license](https://github.com/privacytoolsIO/privacytools.io/blob/master/LICENSE.txt) in this repository.
--- a/_includes/breadcrumbs.html
+++ b/_includes/breadcrumbs.html
@ -8,7 +8,8 @@
    {% if forloop.last %}
    <li class="breadcrumb-item active" aria-current="page" itemprop="itemListElement" itemscope itemtype="https://schema.org/ListItem">
      <link href="{% assign crumb_limit = forloop.index | plus: 1 %}{% for crumb in crumbs limit: crumb_limit %}{{ crumb | append: '/' | replace:'without-plugin/','without-plugins/' }}{% endfor %}" itemprop="item"  />
-      <span itemprop="name">{{ crumb | replace:'-',' ' | remove:'.html' | capitalize }}</span>
+      <span itemprop="name">{% if page.breadcrumb %}{{ page.breadcrumb }}{% else %}{% assign words = crumb | replace:'-',' ' | remove:'.html' | split: ' ' %}{% capture titlecase %}{% for word in words %}{{ word | capitalize }} {% endfor %}{% endcapture %}{{ titlecase }}{% endif %}
      </span>
      <meta itemprop="position" content="{{ forloop.index }}" />
    </li>
    {% else %}
--- a/_includes/cardv2.html
+++ b/_includes/cardv2.html
@ -36,7 +36,7 @@
        height="120"
        width="120"
        class="panel-pic"
-        alt="{{include.title}}"
+        alt="{{include.title}} logo"
      >
      {{ include.description }}
      {% if include.labels %}
--- a/_includes/footer.html
+++ b/_includes/footer.html
@ -7,36 +7,36 @@
  <div class="row mb-4">
    <div class="col-12 col-md-6 d-flex justify-content-between">
      <a href="mailto:?subject=privacytools.io%20-%20encryption%20against%20global%20mass%20surveillance&body={{ site.production_url }}/" class="share-btn email" title="Email">
-        <i class="fas fa-envelope pl-3"></i>
+        <i class="fas fa-envelope"></i>
      </a>
      <a href="https://www.facebook.com/sharer/sharer.php?u={{ site.production_url }}" class="share-btn facebook" title="Facebook">
-        <i class="fab fa-facebook-f pl-3"></i>
+        <i class="fab fa-facebook-f"></i>
      </a>
      <a href="https://twitter.com/share?text=Knowledge%20and%20tools%20to%20protect%20your%20privacy%20against%20global%20mass%20surveillance%20&amp;url={{ site.production_url }}/&amp;via=privacytoolsIO" class="share-btn twitter" title="Twitter">
-        <i class="fab fa-twitter pl-3"></i>
+        <i class="fab fa-twitter"></i>
      </a>
      <a href="https://sharetomastodon.github.io/?title=privacytools.io%20-%20encryption%20against%20global%20mass%20surveillance&url={{ site.production_url }}" class="share-btn mastodon" title="Mastodon">
-        <i class="fab fa-mastodon pl-3"></i>
+        <i class="fab fa-mastodon"></i>
      </a>
    </div>
    <div class="col-12 col-md-6 d-flex justify-content-between">
      <a href="https://reddit.com/submit?url={{ site.production_url }}&title=privacytools.io%20-%20encryption%20against%20global%20mass%20surveillance" class="share-btn reddit" title="reddit">
-        <i class="fab fa-reddit-alien pl-3"></i>
+        <i class="fab fa-reddit-alien"></i>
      </a>
      <a href="https://www.linkedin.com/shareArticle?url={{ site.production_url }}&title=privacytools.io%20-%20encryption%20against%20global%20mass%20surveillance" class="share-btn linkedin" title="LinkedIn">
-        <i class="fab fa-linkedin-in pl-3"></i>
+        <i class="fab fa-linkedin-in"></i>
      </a>
      <a href="https://mix.com/mixit?su=submit&url={{ site.production_url }}&title=privacytools.io%20-%20encryption%20against%20global%20mass%20surveillance" class="share-btn mix" title="Mix">
-        <i class="ptio-mix pl-3"></i>
+        <i class="ptio-mix"></i>
      </a>
      <a href="https://sharetodiaspora.github.io/?title=privacytools.io%20-%20encryption%20against%20global%20mass%20surveillance&url={{ site.production_url }}" class="share-btn diaspora" title="Diaspora*">
-        <i class="fas fa-asterisk pl-3"></i>
+        <i class="fas fa-asterisk"></i>
      </a>
    </div>
  </div>
@ -51,17 +51,24 @@
  <hr class="footer-divider" />
  <div class="row mt-3">
-    <div class="col-sm-4 mb-3 d-flex justify-content-center d-flex justify-content-center">
+    <div class="col-sm-4 mb-3 d-flex justify-content-center align-items-center">
-      <a href="/LICENSE.txt" data-toggle="tooltip" data-placement="top" data-original-title="This work is free. You can redistribute it and/or modify it under the terms of the &quot;Creative Commons CC0 1.0 Universal Public Domain Dedication&quot;."><img alt="CC0" src="/assets/img/layout/zero.png" width="32" height="32">CC0</a>
+      <span class="fab fa-creative-commons-zero fa-2x mr-2"></span>
      <a
        href="/LICENSE.txt"
        title="This work is free. You can redistribute it and/or modify it under the terms of the &quot;Creative Commons CC0 1.0 Universal Public Domain Dedication&quot;."
        data-toggle="tooltip"
        data-placement="top">
        CC0
      </a>
    </div>
-    <div class="col-sm-4 mb-3 d-flex justify-content-center">
+    <div class="col-sm-4 mb-3 d-flex justify-content-center align-items-center">
-      <i class="far fa-address-card fa-2x"></i>
+      <span class="far fa-address-card fa-2x mr-2"></span>
      <a href="/about/">About Us &amp; Contact</a>
    </div>
-    <div class="col-sm-4 mb-3 d-flex justify-content-center">
+    <div class="col-sm-4 mb-3 d-flex justify-content-center align-items-center">
-      <i class="fas fa-donate fa-2x"></i>
+      <span class="fas fa-donate fa-2x mr-2"></span>
      <a href="/donate/" data-toggle="tooltip" data-placement="top" data-original-title="Please support this project by donating. We are ad-free and not affiliated with any providers. Your donation will cover our costs for servers and domains.">Support Us!</a>
    </div>
  </div>
@ -74,12 +81,16 @@
    <p class="mt-2">
      <strong>No Ads, No Google Analytics, No Affiliates, No Cross-Site Requests.</strong>
      <em>{{ site.name }} is a socially motivated website that provides information for protecting your data security and privacy. Never trust any company with your privacy, always encrypt.</em>
      <a href="/privacy/">View our privacy statement</a>.
    </p>
    <p class="text-left">
      Tor v3: <strong>privacy2zbidut4m4jyj3ksdqidzkw3uoip2vhvhbvwxbqux5xy5obyd.onion</strong>
      (<a href="https://write.privacytools.io/jonah/tor-on-privacytools-io">Learn More</a>)
    </p>
    <small>
      <a href="/privacy/">Privacy Statement</a> |
      <a href="/notices/">Notices &amp; Disclaimers</a> |
      <a href="https://github.com/privacytoolsIO/brand">Brand Assets &amp; Guidelines</a>
    </small>
  </div>
 </footer>
--- a/_includes/head.html
+++ b/_includes/head.html
@ -5,10 +5,6 @@
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <meta name="keywords" content="privacy, anonymity, privacy tools, surveillance, encryption">
  <meta name="description" content="{% if page.description %}{{ page.description }}{% else %}{{ site.description }}{% endif %}">
  <meta name="msapplication-TileColor" content="#da532c">
  <meta name="msapplication-TileImage" content="/assets/img/favicons/mstile-144x144.png">
  <meta name="msapplication-config" content="/assets/img/favicons/browserconfig.xml">
  <meta name="theme-color" content="#ffffff">
  <link rel="canonical" href="{{ site.production_url }}{{ page.url | replace:'index.html',''}}">
  <!-- title -->
@ -21,7 +17,7 @@
  {% endif %}
  <meta property="og:type" content="website" />
  <meta property="og:url" content="{{ page.permalink | prepend: site.url }}" />
-  <meta property="og:image" content="{{ site.production_url }}/assets/img/layout/ogimage.jpg" />
+  <meta property="og:image" content="{{ site.production_url }}/assets/img/svg/layout/brand/square-transparent.svg" />
  <meta property="og:description" content="{% if page.description %}{{ page.description }}{% else %}{{ site.description }}{% endif %}"/>
  <meta property="og:locale" content="en_GB" />
  <meta property="og:site_name" content="{{ site.name }}" />
@ -39,7 +35,7 @@
      "privacytoolsIO"
    ],
    "url": "{{ site.production_url }}",
-    "logo": "{{ site.production_url }}/assets/img/layout/shield.png",
+    "logo": "{{ site.production_url }}/assets/img/svg/layout/brand/square-transparent.svg",
    "sameAs": [
      "https://blog.privacytools.io",
      "https://twitter.com/privacytoolsIO",
@ -52,21 +48,16 @@
  {% endif %}
  <!-- icons -->
-  <link rel="apple-touch-icon" sizes="57x57" href="/assets/img/favicons/apple-touch-icon-57x57.png">
+  <link rel="apple-touch-icon" sizes="180x180" href="/assets/img/png/favicons/apple-touch-icon.png?v=2">
-  <link rel="apple-touch-icon" sizes="60x60" href="/assets/img/favicons/apple-touch-icon-60x60.png">
+  <link rel="icon" type="image/png" sizes="32x32" href="/assets/img/png/favicons/favicon-32x32.png?v=2">
-  <link rel="apple-touch-icon" sizes="72x72" href="/assets/img/favicons/apple-touch-icon-72x72.png">
+  <link rel="icon" type="image/png" sizes="16x16" href="/assets/img/png/favicons/favicon-16x16.png?v=2">
-  <link rel="apple-touch-icon" sizes="76x76" href="/assets/img/favicons/apple-touch-icon-76x76.png">
+  <link rel="manifest" href="/assets/img/png/favicons/site.webmanifest?v=2">
-  <link rel="apple-touch-icon" sizes="114x114" href="/assets/img/favicons/apple-touch-icon-114x114.png">
+  <link rel="mask-icon" href="/assets/img/png/favicons/safari-pinned-tab.svg?v=2" color="#3498db">
-  <link rel="apple-touch-icon" sizes="120x120" href="/assets/img/favicons/apple-touch-icon-120x120.png">
+  <link rel="shortcut icon" href="/assets/img/png/favicons/favicon.ico?v=2">
-  <link rel="apple-touch-icon" sizes="144x144" href="/assets/img/favicons/apple-touch-icon-144x144.png">
+  <meta name="msapplication-TileColor" content="#3498db">
-  <link rel="apple-touch-icon" sizes="152x152" href="/assets/img/favicons/apple-touch-icon-152x152.png">
+  <meta name="msapplication-config" content="/assets/img/png/favicons/browserconfig.xml?v=2">
-  <link rel="apple-touch-icon" sizes="180x180" href="/assets/img/favicons/apple-touch-icon-180x180.png">
+  <meta name="theme-color" content="#ffffff">
-  <link rel="icon" type="image/png" href="/assets/img/favicons/favicon-32x32.png" sizes="32x32">
+
  <link rel="icon" type="image/png" href="/assets/img/favicons/android-chrome-192x192.png" sizes="192x192">
  <link rel="icon" type="image/png" href="/assets/img/favicons/favicon-96x96.png" sizes="96x96">
  <link rel="icon" type="image/png" href="/assets/img/favicons/favicon-16x16.png" sizes="16x16">
  <link rel="manifest" href="/assets/img/favicons/manifest.json">
  <link rel="shortcut icon" href="/assets/img/favicons/favicon.ico">
  <!-- CSS stylesheets -->
  <link href="/assets/css/style.css?v=9" rel="stylesheet">
--- a/_includes/nav.html
+++ b/_includes/nav.html
@ -1,8 +1,8 @@
 <nav class="fixed-top bg-dark">
  <div id="navbar" class="d-flex flex-wrap justify-content-between align-items-center">
    <div class="w-50">
-      <a id="nav-home-mobile" class="nav-anchor" href="/index.html">
+      <a id="nav-home-mobile" class="nav-anchor" href="/">
-        <img src="/assets/img/layout/logo_smaller.png" width="150px" />
+        <img src="/assets/img/svg/layout/brand/horizontal.svg" width="150px" />
      </a>
    </div>
    <input type="checkbox" id="nav-toggle" checked />
@ -10,7 +10,7 @@
    <div class="menu w-100">
      <div id="nav-left" class="position-relative flex-col">
-        <a class="nav-anchor" href="/index.html">
+        <a class="nav-anchor" href="/">
          <span id="nav-home" class="fas fa-home fa-fw"></span>
        </a>
@ -64,7 +64,6 @@
          <span class="nav-dropdown">
            <a class="dropdown-item" href="/software/calendar-contacts/"><span class="fas fa-calendar fa-fw"></span> Calendar/Contacts Sync Tools</a>
            <a class="dropdown-item" href="/software/notebooks/"><span class="far fa-sticky-note fa-fw"></span> Digital Notebook</a>
            <a class="dropdown-item" href="/software/email/#messaging"><span class="fas fa-random fa-fw"></span> Email Alternatives</a>
            <a class="dropdown-item" href="/software/email/"><span class="fas fa-envelope fa-fw"></span> Email Clients</a>
            <a class="dropdown-item" href="/software/encryption-tools/"><span class="fas fa-lock fa-fw"></span> File Encryption</a>
            <a class="dropdown-item" href="/software/file-sharing/"><span class="fas fa-file-export fa-fw"></span> File Sharing</a>
@ -88,7 +87,7 @@
          </summary>
          <span class="nav-dropdown">
            <a class="dropdown-item" href="/operating-systems/#os"><span class="fas fa-th-large fa-fw"></span> PC OS</a>
-            <a class="dropdown-item" href="/operating-systems/#live_os"><span class="fas fa-compact-disc fa-fw"></span> Live CD OS</a>
+            <a class="dropdown-item" href="/operating-systems/#live_os"><span class="fas fa-compact-disc fa-fw"></span> PC Live OS</a>
            <a class="dropdown-item" href="/operating-systems/#mobile_os"><span class="fas fa-mobile-alt fa-fw"></span> Mobile OS</a>
            <a class="dropdown-item" href="/operating-systems/#aaddons"><span class="fas fa-th fa-fw"></span> Android Privacy Add-ons</a>
            <a class="dropdown-item" href="/operating-systems/#firmware"><span class="fas fa-signal fa-fw"></span> Router Firmware</a>
@ -139,7 +138,6 @@
            <a href="https://privacytools.dreads-unlock.fr" rel="nofollow noopener" class="dropdown-item">Français</a>
          </span>
        </details>
      </div>
    </div>
  </div>
--- a/_includes/sections/android-addons.html
+++ b/_includes/sections/android-addons.html
@ -1,28 +1,24 @@
 <h1 id="aaddons" class="anchor"><a href="#aaddons"><i class="fas fa-link anchor-icon"></i></a> Android Privacy Add-ons</h1>
 <div class="alert alert-success" role="alert">
  <strong>Improve your privacy with these add-ons for Android.</strong>
 </div>
 <div class="container-fluid">
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
-      <img src="/assets/img/addons/netguard.png" height="70" width="200" class="img-fluid d-block mr-auto ml-auto align-middle" alt="NetGuard">
+      <img src="/assets/img/png/3rd-party/netguard.png" height="70" width="70" class="img-fluid d-block mr-auto ml-auto align-middle" alt="NetGuard">
    </div>
    <div class="col">
    <h3>Control your traffic with <a href="https://www.netguard.me/">NetGuard</a></h3>
-    <p><strong>NetGuard</strong> provides simple and advanced ways to block certain apps' access to the internet without the help of root privileges. Applications and addresses can individually be allowed or denied access to your Wi-Fi and/or mobile connection, allowing you to control which apps are able to call home or not.
+    <p><strong>NetGuard</strong> provides simple and advanced methods to block certain apps from accessing the internet, without requiring root privileges. Applications and addresses can be individually allowed or denied access to your Wi-Fi and/or mobile connections, allowing you to control exactly which apps are able to phone home or not.</p>
    </div>
  </div>
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
-      <img src="/assets/img/addons/Orbot.png" height="70" width="200" class="img-fluid d-block mr-auto ml-auto align-middle" alt="Orbot">
+      <img src="/assets/img/svg/3rd-party/orbot.svg" height="70" width="70" class="img-fluid d-block mr-auto ml-auto align-middle" alt="Orbot">
    </div>
    <div class="col">
    <h3>Tor for Android with <a href="https://guardianproject.info/apps/orbot/">Orbot</a></h3>
-    <p><strong>Orbot</strong> is a free proxy app that empowers other apps to use the internet more securely. Orbot uses Tor to encrypt your Internet traffic and then hides it by bouncing through a series of computers around the world. <strong>Root Mode:</strong> Orbot can be configured to transparently proxy all of your Internet traffic through Tor. You can also choose which specific apps you want to use through Tor.
+    <p><strong>Orbot</strong> is a free proxy app that empowers other apps to use the internet more securely. Orbot uses Tor to encrypt your Internet traffic and then hides it by bouncing through a series of computers around the world. <strong>Root Mode:</strong> Orbot can be configured to transparently proxy all of your Internet traffic through Tor. You can also choose which specific apps you wish to use through Tor.</p>
    </div>
  </div>
@ -32,6 +28,6 @@
 <ul>
  <li>
-    <a href="/providers/dns#clients">Our DNS page</a> which also has information on encrypting DNS on Android.
+    <a href="/providers/dns#clients">Our DNS client recommendations</a>, which have information on enabling encrypted DNS on Android.
  </li>
 </ul>
--- a/_includes/sections/browser-addons.html
+++ b/_includes/sections/browser-addons.html
@ -1,13 +1,13 @@
 <h1 id="addons" class="anchor"><a href="#addons"><i class="fas fa-link anchor-icon"></i></a> Recommended Browser Add-ons</h1>
-<div class="alert alert-primary" role="alert">
+<div class="alert alert-secondary" role="alert">
-  <strong>Improve your privacy with these browser add-ons.</strong>
+  Not all of these add-ons are necessary, and many provide redundant functionality. Choose the ones you need, and <a class="alert-link" href="https://blog.privacytools.io/firefox-privacy-an-introduction-to-safe/">learn more with our guide to Firefox Privacy</a>.
 </div>
 {% include cardv2.html
 title="uBlock Origin: Block Ads and Trackers"
-image="/assets/img/addons/ublock-origin.png"
+image="/assets/img/svg/3rd-party/ublock_origin.svg"
-description="<strong>uBlock Origin</strong> is an efficient <a href=https://github.com/gorhill/uBlock/wiki/Blocking-mode>wide-spectrum blocker</a> that's easy on memory, and yet can load and enforce thousands more filters than other popular blockers out there. It has no monetization strategy and is completely open source."
+description="<strong>uBlock Origin</strong> is an efficient <a href=https://github.com/gorhill/uBlock/wiki/Blocking-mode>wide-spectrum blocker</a> that is easy on memory, and yet can load and enforce thousands more filters than other popular blockers out there. It has no monetization strategy and is completely open source."
 website="https://addons.mozilla.org/firefox/addon/ublock-origin/"
 forum="https://forum.privacytools.io/t/discussion-ublock-origin/266"
 github="https://github.com/gorhill/uBlock/"
@ -17,21 +17,10 @@ opera="https://addons.opera.com/en/extensions/details/ublock/"
 edge="https://www.microsoft.com/en-us/p/ublock-origin/9nblggh444l4"
 %}
 {% include cardv2.html
 title="Cookie AutoDelete: Automatically Delete Cookies"
 image="/assets/img/addons/cookie-autodelete.png"
 description="<strong>Cookie AutoDelete</strong> automatically removes cookies when they are no longer used by open browser tabs. With the cookies, lingering sessions, as well as information used to spy on you, will be expunged."
 website="https://addons.mozilla.org/firefox/addon/cookie-autodelete/"
 forum="https://forum.privacytools.io/t/discussion-cookie-autodelete/267"
 github="https://github.com/Cookie-AutoDelete/Cookie-AutoDelete"
 firefox="https://addons.mozilla.org/en-US/firefox/addon/cookie-autodelete"
 chrome="https://chrome.google.com/webstore/detail/cookie-autodelete/fhcgjolkccmbidfldomjliifgaodjagh"
 %}
 {% include cardv2.html
 title="HTTPS Everywhere: Secure Connections"
-image="/assets/img/addons/https-everywhere.png"
+image="/assets/img/svg/3rd-party/https_everywhere.svg"
-description="<strong>HTTPS Everywhere</strong> encrypts your communications with many major websites, making your browsing more secure. A collaboration between The Tor Project and the Electronic Frontier Foundation."
+description="<strong>HTTPS Everywhere</strong> enables encryption of your connections to many major websites, making your browsing more secure. It is a collaboration between The Tor Project and the Electronic Frontier Foundation."
 website="https://www.eff.org/https-everywhere"
 forum="https://forum.privacytools.io/t/discussion-https-everywhere/268"
 github="https://github.com/EFForg/https-everywhere"
@ -42,7 +31,7 @@ opera="https://addons.opera.com/en/extensions/details/https-everywhere"
 {% include cardv2.html
 title="Decentraleyes: Block Content Delivery Networks"
-image="/assets/img/addons/decentraleyes.png"
+image="/assets/img/svg/3rd-party/decentraleyes.svg"
 description="<strong>Decentraleyes</strong> emulates Content Delivery Networks locally by intercepting requests, finding the required resource, and injecting it into the environment. This all happens instantaneously, automatically, and no prior configuration is required."
 website="https://decentraleyes.org/"
 forum="https://forum.privacytools.io/t/discussion-decentraleyes/269"
@ -52,10 +41,21 @@ chrome="https://chrome.google.com/webstore/detail/decentraleyes/ldpochfccmkkmhdb
 opera="https://addons.opera.com/en/extensions/details/decentraleyes"
 %}
 {% include cardv2.html
 title="Cookie AutoDelete: Automatically Delete Cookies"
 image="/assets/img/png/3rd-party/cookie_autodelete.png"
 description="<strong>Cookie AutoDelete</strong> automatically removes cookies, lingering sessions, and other information that can be used to spy on you when they are no longer used by open browser tabs."
 website="https://addons.mozilla.org/firefox/addon/cookie-autodelete/"
 forum="https://forum.privacytools.io/t/discussion-cookie-autodelete/267"
 github="https://github.com/Cookie-AutoDelete/Cookie-AutoDelete"
 firefox="https://addons.mozilla.org/en-US/firefox/addon/cookie-autodelete"
 chrome="https://chrome.google.com/webstore/detail/cookie-autodelete/fhcgjolkccmbidfldomjliifgaodjagh"
 %}
 {% include cardv2.html
 title="Terms of Service; Didn’t Read: Be Informed"
-image="/assets/img/addons/tosdr.png"
+image="/assets/img/svg/3rd-party/terms_of_service_didnt_read.svg"
-description="<strong>Terms of Service; Didn’t Read</strong> is an addon that aims to fix how “I have read and agree to the Terms” is the biggest lie on the web by grading websites based on their terms of service agreements and privacy policies. It also gives short summaries of those agreements. The analysis and ratings are done transparently by a community of reviewers."
+description='<strong>Terms of Service; Didn’t Read</strong> is an addon that believes "I have read and agree to the Terms of Service" is the biggest lie on the web, and wants to fix it by grading websites based on their terms of service agreements and privacy policies. It also gives short summaries of those agreements. The analysis and ratings are published transparently by a community of reviewers.'
 website="https://tosdr.org/"
 forum="https://forum.privacytools.io/t/discussion-terms-of-service-didn-t-read/270"
 github="https://github.com/tosdr/"
@ -66,8 +66,8 @@ opera="https://addons.opera.com/en/extensions/details/terms-of-service-didnt-rea
 {% include cardv2.html
 title="Snowflake"
-image="/assets/img/addons/snowflake.png"
+image="/assets/img/svg/3rd-party/snowflake.svg"
-description="<strong>Snowflake</strong> is a new <a href=https://2019.www.torproject.org/docs/pluggable-transports.html.en>pluggable transport</a> from the Tor Project. If you have an uncensored connection, running this extension volunteers your connection to be used as a Snowflake proxy to help users unable to connect to the Tor network. Your IP will not be visible to the sites users visit using your proxy, as this extension will not make you an exit node. If your access to the Tor network is blocked, this extension will not assist you, and you should use the <a href=https://www.torproject.org>Tor Browser</a> instead."
+description="<strong>Snowflake</strong> is a new <a href=https://2019.www.torproject.org/docs/pluggable-transports.html.en>pluggable transport</a> from the Tor Project. If you have an uncensored connection, running this extension volunteers your connection to be used as a Snowflake proxy to help users unable to connect to the Tor network. Your IP will not be visible to the sites users visit using your proxy, as this extension will not make you an exit node. If your access to the Tor network is blocked, this extension will not assist you, and you should use the <a href=https://www.torproject.org>Tor Browser</a> instead. <b>Note:</b> This add-on does not work with WebRTC disabled."
 website="https://snowflake.torproject.org"
 forum="https://forum.privacytools.io/t/discussion-snowflake/1146"
 git="https://gitweb.torproject.org/pluggable-transports/snowflake.git"
@ -77,7 +77,7 @@ chrome="https://chrome.google.com/webstore/detail/snowflake/mafpmfcccpbjnhfhjnll
 {% include cardv2.html
 title="Privacy Badger: Stop Tracking"
-image="/assets/img/addons/privacy-badger.png"
+image="/assets/img/svg/3rd-party/privacy_badger.svg"
 description="<strong>Privacy Badger</strong> is a browser add-on that stops advertisers and other third-party trackers from secretly tracking where you go and what pages you look at on the web. Privacy Badger learns about trackers as you browse."
 website="https://www.eff.org/privacybadger"
 forum="https://forum.privacytools.io/t/discussion-privacy-badger/265"
@ -90,12 +90,12 @@ opera="https://addons.opera.com/en/extensions/details/privacy-badger/"
 <h2>For Power Users Only</h2>
 <div class="alert alert-warning" role="alert">
-  <strong>These addons require quite a lot of interaction from the user. Some sites will not work properly until you have configured the add-ons.</strong>
+  <strong>These addons require quite a lot of interaction from the user. Some sites may not work properly without careful configuration.</strong>
 </div>
 {% include cardv2.html
 title="uMatrix: Stop Cross-Site Requests"
-image="/assets/img/addons/umatrix.png"
+image="/assets/img/png/3rd-party/umatrix.png"
 description="<strong>uMatrix</strong> gives you control over the requests that websites make to other websites. Many websites integrate features which let other websites track you, such as Facebook Like Buttons or Google Analytics."
 website="https://addons.mozilla.org/firefox/addon/umatrix/"
 forum="https://forum.privacytools.io/t/discussion-umatrix/271"
@ -107,7 +107,7 @@ opera="https://addons.opera.com/en/extensions/details/umatrix"
 {% include cardv2.html
 title="NoScript Security Suite: Be in total control"
-image="/assets/img/addons/noscript.png"
+image="/assets/img/svg/3rd-party/noscript.svg"
 description="<strong>NoScript</strong> is a highly customizable plugin to selectively allow JavaScript, Java, and Flash to run only on websites you trust. Not for casual users, it requires technical knowledge to configure."
 website="https://addons.mozilla.org/firefox/addon/noscript/"
 forum="https://forum.privacytools.io/t/discussion-noscript-security-suite/272"
--- a/_includes/sections/browser-recommendation.html
+++ b/_includes/sections/browser-recommendation.html
@ -5,9 +5,9 @@
 {% include cardv2.html
 title="Firefox"
-image="/assets/img/tools/Firefox.png"
+image="/assets/img/svg/3rd-party/firefox_browser.svg"
 description='Firefox is fast, reliable, open-source, and respects your privacy. Don\'t forget to adjust the settings according to our
-recommendations: <a href="#webrtc"><i class="fas fa-link"></i> WebRTC</a> and <a href="#about_config"><i class="fas fa-link"></i> about:config</a> and get the <a href="#addons"><i class="fas fa-link"></i> privacy add-ons</a>.'
+recommendations: <a href="#addons"><i class="fas fa-link"></i> Privacy Add-ons</a> <a href="#webrtc"><i class="fas fa-link"></i> WebRTC</a> <a href="#about_config"><i class="fas fa-link"></i> about:config tweaks</a>.'
 website="https://firefox.com"
 forum="https://forum.privacytools.io/t/discussion-firefox/279"
 source="https://hg.mozilla.org/mozilla-central/"
@ -21,7 +21,7 @@ netbsd="http://pkgsrc.se/www/firefox"
 {% include cardv2.html
 title="Tor Browser - Provides Anonymity"
-image="/assets/img/tools/Tor-Browser.png"
+image="/assets/img/svg/3rd-party/tor_browser.svg"
 description='Tor Browser is your choice if you need an extra layer of anonymity. It\'s a modified version of Firefox ESR, which comes with pre-installed privacy add-ons, encryption, and an advanced proxy. <a href="https://write.privacytools.io/my-thoughts-on-security/slicing-onions-part-1-myth-busting-tor">How does Tor work?</a>'
 website="https://www.torproject.org/"
 tor="http://expyuzz4wqqyqhjn.onion/"
@ -39,9 +39,9 @@ linux="https://www.torproject.org/download/"
 {% include cardv2.html
 title="Firefox"
-image="/assets/img/tools/Firefox.png"
+image="/assets/img/svg/3rd-party/firefox_browser.svg"
 description='Firefox is fast, reliable, open-source, and respects your privacy. Don\'t forget to adjust the settings according to our
-recommendations: <a href="#webrtc"><i class="fas fa-link"></i> WebRTC</a> and <a href="#about_config"><i class="fas fa-link"></i> about:config</a> and get the <a href="#addons"><i class="fas fa-link"></i> privacy add-ons</a>.'
+recommendations: <a href="#addons"><i class="fas fa-link"></i> Privacy Add-ons</a> <a href="#webrtc"><i class="fas fa-link"></i> WebRTC</a> <a href="#about_config"><i class="fas fa-link"></i> about:config tweaks</a>.'
 website="https://www.mozilla.org/en-US/firefox/mobile/"
 forum="https://forum.privacytools.io/t/discussion-firefox/279"
 source="https://github.com/mozilla-mobile"
@ -52,7 +52,7 @@ android="https://www.mozilla.org/firefox/all/#product-android-release"
 {% include cardv2.html
 title="Tor Browser - Provides Anonymity"
-image="/assets/img/tools/Tor-Browser.png"
+image="/assets/img/svg/3rd-party/tor_browser.svg"
 description='Tor Browser is your choice if you need an extra layer of anonymity. It\'s a modified version of Firefox ESR, which comes with pre-installed privacy add-ons, encryption and an advanced proxy. <a href="https://write.privacytools.io/my-thoughts-on-security/slicing-onions-part-1-myth-busting-tor">How does Tor work?</a>'
 website="https://www.torproject.org/"
 tor="http://expyuzz4wqqyqhjn.onion/"
@ -65,8 +65,8 @@ googleplay="https://play.google.com/store/apps/details?id=org.torproject.torbrow
 {% include cardv2.html
 title="Bromite"
-image="/assets/img/tools/bromite.png"
+image="/assets/img/svg/3rd-party/bromite.svg"
-description='Bromite is a Chromium-based browser with security enhancement patches from GrapheneOS and built-in adblocking and DNS over HTTPS support. More info can be found <a href="https://www.bromite.org/#main-features">here</a>.'
+description='Bromite is a Chromium-based browser with privacy and security enhancements, built-in adblocking and DNS over HTTPS support; it includes patches from ungoogled-chromium and other privacy-focused projects. More info can be found <a href="https://www.bromite.org/#main-features">on the official website</a>.'
 website="https://www.bromite.org/"
 forum="https://forum.privacytools.io/t/discussion-bromite-browsers/1521"
 github="https://github.com/bromite/bromite"
@ -94,7 +94,7 @@ android="https://www.bromite.org/#download-bromite"
 {% include cardv2.html
 title="Firefox"
-image="/assets/img/tools/Firefox.png"
+image="/assets/img/svg/3rd-party/firefox_browser.svg"
 description='Firefox is fast, reliable, open-source, and respects your privacy. Note: Because of limitations set by Apple in iOS, our recommended tweaks cannot be applied. However, Firefox for iOS has an <a href="https://support.mozilla.org/en-US/kb/enhanced-tracking-protection-firefox-ios">Enhanced Tracking Protection</a> feature that uses a list provided by <a href="https://disconnect.me/trackerprotection">Disconnect</a> to identify and block ad, social, and analytics trackers, as well as cryptominers and fingerprinters.'
 website="https://www.mozilla.org/en-US/firefox/mobile/"
 forum="https://forum.privacytools.io/t/discussion-firefox/279"
@ -105,7 +105,7 @@ ios="https://apps.apple.com/us/app/firefox-private-safe-browser/id989804926"
 {% include cardv2.html
 title="Onion Browser"
-image="/assets/img/tools/onionbrowser.png"
+image="/assets/img/svg/3rd-party/onion_browser.svg"
 description='Onion Browser is an open-source browser that lets you browse the web anonymously over the Tor network on iOS devices and is endorsed by the Tor Project. Warning: there are certain anonymity-related <a href="https://onionbrowser.com/#security-advisories">issues</a> with Onion Browser due to iOS limitations.'
 website="https://onionbrowser.com/"
 forum="https://forum.privacytools.io/t/discussion-onion-browser-browsers/1523"
@ -116,7 +116,7 @@ ios="https://apps.apple.com/us/app/onion-browser/id519296448"
 {% include cardv2.html
 title="DuckDuckGo Privacy Browser"
-image="/assets/img/provider/DuckDuckGo.png"
+image="/assets/img/svg/3rd-party/duckduckgo.svg"
 description='DuckDuckGo Privacy Browser is an open-source web browser that has built-in ad and tracker blocking and utilizes <a href="https://tosdr.org/">ToS;DR</a> to rate the privacy policies of the sites you visit.'
 website="https://duckduckgo.com/app"
 tor="https://3g2upl4pq6kufc4m.onion/app"
--- a/_includes/sections/browser-tweaks.html
+++ b/_includes/sections/browser-tweaks.html
@ -6,7 +6,7 @@
 <ol>
  <li>Enter "about:config" in the firefox address bar and press enter.</li>
-  <li>Press the button "I'll be careful, I promise!"</li>
+  <li>Press the button "Accept the Risk and Continue" [FF71+] or "I accept the risk".</li>
  <li>Follow the instructions below...</li>
 </ol>
@ -26,14 +26,11 @@
  <dd>[FF67+] Blocks CryptoMining</dd>
  <dt>privacy.trackingprotection.enabled = true</dt>
-  <dd>This is Mozilla's new built-in tracking protection. It uses Disconnect.me filter list, which is redundant if you are already using uBlock Origin 3rd party filters, therefore you should set it to false if you are using the add-on functionalities.</dd>
+  <dd>This is Mozilla's new built-in tracking protection. One of it's benefits is blocking tracking (i.e. Google Analytics) on <a href="https://github.com/gorhill/uMatrix/wiki/Privileged-Pages">privileged pages</a> where add-ons that usually do that are disabled.</dd>
  <dt>browser.send_pings = false</dt>
  <dd>The attribute would be useful for letting websites track visitors' clicks.</dd>
  <dt>browser.sessionstore.max_tabs_undo = 0</dt>
  <dd>Even with Firefox set to not remember history, your closed tabs are stored temporarily at Menu -&gt; History -&gt; Recently Closed Tabs.</dd>
  <dt>browser.urlbar.speculativeConnect.enabled = false</dt>
  <dd>Disable preloading of autocomplete URLs. Firefox preloads URLs that autocomplete when a user types into the address bar, which is a concern if URLs are suggested that the user does not want to connect to. <a href="https://www.ghacks.net/2017/07/24/disable-preloading-firefox-autocomplete-urls/">Source</a></dd>
@ -85,9 +82,6 @@
  </ul>
  </dd>
  <dt>Looking for TRR, DoH or ESNI?</dt>
  <dd>They have moved to <a href="/providers/dns/#icanndns">our DNS page</a>.</dd>
  <dt>webgl.disabled = true</dt>
  <dd>WebGL is a potential security risk. <a href="https://security.stackexchange.com/questions/13799/is-webgl-a-security-concern">Source</a></dd>
@ -101,14 +95,32 @@
  </ul>
  </dd>
  <dt>beacon.enabled = false</dt>
  <dd>Disables sending additional analytics to web servers. <a href="https://developer.mozilla.org/en-US/docs/Web/API/Navigator/sendBeacon">Details</a></dd>
  <dt>browser.safebrowsing.downloads.remote.enabled = false</dt>
  <dd>Prevents Firefox from sending information about downloaded executable files to Google Safe Browsing to determine whether it should be blocked for safety reasons. <a href="https://support.mozilla.org/en-US/kb/how-does-phishing-and-malware-protection-work#w_what-information-is-sent-to-mozilla-or-its-partners-when-phishing-and-malware-protection-are-enabled">Details</a></dd>
  <dt>Disable Firefox prefetching pages it thinks you will visit next:</dt>
  <dd>
  Prefetching causes cookies from the prefetched site to be loaded and other potentially unwanted behavior. Details <a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Link_prefetching_FAQ">here</a> and <a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-DNS-Prefetch-Control">here</a>.
  <ul>
    <li>network.dns.disablePrefetch = true</li>
    <li>network.dns.disablePrefetchFromHTTPS = true</li>
    <li>network.predictor.enabled = false</li>
    <li>network.predictor.enable-prefetch = false</li>
    <li>network.prefetch-next = false</li>
  </dd>
  <dt>network.IDN_show_punycode = true</dt>
  <dd>Not rendering IDNs as their Punycode equivalent leaves you open to phishing attacks that can be very difficult to notice. <a href="https://krebsonsecurity.com/2018/03/look-alike-domains-and-visual-confusion/#more-42636">Source</a></dd>
  <dt>Looking for TRR, DoH or ESNI?</dt>
  <dd>They have moved to <a href="/providers/dns/#dns">our DNS page</a>.</dd>
 <h3 id="user.js">Firefox user.js Templates</h3>
 <ul>
-	<li><a href="https://github.com/ghacksuserjs/ghacks-user.js">ghacks-user.js</a> - An ongoing comprehensive user.js template for configuring and hardening Firefox privacy, security and anti-fingerprinting.</li>
+   <li><a href="https://github.com/ghacksuserjs/ghacks-user.js">ghacks-user.js</a> - An ongoing comprehensive user.js template for configuring and hardening Firefox privacy, security and anti-fingerprinting.</li>
 </ul>
@ -117,7 +129,6 @@
 <ul>
  <li><a href="https://blog.privacytools.io/firefox-privacy-an-introduction-to-safe/">Firefox Privacy: Tips and Tricks for Better Browsing</a> - A good starting guide for users looking to keep their data private and secure.</li>
  <li><a href="https://ffprofile.com/">ffprofile.com</a> - Helps you to create a Firefox profile with the defaults you like.</li>
  <li><a href="http://kb.mozillazine.org/Category:Security_and_privacy-related_preferences">mozillazine.org</a> - Security and privacy-related preferences. </li>
  <li><a href="https://addons.mozilla.org/firefox/addon/privacy-settings/">Privacy Settings</a> - A Firefox add-on to alter built-in privacy settings easily with a toolbar panel.</li>
  <li><a href="https://12bytes.org/articles/tech/firefox/the-firefox-privacy-guide-for-dummies/">Firefox Privacy Guide For Dummies</a> - Guide on ways (already discussed and others) to improve your privacy and safety on Firefox.</li>
 </ul>
--- a/_includes/sections/browser-webrtc.html
+++ b/_includes/sections/browser-webrtc.html
@ -4,7 +4,7 @@
  <strong>WebRTC is a new communication protocol that relies on JavaScript that can leak your actual IP address from behind your VPN.</strong>
 </div>
-<p>While software like NoScript prevents this, it's probably a good idea to block this protocol directly as well, just to be safe.</p>
+<p>While software like NoScript prevents this, it's probably a good idea to block this protocol directly as well, just to be safe. <b>Note:</b> This disables browser-based call functionality that is used for webapps like Discord, Hangouts, Jitsi, etc.</p>
 <p>
 <a class="btn btn-warning" target="_blank" rel="noopener noreferrer" href="https://ipleak.net">Test your Browser now</a>
@ -38,10 +38,21 @@
 <a class="btn btn-primary" target="_blank" rel="noopener noreferrer" href="https://ipleak.net">Test your Browser again</a>
 </p>
-<h3>How to fix the WebRTC Leak in Google Chrome?</h3>
+<h3>How to disable WebRTC in Safari?</h3>
 <p>Safari is far stricter with WebRTC than other major browsers, and it does not leak your IP address in its default configuration. If you'd like, you can follow these steps just to double-check your browser:</p>
 <ol class="long-string-list">
  <li>Choose "Preferences" under the Safari menu in your menu bar.</li>
  <li>Select the Advanced tab and check the "Show Develop menu in menu bar" box.</li>
  <li>Exit Preferences and open the Develop menu in your menu bar.</li>
  <li>In the drop-down menu, open the "WebRTC" submenu and ensure "Enable Legacy WebRTC API" is unchecked. If it's grayed out, even better.</li>
 </ol>
 <h3>How to disable WebRTC in Google Chrome?</h3>
 <p>WebRTC cannot be fully disabled in Chrome; however, it is possible to change its routing settings (and prevent leaks) using an extension. Two open-source solutions include <a href="https://chrome.google.com/webstore/detail/webrtc-leak-prevent/eiadekoaikejlgdbkbdfeijglgfdalml">WebRTC Leak Prevent</a> (options may need to be changed depending on the scenario), and <a href="https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm">uBlock Origin</a> (select "Prevent WebRTC from leaking local IP addresses" in Settings).</p>
 <h3>What about other browsers?</h3>
-<p>Chrome on iOS, Internet Explorer and Safari does not implement WebRTC yet. <a href="#browser"><i class="fas fa-link"></i> But we recommend using Firefox on all devices.</a></p>
+<p>Chrome on macOS and Internet Explorer do not implement WebRTC yet. <a href="#browser"><i class="fas fa-link"></i> But we recommend using Firefox on all devices.</a></p>
--- a/_includes/sections/calendar-contacts-sync.html
+++ b/_includes/sections/calendar-contacts-sync.html
@ -7,7 +7,7 @@
 {%
  include cardv2.html
  title="Nextcloud"
-  image="/assets/img/provider/Nextcloud.png"
+  image="/assets/img/svg/3rd-party/nextcloud.svg"
  description="<strong>Nextcloud</strong> is a suite of client-server software for creating and using file hosting services. This includes calendar sync via CalDAV and contacts sync via CardDAV. Nextcloud is free and open-source, thereby allowing anyone to install and operate it without charge on a private server."
  website="https://nextcloud.com/"
  forum="https://forum.privacytools.io/t/discussion-nextcloud-calender-contacts-sync-tools/1535"
@ -22,18 +22,10 @@
  ios="https://nextcloud.com/install/"
 %}
 {%
  include cardv2.html
  title="Email Providers"
  image="/assets/img/misc/email.png"
  description='Many email providers also offer calendar and or contacts sync services. Refer to the <a href="/providers/email">Email Providers section</a> to choose an email provider and check if they also offer calendar and/or contacts sync.'
  website="/providers/email"
 %}
 {%
  include cardv2.html
  title="EteSync"
-  image="/assets/img/provider/etesync.png"
+  image="/assets/img/svg/3rd-party/etesync.svg"
  description="<strong>EteSync</strong> is a secure, end-to-end encrypted, and privacy-respecting cloud backup and synchronization software for your personal information (e.g. contacts and calendars). There are native clients for Android, iOS, and the web, and an adapter layer for most desktop clients. It costs $24 per year to use, or you can host the server yourself for free."
  website="https://www.etesync.com/"
  forum="https://forum.privacytools.io/t/discussion-etesync-calender-contacts-sync-tools/1536"
@ -50,6 +42,14 @@
  ios="https://www.etesync.com/install/ios/"
 %}
 {%
  include cardv2.html
  title="Email Providers"
  image="/assets/img/svg/layout/email.svg"
  description='Many email providers also offer calendar and or contacts sync services. Refer to our <a href="/providers/email">Email Provider recommendations</a> to choose an email provider and see if they also offer calendar and/or contacts sync.'
  website="/providers/email"
 %}
 <h3>Worth Mentioning</h3>
 <ul>
@ -58,6 +58,10 @@
  </li>
  <li>
-    <a href="../cloud">cloud backups</a> - Consider regularly exporting your calendar and or contacts and backing them up on a separate storage drive or uploading them to cloud storage (ideally after <a href="../encryption-tools/">encrypting</a> them).
+    <a href="../cloud">Cloud backups</a> - Consider regularly exporting your calendar and or contacts and backing them up on a separate storage drive or uploading them to cloud storage (ideally after <a href="../encryption-tools/">encrypting</a> them).
  </li>
  <li>
    <a href="https://github.com/39aldo39/DecSync">DecSync</a> - DecSync can be used to synchronize RSS, contacts, and calendars without a server by using file synchronization software such as <a href="https://syncthing.net/">Syncthing</a>.
  </li>
 </ul>
--- a/_includes/sections/cloud-storage.html
+++ b/_includes/sections/cloud-storage.html
@ -6,8 +6,8 @@
 {% include cardv2.html
 title="Nextcloud - Choose your hoster"
-image="/assets/img/provider/Nextcloud.png"
+image="/assets/img/svg/3rd-party/nextcloud.svg"
-description="Nextcloud is similar in functionality to the widely-used Dropbox, with the difference being that Nextcloud is free and open-source, thereby allowing anyone to install and operate it without charge on a private server, with no limits on storage space or the number of connected clients."
+description="<strong>Nextcloud</strong> is a suite of client-server software for creating your own file hosting services on a private server you control. Nextcloud is free and open-source, and supports end-to-end encryption with many of its clients. The only limits on storage and bandwidth are the limits on the <a href=\"/providers/hosting\">server provider</a> you choose."
 website="https://nextcloud.com/"
 forum="https://forum.privacytools.io/t/discussion-nextcloud/287"
 github="https://github.com/nextcloud"
--- a/_includes/sections/dns.html
+++ b/_includes/sections/dns.html
@ -1,7 +1,7 @@
 <h1 id="dns" class="anchor"><a href="#dns"><i class="fas fa-link anchor-icon"></i></a> Encrypted Domain Name System (DNS) Resolvers</h1>
 <div class="alert alert-warning" role="alert">
-  <strong>Note: Using an encrypted DNS resolver will not make you anonymous, nor hide your internet traffic from your Internet Service Provider. But it will prevent DNS hijacking, and make your DNS requests harder for third parties to eavesdrop on and tamper with. If you are currently using Google's DNS resolver, you should pick an alternative here.</strong>
+  <strong>Note: Using an encrypted DNS resolver will not make you anonymous, nor hide your internet traffic from your Internet Service Provider. But, it will prevent DNS hijacking, and make your DNS requests harder for third parties to eavesdrop on and tamper with. If you are currently using Google's DNS resolver, you should pick an alternative here.</strong>
 </div>
 <div class="table-responsive">
@ -33,8 +33,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://adguard.com/en/privacy/dns.html" href="https://adguard.com/en/privacy/dns.html">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://adguard.com/en/privacy/dns.html">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>Commercial</td>
@ -51,8 +53,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://github.com/AdguardTeam/AdGuardDNS/" href="https://github.com/AdguardTeam/AdGuardDNS/">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://github.com/AdguardTeam/AdGuardDNS/">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>
@ -81,9 +85,13 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title='"No logs."'>
+          <div
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
-          </a>
+            title="&quot;No logs.&quot;"
            data-toggle="tooltip"
            data-placement="bottom">
            <span class="fas fa-globe"></span>
          </div>
        </td>
        <td>Hobby Project</td>
        <td>No</td>
@ -108,8 +116,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://github.com/ookangzheng/blahdns/" href="https://github.com/ookangzheng/blahdns/">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://github.com/ookangzheng/blahdns/">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>
@ -136,13 +146,15 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://www.cloudflare.com/privacypolicy/" href="https://www.cloudflare.com/privacypolicy/">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://www.cloudflare.com/privacypolicy/">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>Commercial</td>
        <td><a data-toggle="tooltip" data-placement="bottom" data-original-title='"We will collect limited DNS query data that is sent to the resolvers. This data does not contain user IP addresses or any other personally identifiable information, and the bulk of the data is only stored for 24 hours."' href="https://developers.cloudflare.com/1.1.1.1/commitment-to-privacy/privacy-policy/privacy-policy/">Some</a></td>
-        <td>DoH, DoT, DNSCrypt</td>
+        <td>DoH, DoT</td>
        <td>Yes</td>
        <td>Yes</td>
        <td>No</td>
@ -161,8 +173,12 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title='"CZ.NIC resolvers neither collect any personal data nor gather information on pages where your computer sends personal data."'>
+          <div
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            title="&quot;CZ.NIC resolvers neither collect any personal data nor gather information on pages where your computer sends personal data.&quot;"
            data-toggle="tooltip"
            data-placement="bottom">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td><a data-toggle="tooltip" data-placement="bottom" data-original-title='"CZ.NIC is an interest association of legal entities, founded in 1998 by leading providers of Internet services."' href="https://www.nic.cz/page/351/about-association/">Association</a></td>
@ -175,47 +191,6 @@
        <td>Self</td>
      </tr>
      <tr>
        <td data-value="dnswarden">
          <a href="https://github.com/bhanupratapys/dnswarden/blob/master/README.md">dnswarden</a>
        </td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-de"></span>
            Germany
          </span>
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://github.com/bhanupratapys/dnswarden/blob/master/README.md#privacy-policy-and-tc" href="https://github.com/bhanupratapys/dnswarden/blob/master/README.md#privacy-policy-and-tc">
            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
          </a>
        </td>
        <td>Hobby Project</td>
        <td>No</td>
        <td data-value="dot/443">
          <span class="no-text-wrap">
            DoH,
            <span data-toggle="tooltip" data-placement="bottom" data-original-title="Supports port 443 in addition to 853">
              DoT <span class="fas fa-info-circle fa-sm text-secondary"></span>,
            </span>
          </span>
          DNSCrypt
        </td>
        <td>Yes</td>
        <td>Yes</td>
        <td>
          <span class="no-text-wrap">
            Based on server choice
          </span>
        </td>
        <td>?</td>
        <td>
          <span class="no-text-wrap">
            <a href="https://www.hetzner.com/">Hetzner Online GmbH</a>
          </span>
        </td>
      </tr>
      <tr>
        <td data-value="Foundation for Applied Privacy">
          <a href="https://appliedprivacy.net/services/dns/">Foundation for Applied Privacy</a>
@ -227,8 +202,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://appliedprivacy.net/privacy-policy" href="https://appliedprivacy.net/privacy-policy">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://appliedprivacy.net/privacy-policy">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>Non-Profit</td>
@ -263,8 +240,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://www.nextdns.io/privacy" href="https://www.nextdns.io/privacy">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://www.nextdns.io/privacy">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>Commercial</td>
@ -303,8 +282,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://nixnet.xyz/privacy/" href="https://nixnet.xyz/privacy/">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://nixnet.xyz/privacy/">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>
@ -322,8 +303,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://git.nixnet.xyz/NixNet/dns" href="https://git.nixnet.xyz/NixNet/dns">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://git.nixnet.xyz/NixNet/dns">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>
@ -344,8 +327,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://powerdns.org/doh/privacy.html" href="https://powerdns.org/doh/privacy.html">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://powerdns.org/doh/privacy.html">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>Hobby Project</td>
@ -355,8 +340,10 @@
        <td>No</td>
        <td>No</td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://github.com/PowerDNS/pdns" href="https://github.com/PowerDNS/pdns">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://github.com/PowerDNS/pdns">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>
@ -377,8 +364,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://quad9.net/policy/" href="https://quad9.net/policy/">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://quad9.net/policy/">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>Non-Profit</td>
@ -411,8 +400,10 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://securedns.eu/#privacy" href="https://securedns.eu/#privacy">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://securedns.eu/#privacy">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>Hobby Project</td>
@ -444,12 +435,14 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://snopyta.org/privacy_policy/" href="https://snopyta.org/privacy_policy/">
+          <a
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
            href="https://snopyta.org/privacy_policy/">
            <span class="fas fa-globe"></span>
          </a>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title='Part of LibreHosters, "a network of cooperation and solidarity that uses free software to encourage decentralisation through federation and distributed platforms."' href="https://libreho.st/">
+          <a data-toggle="tooltip" data-placement="bottom" data-original-title="Part of LibreHosters, &quot;a network of cooperation and solidarity that uses free software to encourage decentralisation through federation and distributed platforms.&quot;" href="https://libreho.st/">
            Informal collective
          </a>
        </td>
@ -491,9 +484,13 @@
          </span>
        </td>
        <td>
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title='"Absolutely nothing is being logged, neither about the users nor the usage of this service. I do keep graphs of the total number of queries, but no personally identifiable information is saved. The data that is saved will never be sold or used for anything except capacity planning of the service."'>
+          <div
-            <img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
+            class="btn-secondary btn-icon"
-          </a>
+            title="&quot;Absolutely nothing is being logged, neither about the users nor the usage of this service. I do keep graphs of the total number of queries, but no personally identifiable information is saved. The data that is saved will never be sold or used for anything except capacity planning of the service.&quot;"
            data-toggle="tooltip"
            data-placement="bottom">
            <span class="fas fa-globe"></span>
          </div>
        </td>
        <td>Hobby Project</td>
        <td>No</td>
@ -512,82 +509,3 @@
    </tbody>
  </table>
 </div>
 <h4>Terms</h4>
 <ul>
  <li>DNS-over-TLS (DoT) - A security protocol for encrypted DNS on a dedicated port 853. Some providers support port 443 which generally works everywhere while port 853 is often blocked by restrictive firewalls. DoT has two modes:</li>
    <ul>
        <li>Oppurtunistic mode: the client attempts to form a DNS-over-TLS connection to the server on port 853 without performing certificate validation. If it fails, it will use unencrypted DNS. <span class="badge badge-warning" data-toggle="tooltip" data-original-title="In other words automatic mode leaves your DNS traffic vulnerable to SSL strip and MITM attacks"><i class="fas fa-exclamation-triangle"></i></span></li>
        <li>Strict mode: the client connects to a specific hostname and performs certificate validation for it. If it fails, no DNS queries are made until it succeeds.</li>
    </ul>
  <li>DNS-over-HTTPS (DoH) - Similar to DoT, but uses HTTPS instead, being indistinguishable from "normal" HTTPS traffic on port 443. <span class="badge badge-warning" data-toggle="tooltip" data-original-title="DoH contains metadata such as user-agent (which may include system information) that is sent to the DNS server."><a href="https://tools.ietf.org/html/rfc8484#section-8.2"><i class="fas fa-exclamation-triangle"></i></a></span></li>
  <li>DNSCrypt - An older yet robust method of encrypting DNS.</li>
 </ul>
 <h4>How to verify DNS is encrypted</h4>
 <ul>
  <li>DoH / DoT
    <ul>
      <li>Check <a href="https://www.dnsleaktest.com/">DNSLeakTest.com</a>. <span class="badge badge-warning" data-toggle="tooltip" data-placement="bottom" data-original-title="Your DNS provider may not appear with their own name, so compare the responses to what you know or can find about your DNS provider. Just ensure you don't see your ISP or old unencrypted DNS provider."><i class="fas fa-exclamation-triangle"></i></span></li>
      <li>Check the website of your DNS provider. They may have a page for telling "you are using our DNS." Examples include <a href="https://adguard.com/en/adguard-dns/overview.html">AdGuard</a> and <a href="https://1.1.1.1/help">Cloudflare</a>.</li>
      <li>If using Firefox's trusted recursive resolver (TRR), navigate to <code>about:networking#dns</code>. If the TRR column says "true" for some fields, you are using DoH. <span class="badge badge-warning" data-toggle="tooltip" data-placement="bottom" data-original-title='Some fields will say "false" depending on the the value of network.trr.mode in about:config'><a href="https://wiki.mozilla.org/Trusted_Recursive_Resolver"><i class="fas fa-exclamation-triangle"></i></a></span></li>
    </ul>
  </li>
  <li>dnscrypt-proxy - Check <a href="https://github.com/jedisct1/dnscrypt-proxy/wiki/Checking">dnscrypt-proxy's wiki on how to verify that your DNS is encrypted</a>.</li>
  <li>DNSSEC - Check <a href="https://dnssec.vs.uni-due.de/">DNSSEC Resolver Test by Matthäus Wander</a>.</li>
  <li>QNAME Minimization - Run <code>dig +short txt qnamemintest.internet.nl</code> from the command-line (taken from <a href="https://nlnetlabs.nl/downloads/presentations/unbound_qnamemin_oarc24.pdf">this NLnet Labs presentation</a>). If you are on Windows 10, run <code>Resolve-DnsName -Type TXT -Name qnamemintest.internet.nl</code> from the PowerShell. You should see this display: <code>"HOORAY - QNAME minimisation is enabled on your resolver :)!"</code></li>
 </ul>
 <h3 id="clients">Software suggestions and Additional Information</h3>
 <ul>
  <li><strong>Encrypted DNS clients for desktop:</strong>
    <ul>
      <li><em>Firefox</em> comes with built-in DoH support with Cloudflare set as the default resolver, but can be configured to use any DoH resolver. <span class="badge badge-warning" data-toggle="tooltip" data-placement="bottom" data-original-title='"Cloudflare has agreed to collect only a limited amount of data about the DNS requests that are sent to the Cloudflare Resolver for Firefox via the Firefox browser."'><a href="https://developers.cloudflare.com/1.1.1.1/commitment-to-privacy/privacy-policy/firefox/"><i class="fas fa-exclamation-triangle"></i></a></span> Currently Mozilla is <a href="https://blog.mozilla.org/futurereleases/2019/07/31/dns-over-https-doh-update-detecting-managed-networks-and-user-choice/">conducting studies</a> before enabling DoH by default for all US-based Firefox users.</li>
          <ul>
              <li>DNS over HTTPS can be enabled in Menu -> Preferences (<code>about:preferences</code>) -> Network Settings -> Enable DNS over HTTPS. Set "Use Provider" to "Custom", and enter your DoH provider's address.</li>
              <li>Advanced users may enable it in <code>about:config</code> by setting <code>network.trr.custom_uri</code> and <code>network.trr.uri</code> as the address you find from the documentation of your DoH provider and <code>network.trr.mode</code> as <code>2</code>. It may also be desirable to set <code>network.security.esni.enabled</code> to <code>True</code> in order to enable encrypted SNI and make sites supporting ESNI a bit more difficult to track.</li>
          </ul>
    </ul>
  </li>
  <li><strong>Encrypted DNS clients for mobile:</strong>
    <ul>
      <li><em>Android 9</em> comes with a DoT client by <a href="https://support.google.com/android/answer/9089903">default</a>. <span class="badge badge-warning" data-toggle="tooltip" data-original-title="...but with some caveats"><a href="https://www.quad9.net/private-dns-quad9-android9/"><i class="fas fa-exclamation-triangle"></i></a></span></li>
        <ul>
          <li>We recommend selecting <em>Private DNS provider hostname</em> and entering the DoT address from documentation of your DoT provider to enable strict mode (see Terms above). <span class="badge badge-warning" data-toggle="tooltip" data-original-title="If you are on a network blocking access to port 853, Android will error about the network not having internet connectivity."><i class="fas fa-exclamation-triangle"></i></span></li>
        </ul>
      <li><em><a href="https://apps.apple.com/app/id1452162351">DNSCloak</a></em> - An <a href="https://github.com/s-s/dnscloak">open-source</a> DNSCrypt and DoH client for iOS by <td><a data-toggle="tooltip" data-placement="bottom" data-original-title='"A charitable non-profit host organization for international Free Software projects."' href="https://techcultivation.org/">the Center for the Cultivation of Technology gemeinnuetzige GmbH</a>.</li>
      <li><em><a href="https://git.frostnerd.com/PublicAndroidApps/smokescreen/blob/master/README.md">Nebulo</a></em> - An open-source application for Android supporting DoH and DoT. It also supports caching DNS responses and locally logging DNS queries.</li>
    </ul>
  </li>
  <li><strong>Local DNS servers:</strong>
    <ul>
      <li><em><a href="https://dnsprivacy.org/wiki/display/DP/DNS+Privacy+Daemon+-+Stubby">Stubby</a></em> - An open-source application for Linux, macOS, and Windows that acts as a local DNS Privacy stub resolver using DoT.</li>
      <li><em><a href="https://nlnetlabs.nl/projects/unbound/about/">Unbound</a></em> - a validating, recursive, caching DNS resolver. It can also be ran network-wide and has supported DNS-over-TLS since version 1.7.3.</li>
      <ul>
          <li>See also <a href="https://www.ctrl.blog/entry/unbound-tls-forwarding.html">Actually secure DNS over TLS in Unbound on ctrl.blog</a>.</li>
      </ul>
    </ul>
  </li>
  <li><strong>Network wide DNS servers:</strong>
    <ul>
      <li><em><a href="https://pi-hole.net/">Pi-hole</a></em> - A network-wide DNS server mainly for the Raspberry Pi. Blocks ads, tracking, and malicious domains for all devices on your network.</li>
      <li><em><a href="https://gitlab.com/quidsup/notrack">NoTrack</a></em> - A network-wide DNS server like Pi-hole for blocking ads, tracking, and malicious domains.</li>
    </ul>
  </li>
  <li><strong>Further reading:</strong>
    <ul>
      <li>On Firefox, DoH and ESNI</li>
          <ul>
              <li><a href="https://wiki.mozilla.org/Trusted_Recursive_Resolver">Trusted Recursive Resolver (DoH) on MozillaWiki</a></li>
              <li><a href="https://bugzilla.mozilla.org/show_bug.cgi?id=1500289">Firefox bug report requesting the ability to use ESNI without DoH</a></li>
              <li><a href="https://bugzilla.mozilla.org/show_bug.cgi?id=1542754">Firefox bug report requesting the ability to use Android 9+'s Private DNS (DoT) and benefit from encrypted SNI without having to enable DoH</a></li>
              <li><a href="https://blog.cloudflare.com/encrypted-sni/">Encrypt it or lose it: how encrypted SNI works on Cloudflare blog</a></li>
          </ul>
      <li><a href="https://www.isc.org/blogs/qname-minimization-and-privacy/">QNAME Minimization and Your Privacy</a> by the Internet Systems Consortium (ISC)</li>
      <li><a href="https://www.isc.org/dnssec/">DNSSEC and BIND 9</a> by the ISC</li>
    </ul>
  </li>
 </ul>
--- a/_includes/sections/email-alternatives.html
+++ b/_includes/sections/email-alternatives.html
@ -1,34 +0,0 @@
 <h1 id="messaging" class="anchor"><a href="#messaging"><i class="fas fa-link anchor-icon"></i></a> Email Alternatives</h1>
 {% include cardv2.html
 title="Bitmessage"
 image="/assets/img/tools/Bitmessage.png"
 description="Bitmessage is a P2P communications protocol used to send encrypted messages to another person or to many subscribers. It is decentralized and trustless,
 meaning that you need not inherently trust any entities like root certificate authorities. It uses strong authentication which means that the sender of a message cannot be spoofed, and it aims to hide \"non-content\" data."
 website="https://bitmessage.org/"
 forum="https://forum.privacytools.io/t/discussion-bitmessage/661"
 github="https://github.com/Bitmessage/PyBitmessage"
 windows="https://github.com/Bitmessage/PyBitmessage/releases"
 mac="https://github.com/Bitmessage/PyBitmessage/releases"
 linux="https://repology.org/project/pybitmessage/versions"
 %}
 {% include cardv2.html
 title="RetroShare"
 image="/assets/img/tools/RetroShare.png"
 description="Retroshare creates encrypted connections to your friends. Nobody can spy on you. Retroshare is completely decentralized. This means there are no central servers. It is entirely open-source and free. There are no costs, no ads, and no Terms of Service."
 website="https://retroshare.cc/"
 forum="https://forum.privacytools.io/t/discussion-retroshare/662"
 github="https://github.com/RetroShare/RetroShare"
 windows="https://retroshare.cc/downloads.html#windows"
 mac="https://retroshare.cc/downloads.html#mac"
 linux="https://retroshare.cc/downloads.html#gnulinux"
 freebsd="https://retroshare.cc/downloads.html#freebsd"
 %}
 <h3>Worth Mentioning</h3>
 <ul>
  <li><a href="https://i2pbote.xyz/">I2P-Bote</a> - End-to-end encrypted decentralized mail system within the I2P network.</li>
 </ul>
--- a/_includes/sections/email-clients.html
+++ b/_includes/sections/email-clients.html
@ -2,8 +2,8 @@
 {% include cardv2.html
 title="Thunderbird"
-image="/assets/img/tools/Thunderbird.png"
+image="/assets/img/svg/3rd-party/thunderbird.svg"
-description="Thunderbird is a free, open source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by community, previously by the Mozilla Foundation."
+description="Thunderbird is a free, open source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation."
 website="https://www.thunderbird.net/"
 forum="https://forum.privacytools.io/t/discussion-thunderbird/659"
 source="https://hg.mozilla.org/comm-central/"
@ -17,7 +17,7 @@ netbsd="http://pkgsrc.se/mail/thunderbird"
 {% include cardv2.html
 title="Claws Mail"
-image="/assets/img/tools/Claws-Mail.png"
+image="/assets/img/png/3rd-party/claws_mail.png"
 description="Claws Mail is a free and open source, GTK-based email and news client. It offers easy configuration and an abundance of features. It is included with Gpg4win, an encryption suite for Windows."
 website="https://www.claws-mail.org/"
 forum="https://forum.privacytools.io/t/discussion-claws-mail/660"
--- a/_includes/sections/email-providers.html
+++ b/_includes/sections/email-providers.html
@ -1,270 +1,270 @@
-<h1 id="email" class="anchor"><a href="#email"><i class="fas fa-link anchor-icon"></i></a> Privacy-Conscious Email Providers - No Affiliates</h1>
+<h1 id="email" class="anchor"><a href="#email"><i class="fas fa-link anchor-icon"></i></a> Recommended Email Services</h1>
 <div class="alert alert-success" role="alert">
-  <strong>All providers listed here are operating outside the US and support <a data-toggle="tooltip" data-placement="bottom" data-original-title="When sending or receiving emails, if both the sending and receiving servers support TLS encryption, the email is sent between servers using an encrypted connection.">SMTP TLS.</a> The table is sortable.</strong>
+  <strong>Our recommended providers operate outside of the US, adopt modern email technology, and meet <a href="/providers/email/#criteria">our other criteria</a> for listing.</strong> We also have a <a href="https://wiki.privacytools.io/view/Comparison_of_email_providers#Provider_comparison">detailed comparison table</a> of the below providers on the wiki.
 </div>
-<div class="table-responsive">
+<div class="container-fluid">
  <table class="table sortable-theme-bootstrap" data-sortable>
    <thead>
      <tr>
        <th data-sorted="true" data-sorted-direction="ascending">Email Provider</th>
        <th data-sortable="false">Website</th>
        <th data-sortable="true">Since</th>
        <th data-sortable="true">Jurisdiction</th>
        <th data-sortable="true">Storage</th>
        <th data-sortable="true">Yearly Price</th>
        <th data-sortable="true">Bitcoin</th>
        <th data-sortable="true">Encryption</th>
        <th data-sortable="true">Own Domain</th>
      </tr>
    </thead>
-    <tbody>
+  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img
        src="/assets/img/svg/3rd-party/protonmail.svg"
        height="70"
        width="200"
        class="img-fluid d-block mr-auto ml-auto align-middle"
        alt="ProtonMail">
    </div>
    <div class="col">
    <h2 id="protonmail" class="anchor"><a href="#protonmail"><i class="fas fa-link anchor-icon"></i></a> ProtonMail <span class="badge badge-info">Free</span></h2>
    <p><strong><a href="https://protonmail.com">ProtonMail.com</a></strong> is an email service with a focus on privacy, encryption, security, and ease of use. They have been in operation since <strong>2013</strong>. ProtonMail is based in Genève, <span class="flag-icon flag-icon-ch"></span> Switzerland. Accounts start with 500 MB storage with their free plan.</p>
-      <tr>
+    <p>Free accounts have some limitations and do not allow the use of the <a href="https://protonmail.com/bridge">ProtonMail Bridge</a>, which is required to use a <a href="/software/email">recommended email client</a> (e.g. Thunderbird) or to search email by body text. Paid accounts are available starting at <strong>€48/Year</strong> which include features like ProtonMail Bridge, additional storage, custom domain support, and more. The webmail and mobile apps can only search <code>To:</code>, <code>From:</code>, <code>Date:</code> and <code>Subject:</code> (this is likely to change when <a href="https://reddit.com/comments/cqwk2a/comment/ex21b4e">v4.0</a> of ProtonMail is released).</p>
        <td data-value="disroot">
          <img alt="Disroot" src="/assets/img/provider/disroot.org.png" width="200" height="70">
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://disroot.org" href="https://disroot.org"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="2015">2015</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-nl"></span> Netherlands
          </span>
        </td>
        <td data-value="1000">1 GB</td>
        <td data-value="0"><span class="label label-warning">Free</span></td>
        <td data-value="1"><span class="label label-success">Accepted</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-success">Domains and Aliases</span></h5>
-        <td data-value="kolabnow">
+    <p>Paid ProtonMail users can use their own domain with the service. <a href="https://protonmail.com/support/knowledge-base/catch-all/">Catch-all</a> addresses are supported with custom domains for Professional and Visionary plans. ProtonMail also supports <a href="https://protonmail.com/support/knowledge-base/creating-aliases/">subaddressing</a>, which is useful for users who don't want to purchase a domain.</p>
          <img alt="Kolab Now" src="/assets/img/provider/Kolab-Now.png" width="200" height="70">
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://kolabnow.com" href="https://kolabnow.com"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="2010">2010</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-ch"></span> Switzerland
          </span>
        </td>
        <td data-value="2048">2 GB</td>
        <td data-value="6000">$ 60</td>
        <td data-value="1"><span class="label label-success">Accepted</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-success">Payment Methods</span></h5>
-        <td data-value="mailbox">
+    <p>ProtonMail accepts Bitcoin in addition to accepting credit/debit cards and PayPal.</p>
          <img alt="mailbox.org" src="/assets/img/provider/mailbox.org.png" width="200" height="70">
-        </td>
+    <h5><span class="badge badge-success">Account Security</span></h5>
-        <td>
+    <p>ProtonMail supports <a href="https://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm">TOTP</a> <a href="https://protonmail.com/support/knowledge-base/two-factor-authentication/">two factor authentication</a> only. The use of a <a href="https://en.wikipedia.org/wiki/Universal_2nd_Factor">U2F</a> security key is not yet supported. ProtonMail is planning to implement U2F upon completion of their <a href="https://reddit.com/comments/cheoy6/comment/feh2lw0/">Single Sign On (SSO)</a> code.</p>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://mailbox.org" href="https://mailbox.org"><img alt="WWW" src="/assets/img/layout/www.png" width="35 "height="35"></a>
        </td>
        <td data-value="2014">2014</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-de"></span> Germany
          </span>
        </td>
        <td data-value="2000">2 GB</td>
        <td data-value="1444">12 €</td>
        <td data-value="1"><span class="label label-success">No</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-success">Data Security</span></h5>
-        <td data-value="mailfence">
+    <p>ProtonMail has <a href="https://protonmail.com/blog/zero-access-encryption">zero access encryption at rest</a> for your emails, <a href="https://protonmail.com/blog/encrypted-contacts-manager">address book contacts</a>, and <a href="https://protonmail.com/blog/protoncalendar-security-model">calendars</a>. This means the messages and other data stored in your account are only readable by you. </p>
          <img alt="Mailfence" src="/assets/img/provider/Mailfence.png" width="200" height="70">
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://mailfence.com" href="https://mailfence.com"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="2013">2013</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-be"></span> Belgium
          </span>
        </td>
        <td data-value="500">500 MB</td>
        <td data-value="0"><span class="label label-warning">Free</span></td>
        <td data-value="1"><span class="label label-success">Accepted</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-success">Email Encryption</span></h5>
-        <td data-value="neomailbox">
+    <p>ProtonMail has <a href="https://protonmail.com/support/knowledge-base/how-to-use-pgp">integrated OpenPGP encryption</a> in their webmail. Emails to other ProtonMail users are encrypted automatically, and encryption to non-ProtonMail users with an OpenPGP key can be enabled easily in your account settings. They also allow you to <a href="https://protonmail.com/support/knowledge-base/encrypt-for-outside-users">encrypt messages to non-ProtonMail users</a> without the need for them to sign up for a ProtonMail account or use software like OpenPGP.</p>
-          <img alt="Neomailbox" src="/assets/img/provider/Neomailbox.png" width="200" height="70">
+    <p>ProtonMail also supports the discovery of public keys via HTTP from their <a href="https://wiki.gnupg.org/WKD">Web Key Directory (WKD)</a>. This allows users outside of ProtonMail to find the OpenPGP keys of ProtonMail users easily, for cross-provider E2EE.</p>
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://www.neomailbox.com" href="https://www.neomailbox.com"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="2003">2003</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-ch"></span> Switzerland
          </span>
        </td>
        <td data-value="1000">1 GB</td>
        <td data-value="4995">$ 49.95</td>
        <td data-value="1"><span class="label label-success">Accepted</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-success">.onion Service</span></h5>
-        <td data-value="posteo">
+    <p>ProtonMail is accessible via Tor at <a href="https://protonirockerxow.onion/">protonirockerxow.onion</a>.</p>
          <img alt="Posteo" src="/assets/img/provider/Posteo.png" width="200" height="70">
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://posteo.de" href="https://posteo.de"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="2009">2009</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-de"></span> Germany
          </span>
        </td>
        <td data-value="2000">2 GB</td>
        <td data-value="1444">12 €</td>
        <td data-value="0"><span class="label label-primary">No</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="0"><span class="label label-primary">No</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-info">Extra Functionality</span></h5>
-        <td data-value="protonmail">
+    <p>ProtonMail offers a "Visionary" account for €24/Month, which also enables access to ProtonVPN in addition to providing multiple accounts, domains, aliases, and extra storage.</p>
-          <img alt="Protonmail" src="/assets/img/provider/ProtonMail.ch.png" width="200" height="70">
+    </div>
-        </td>
+  </div>
-        <td>
+  <div class="row mb-2">
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://protonmail.com" href="https://protonmail.com"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
+    <div class="col-lg-3 col-sm-12 pt-lg-5">
-          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://protonirockerxow.onion. Requires specific software to access: torproject.org" href="https://protonirockerxow.onion"><img alt="Tor" src="/assets/img/layout/tor.png" width="35"></a>
+      <img
-        </td>
+        src="/assets/img/svg/3rd-party/mailboxorg.svg"
-        <td data-value="2013">2013</td>
+        height="70"
-        <td>
+        width="200"
-          <span class="no-text-wrap">
+        class="img-fluid d-block mr-auto ml-auto align-middle"
-            <span class="flag-icon flag-icon-ch"></span> Switzerland
+        alt="Mailbox">
-          </span>
+    </div>
-        </td>
+    <div class="col">
-        <td data-value="500">500 MB</td>
+    <h2 id="mailbox" class="anchor"><a href="#mailbox"><i class="fas fa-link anchor-icon"></i></a> Mailbox.org <span class="badge badge-info">€12/Year</span></h2>
-        <td data-value="0"><span class="label label-warning">Free</span></td>
+    <p><strong><a href="https://mailbox.org">Mailbox.org</a></strong> is an email service with a focus on being secure, ad-free, and privately powered by 100% eco-friendly energy. They have been in operation since <strong>2014</strong>. Mailbox.org is based in Berlin, <span class="flag-icon flag-icon-de"></span> Germany. Accounts start with 2 GB of storage, which can be upgraded as needed.</p>
        <td data-value="1"><span class="label label-success">Accepted</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-success">Domains and Aliases</span></h5>
-        <td data-value="runbox">
+    <p>Mailbox.org lets users use their own domain and they support <a href="https://kb.mailbox.org/display/MBOKBEN/Using+catch-all+alias+with+own+domain">catch-all</a> addresses. Mailbox.org also supports <a href="https://kb.mailbox.org/display/BMBOKBEN/What+is+an+alias+and+how+do+I+use+it">subaddressing</a>, which is useful for users who don't want to purchase a domain.</p>
          <img alt="Runbox" src="/assets/img/provider/runbox.png" width="200" height="70">
-        </td>
+    <h5><span class="badge badge-warning">Payment Methods</span></h5>
-        <td>
+    <p>Mailbox.org doesn't accept Bitcoin or any other cryptocurrencies as a result of their payment processor BitPay suspending operations in Germany. However, they do accept Cash by mail, cash payment to bank account, bank transfer, credit card, PayPal and couple of German-specific processors: paydirekt and Sofortüberweisung.</p>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://runbox.com" href="https://runbox.com"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="1999">1999</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-no"></span> Norway
          </span>
        </td>
        <td data-value="1000">1 GB</td>
        <td data-value="1995">$ 19.95</td>
        <td data-value="1"><span class="label label-primary">Accepted</span></td>
        <td data-value="0"><span class="label label-primary">No</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-success">Account Security</span></h5>
-        <td data-value="soverin">
+    <p>Mailbox.org supports <a href="https://kb.mailbox.org/display/MBOKBEN/How+to+use+two-factor+authentication+-+2FA">two factor authentication</a> for their webmail only. You can use either <a href="https://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm">TOTP</a> or a <a href="https://en.wikipedia.org/wiki/YubiKey">Yubikey</a> via the <a href="https://www.yubico.com/products/services-software/yubicloud">Yubicloud</a>. Web standards such as <a href="https://en.wikipedia.org/wiki/Universal_2nd_Factor">U2F</a> and <a href="https://en.wikipedia.org/wiki/WebAuthn">WebAuthn</a> are not yet supported.</p>
          <img alt="Soverin" src="/assets/img/provider/Soverin.png" width="200" height="70">
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://soverin.net/" href="https://soverin.net/"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="2015">2015</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-nl"></span> Netherlands
          </span>
        </td>
        <td data-value="25000">25 GB</td>
        <td data-value="3489">29 €</td>
        <td data-value="0"><span class="label label-success">No</span></td>
        <td data-value="0"><span class="label label-success">No</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-warning">Data Security</span></h5>
-        <td data-value="startmail">
+    <p>Mailbox.org allows for encryption of incoming mail using their <a href="https://kb.mailbox.org/display/MBOKBEN/The+Encrypted+Mailbox">encrypted mailbox</a>. New messages that you receive will then be immediately encrypted with your public key.</p>
-          <img alt="StartMail" src="/assets/img/provider/StartMail.png" width="200" height="70">
+    <p>However, <a href="https://en.wikipedia.org/wiki/Open-Xchange">Open-Exchange</a>, the software platform used by Mailbox.org, <a href="https://kb.mailbox.org/display/BMBOKBEN/Encryption+of+calendar+and+address+book">does not support</a> the encryption of your address book and calendar. A <a href="/software/calendar-contacts/">standalone option</a> may be more appropriate for that information.</p>
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://www.startmail.com" href="https://www.startmail.com"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="2014">2014</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-nl"></span> Netherlands
          </span>
        </td>
        <td data-value="10000">10 GB</td>
        <td data-value="5995">$ 59.95</td>
        <td data-value="0"><span class="label label-success">Accepted</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-      <tr>
+    <h5><span class="badge badge-success">Email Encryption</span></h5>
-        <td data-value="tutanota">
+    <p>Mailbox.org has <a href="https://kb.mailbox.org/display/MBOKBEN/Send+encrypted+e-mails+with+Guard">integrated encryption</a> in their webmail, which simplifies sending messages to users with public OpenPGP keys. They also allow <a href="https://kb.mailbox.org/display/MBOKBEN/My+recipient+does+not+use+PGP">remote recipients to decrypt an email</a> on Mailbox.org's servers. This feature is useful when the remote recipient does not have OpenPGP and cannot decrypt a copy of the email in their own mailbox.</p>
-          <img alt="Tutanota" src="/assets/img/provider/Tutanota.png" width="200" height="70">
+    <p>Mailbox.org also supports the discovery of public keys via HTTP from their <a href="https://wiki.gnupg.org/WKD">Web Key Directory (WKD)</a>. This allows users outside of Mailbox.org to find the OpenPGP keys of Mailbox.org users easily, for cross-provider E2EE.</p>
        </td>
        <td>
          <a data-toggle="tooltip" data-placement="bottom" data-original-title="https://www.tutanota.com" href="https://www.tutanota.com"><img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35"></a>
        </td>
        <td data-value="2011">2011</td>
        <td>
          <span class="no-text-wrap">
            <span class="flag-icon flag-icon-de"></span> Germany
          </span>
        </td>
        <td data-value="1000">1 GB</td>
        <td data-value="0"><span class="label label-warning">Free</span></td>
        <td data-value="0"><span class="label label-primary">No</span></td>
        <td data-value="1"><span class="label label-success">Built-in</span></td>
        <td data-value="1"><span class="label label-success">Yes</span></td>
      </tr>
-    </tbody>
+    <h5><span class="badge badge-warning">.onion Service</span></h5>
-  </table>
+    <p>You can access your Mailbox.org account via IMAP/SMTP using <a href="https://kb.mailbox.org/display/MBOKBEN/The+Tor+exit+node+of+mailbox.org">their .onion service</a>. However, their webmail interface cannot be accessed via their .onion service, and users may experience TLS certificate errors.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>All accounts come with limited cloud storage that <a href="https://kb.mailbox.org/display/MBOKBEN/Encrypt+files+on+your+Drive">can be encrypted</a>. Mailbox.org also offers the alias <a href="https://kb.mailbox.org/display/MBOKBEN/Ensuring+E-Mails+are+Sent+Securely">@secure.mailbox.org</a>, which enforces the TLS encryption on the connection between mail servers, otherwise the message will not be sent at all.</p>
    </div>
  </div>
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img
        src="/assets/img/svg/3rd-party/posteo.svg"
        height="70"
        width="200"
        class="img-fluid d-block mr-auto ml-auto align-middle"
        alt="Posteo">
    </div>
    <div class="col">
    <h2 id="posteo" class="anchor"><a href="#posteo"><i class="fas fa-link anchor-icon"></i></a> Posteo <span class="badge badge-info">€12/Year</span></h2>
    <p><strong><a href="https://posteo.de">Posteo.de</a></strong> is an email provider that focuses on anonymous, secure, and private email. Their servers are powered by 100% sustainable energy. They have been in operation since <strong>2009</strong>. Posteo is based in <span class="flag-icon flag-icon-de"></span> Germany and has a free 14-day trial. Posteo comes with 2 GB for the monthly cost and an extra gigabyte can be purchased for €0.25 per month.</p>
    <h5><span class="badge badge-warning">Domains and Aliases</span></h5>
    <p>Posteo does <a href="https://posteo.de/en/site/faq">not allow the use of custom domains</a>, however users may still make use of <a href="https://posteo.de/en/help/what-is-an-email-alias">subaddressing</a>.</p>
    <h5><span class="badge badge-warning">Payment Methods</span></h5>
    <p>Posteo does not accept Bitcoin or other cryptocurrencies as a form of payment, however they do accept cash-by-mail. They also accept credit/debit cards, bank transfers, and PayPal, and remove PII (personally identifiable information) <a href="https://posteo.de/en/site/payment">that they receive</a> in connection with these payment methods.</p>
    <h5><span class="badge badge-success">Account Security</span></h5>
    <p>Posteo supports <a href="https://posteo.de/en/help/what-is-two-factor-authentication-and-how-do-i-set-it-up">two factor authentication</a> for their webmail only. You can use either <a href="https://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm">TOTP</a> a <a href="https://en.wikipedia.org/wiki/YubiKey">Yubikey</a> with TOTP. Web standards such as <a href="https://en.wikipedia.org/wiki/Universal_2nd_Factor">U2F</a> and <a href="https://en.wikipedia.org/wiki/WebAuthn">WebAuthn</a> are not yet supported.</p>
    <h5><span class="badge badge-warning">Data Security</span></h5>
    <p>Posteo has <a href="https://posteo.de/en/site/encryption#cryptomailstorage">zero access encryption</a> for email storage. This means the messages stored in your account are only readable by you. </p>
    <p>Posteo also supports the encryption of your <a href="https://posteo.de/en/site/features#featuresaddressbook">address book contacts</a> and <a href="https://posteo.de/en/site/features#featurescalendar">calendars</a> at rest. However, Posteo still uses standard <a href="https://en.wikipedia.org/wiki/CalDAV">CalDAV</a> and <a href="https://en.wikipedia.org/wiki/CardDAV">CardDAV</a> for calendars and contacts. These protocols do not support <a href="https://en.wikipedia.org/wiki/End-to-end_encryption">E2EE (End-To-End Encryption)</a>. A <a href="/software/calendar-contacts/">standalone option</a> may be more appropiate.</p>
    <h5><span class="badge badge-success">Email Encryption</span></h5>
    <p>Posteo has <a href="https://posteo.de/en/site/encryption#pgp_webmailer">integrated encryption</a> in their webmail, which simplifies sending messages to users with public OpenPGP keys. They also support the discovery of public keys via HTTP from their <a href="https://wiki.gnupg.org/WKD">Web Key Directory (WKD)</a>. This allows users outside of Posteo to find the OpenPGP keys of Posteo users easily, for cross-provider E2EE.</p>
    <h5><span class="badge badge-danger">.onion Service</span></h5>
    <p>Posteo does not operate a .onion service.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>Posteo allows users to <a href="https://posteo.de/en/help/does-posteo-offer-mailing-lists">set up their own mailing lists</a>. Each account can create one list for free.</p>
    </div>
  </div>
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img
        src="/assets/img/svg/3rd-party/soverin.svg"
        height="70"
        width="200"
        class="img-fluid d-block mr-auto ml-auto align-middle"
        alt="Soverin">
    </div>
    <div class="col">
    <h2 id="soverin" class="anchor"><a href="#soverin"><i class="fas fa-link anchor-icon"></i></a> Soverin <span class="badge badge-info">€29/Year</span></h2>
    <p><strong><a href="https://soverin.net">Soverin.net</a></strong> is an email provider which focuses on being private, ad-free, and powered by sustainable energy. They have been in operation since <strong>2015</strong>. Soverin is based in <span class="flag-icon flag-icon-nl"></span> Amsterdam and does not have a free trial. Accounts start at 25 GB.</p>
    <h5><span class="badge badge-success">Domains and Aliases</span></h5>
    <p>Soverin lets users use their own domain. Soverin users can also use <a href="https://support.soverin.net/hc/en-us/articles/115004811093-How-can-I-setup-a-catch-all-on-my-domain-">catch-all</a> and <a href="https://support.soverin.net/hc/en-us/articles/115004811073-How-can-I-add-an-alias-to-my-domain-">aliases</a> for domains they own. Soverin also allows for <a href="https://support.soverin.net/hc/en-us/articles/115004811033-Do-support-the-plus-syntax-subaddressing-">subaddressing</a>, which is useful for users who don't want to purchase a domain.</p>
    <h5><span class="badge badge-success">Payment Methods</span></h5>
    <p>Soverin accepts Bitcoin as payment. They also accept credit/debit cards, PayPal, and the Netherlands-specific payment gateway iDEAL.</p>
    <h5><span class="badge badge-success">Account Security</span></h5>
    <p>Soverin supports <a href="https://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm">TOTP</a> two factor authentication <a href="https://support.soverin.net/hc/en-us/articles/360008819553-Setting-up-2-Factor-Authentication-2FA-Webmail-only">for webmail only</a>. They do not allow <a href="https://en.wikipedia.org/wiki/Universal_2nd_Factor">U2F</a> security key authentication.</p>
    <h5><span class="badge badge-warning">Data Security</span></h5>
    <p>Soverin has <a href="https://support.soverin.net/hc/en-us/articles/115004810713-Technical-details-about-Soverin">encryption at rest</a> however it doesn't appear to be "zero access", meaning it is technically possible for them to decrypt the data they have.</p>
    <p>Soverin also uses the standard <a href="https://en.wikipedia.org/wiki/CalDAV">CalDAV</a> and <a href="https://en.wikipedia.org/wiki/CardDAV">CardDAV</a> protocols for calendars and contacts, which do not support E2EE. A <a href="/software/calendar-contacts/">standalone option</a> may be more appropriate.</p>
    <h5><span class="badge badge-success">Email Encryption</span></h5>
    <p>Soverin has integrated encryption in their webmail, which simplifies sending messages to users. However, Soverin has not integrated a <a href="https://wiki.gnupg.org/WKD">Web Key Directory (WKD)</a> for users on their platform.<p>
    <h5><span class="badge badge-danger">.onion Service</span></h5>
    <p>Soverin does not operate a .onion service.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>Soverin also providers users with space for a personal webpage.</p>
    </div>
  </div>
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img
        src="/assets/img/svg/3rd-party/disroot.svg"
        data-theme-src="/assets/img/svg/3rd-party/disroot-dark.svg"
        height="70"
        width="200"
        class="img-fluid d-block mr-auto ml-auto align-middle"
        alt="Disroot">
    </div>
    <div class="col">
    <h2 id="disroot" class="anchor"><a href="#disroot"><i class="fas fa-link anchor-icon"></i></a> Disroot <span class="badge badge-info">Free</span></h2>
    <p><strong><a href="https://disroot.org/en/services/email">Disroot</a></strong> offers email amongst <a href="https://disroot.org/en/#services">other services</a>. The service is maintained by volunteers and its community. They have been in operation since <strong>2015</strong>. Disroot is based in <span class="flag-icon flag-icon-nl"></span> Amsterdam. Disroot is free and uses open source software such as Rainloop to provide service. Users support the service through donations and buying extra storage. The mailbox limit is 1 GB, but extra storage can be purchased 0.15€ per GB per month paid yearly.</p>
    <h5><span class="badge badge-success">Domains and Aliases</span></h5>
    <p>Disroot lets users use their own domain. They have aliases, however you must <a href="https://disroot.org/en/forms/alias-request-form">manually apply</a> for them.</p>
    <h5><span class="badge badge-success">Payment Methods</span></h5>
    <p>Disroot accepts Bitcoin and Faircoin as payment methods. They also accept PayPal, direct bank deposit, and Patreon payments. Disroot is a not-for-profit organization that also accepts donations through Liberapay, Flattr, and Monero, but these payment methods cannot be used to purchase services.</p>
    <h5><span class="badge badge-success">Account Security</span></h5>
    <p>Disroot supports <a href="https://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm">TOTP</a> two factor authentication for webmail only. They do not allow <a href="https://en.wikipedia.org/wiki/Universal_2nd_Factor">U2F</a> security key authentication.</p>
    <h5><span class="badge badge-warning">Data Security</span></h5>
    <p>Disroot uses full disk encryption. However, it doesn't appear to be "zero access", meaning it is technically possible for them to decrypt the data they have.</p>
    <p>Disroot also uses the standard <a href="https://en.wikipedia.org/wiki/CalDAV">CalDAV</a> and <a href="https://en.wikipedia.org/wiki/CardDAV">CardDAV</a> protocols for calendars and contacts, which do not support E2EE. A <a href="/software/calendar-contacts/">standalone option</a> may be more appropriate.</p>
    <h5><span class="badge badge-success">Email Encryption</span></h5>
    <p>Disroot allows for encrypted emails to be sent from their webmail application using OpenPGP. However, Disroot has not integrated a <a href="https://wiki.gnupg.org/WKD">Web Key Directory (WKD)</a> for users on their platform.</p>
    <h5><span class="badge badge-danger">.onion Service</span></h5>
    <p>Disroot does not operate a .onion service.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>They offer <a href="https://disroot.org/en/#services">other services</a> such as NextCloud, XMPP Chat, Etherpad, Ethercalc, Pastebin, Online polls and a Gitea instance. They also have an app <a href="https://f-droid.org/packages/org.disroot.disrootapp/">available in F-Droid</a>.</p>
    </div>
  </div>
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img
        src="/assets/img/svg/3rd-party/tutanota.svg"
        data-theme-src="/assets/img/svg/3rd-party/tutanota-dark.svg"
        height="70"
        width="200"
        class="img-fluid d-block mr-auto ml-auto align-middle"
        alt="Tutanota">
    </div>
    <div class="col">
    <h2 id="tutanota" class="anchor"><a href="#tutanota"><i class="fas fa-link anchor-icon"></i></a> Tutanota <span class="badge badge-info">Free</span></h2>
    <p><strong><a href="https://tutanota.com">Tutanota.com</a></strong> is an email service with a focus on security and privacy through the use of encryption. Tutanota has been in operation since <strong>2011</strong> and is based in Hanover, <span class="flag-icon flag-icon-de"></span> Germany. Accounts start with 1GB storage with their free plan.</p>
    <p>Tutanota <a href="https://tutanota.com/faq/#imap">doesn't allow</a> the use of third-party <a href="/software/email/">email clients</a>. There are plans to allow Tutanota pull email from <a href="https://github.com/tutao/tutanota/issues/544">external email accounts</a> using the <a href="https://en.wikipedia.org/wiki/Internet_Message_Access_Protocol">IMAP</a> protocol. <a href="https://github.com/tutao/tutanota/issues/630">Email import</a> is currently not possible.</p>
    <p>Emails can be exported <a href="https://tutanota.com/howto#generalMail">individually or by bulk selection</a>. Tutanota does not allow for <a href="https://github.com/tutao/tutanota/issues/927">subfolders</a> as you might expect with other email providers.</p>
    <p>Tutanota is working on a <a href="https://tutanota.com/blog/posts/desktop-clients/">desktop client</a> and they have an app <a href="https://f-droid.org/packages/de.tutao.tutanota">available in F-Droid</a>. They also have their app in conventional stores such as <a href="https://apps.apple.com/us/app/tutanota/id922429609">App Store</a> on iOS and <a href="https://play.google.com/store/apps/details?id=de.tutao.tutanota">Google Play</a> for Android.</p>
    <h5><span class="badge badge-success">Domains and Aliases</span></h5>
    <p>Paid Tutanota accounts can use up to 5 <a href="https://tutanota.com/faq#alias">aliases</a> and <a href="https://tutanota.com/faq#custom-domain">custom domains</a>. Tutanota doesn't allow for <a href="https://tutanota.com/faq#plus">subaddressing (plus addresses)</a>, but you can use a <a href="https://tutanota.com/howto#settings-global">catch-all</a> with a custom domain.</p>
    <h5><span class="badge badge-danger">Payment Methods</span></h5>
    <p>Tutanota accepts only credit cards and PayPal.</p>
    <h5><span class="badge badge-success">Account Security</span></h5>
    <p>Tutanota supports <a href="https://tutanota.com/faq#2fa">two factor authentication</a>. Users can either use <a href="https://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm">TOTP</a> or <a href="https://en.wikipedia.org/wiki/Universal_2nd_Factor">U2F</a>. U2F support is <a href="https://github.com/tutao/tutanota/issues/443">not yet available on Android</a>.</p>
    <h5><span class="badge badge-success">Data Security</span></h5>
    <p>Tutanota has <a href="https://tutanota.com/faq#what-encrypted">zero access encryption at rest</a> for your emails, <a href="https://tutanota.com/faq#encrypted-address-book">address book contacts</a>, and <a href="https://tutanota.com/faq#calendar">calendars</a>. This means the messages and other data stored in your account are only readable by you. </p>
    <h5><span class="badge badge-warning">Email Encryption</span></h5>
    <p>Tutanota <a href="https://www.tutanota.com/faq/#pgp">does not use OpenPGP</a>. Tutanota users can only receive encrypted emails when external users send them through a <a href="https://www.tutanota.com/howto/#encrypted-email-external">temporary Tutanota mailbox</a>.</p>
    <p>Tutanota <a href="https://github.com/tutao/tutanota/issues/198">does have plans</a> to support <a href="https://autocrypt.org">AutoCrypt</a>. This would allow for external users to send encrypted emails to Tutanota users as long as their email client supports the AutoCrypt headers.</p>
    <h5><span class="badge badge-danger">.onion Service</span></h5>
    <p>Tutanota does not operate a .onion service but <a href="https://github.com/tutao/tutanota/issues/528">may consider</a> it in the future.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>Tutanota offers the business version of <a href="https://tutanota.com/blog/posts/secure-email-for-non-profit">Tutanota to non-profit organizations</a> for free or with a heavy discount.</p>
    <p>Tutanota also has a business feature called <a href="https://tutanota.com/secure-connect/">Secure Connect</a>. This ensures customer contact to the business uses E2EE. The feature costs €240/year.</p>
    </div>
  </div>
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img
        src="/assets/img/svg/3rd-party/mailfence.svg"
        data-theme-src="/assets/img/svg/3rd-party/mailfence-dark.svg"
        height="70"
        width="200"
        class="img-fluid d-block mr-auto ml-auto align-middle"
        alt="Mailbox">
    </div>
    <div class="col">
    <h2 id="mailfence" class="anchor"><a href="#mailfence"><i class="fas fa-link anchor-icon"></i></a> Mailfence <span class="badge badge-info">Free</span></h2>
    <p><strong><a href="https://mailfence.com">Mailfence</a></strong> provides secure and private email services to individuals and businesses. They have been in operation since <strong>2013</strong>. Mailfence is based in Brussels, <span class="flag-icon flag-icon-be"></span> Belgium. Accounts start with 500 MB of storage for free accounts.</p>
    <h5><span class="badge badge-success">Domains and Aliases</span></h5>
    <p>Paid accounts can use <a href="https://kb.mailfence.com/kb/custom-domain-based-addresses-in-mailfence-account/">custom domains</a>. They also support catch-all addresses. Mailfence users can also use <a href="https://will.koffel.org/post/2014/using-email-plus-addressing/">subaddressing</a>.</p>
    <h5><span class="badge badge-success">Payment Methods</span></h5>
    <p>Mailfence customers can pay with Visa, Mastercard, Paypal, Bitcoin or Litecoin.</p>
    <h5><span class="badge badge-success">Account Security</span></h5>
    <p>Mailfence supports <a href="https://blog.mailfence.com/two-factor-authentication-now-available/">two factor authentication</a> for their webmail only. They do not allow <a href="https://en.wikipedia.org/wiki/Universal_2nd_Factor">U2F</a> security key authentication.</p>
    <h5><span class="badge badge-danger">Data Security</span></h5>
    <p>None. No disk encryption or encryption at rest. Currently a work in progress as of 4th March 2020.</p>
    <h5><span class="badge badge-success">Email Encryption</span></h5>
    <p>Mailfence allows for encrypted emails to be sent from their webmail application using OpenPGP. However, Mailfence has not integrated a <a href="https://wiki.gnupg.org/WKD">Web Key Directory (WKD)</a> for users on their platform.</p>
    <h5><span class="badge badge-danger">.onion Service</span></h5>
    <p>Mailfence does not operate a .onion service.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>Mailfence also supports <a href="https://en.wikipedia.org/wiki/Exchange_ActiveSync">Exchange ActiveSync</a> in addition to standard access protocols such as IMAP, POP3, SMTP for paid users.</p>
    </div>
  </div>
 </div>
 <h3>Interesting Email Providers Under Development</h3>
 <ul>
  <li><a href="https://www.confidantmail.org/">Confidant Mail</a> - An open-source non-SMTP cryptographic email system optimized for large file attachments. It is a secure and spam-resistant alternative to regular email and online file drop services. It
    uses <a href="https://theprivacyguide.org/tutorials/gpg.html">GNU Privacy Guard (GPG)</a> for content encryption and authentication, and TLS 1.2 with ephemeral keys for transport encryption.</li>
 </ul>  <h3>Become Your Own Email Provider with Mail-in-a-Box</h3>
 <a href="https://mailinabox.email/"><img src="/assets/img/provider/Mail-in-a-Box.png" width="200" height="70" class="img-fluid float-left mr-3" alt="Mail-in-a-Box"></a>
 <p>Take it a step further and get control of your email with this easy-to-deploy mail server in a box. Mail-in-a-Box lets you become your own mail service provider in a few easy steps. It's sort of like making your own Gmail, but one you control from top
 to bottom. Technically, Mail-in-a-Box turns a fresh cloud computer into a working mail server. But you don't need to be a technology expert to set it up. <strong>More: <a href="https://mailinabox.email/">https://mailinabox.email/</a></strong></p>
 <h3>Related Information</h3>
 <ul>
  <li><a href="https://www.wired.com/2011/10/ecpa-turns-twenty-five/">Aging 'Privacy' Law Leaves Cloud E-Mail Open to Cops</a> - Data stored in the cloud for longer than 6 months is considered abandoned and may be accessed by intelligence agencies without
    a warrant. Learning: Use an external email client like Thunderbird or Enigmail, download your emails and store them locally. Never leave them on the server.</li>
  <li><a href="https://www.eff.org/deeplinks/2012/04/may-firstriseup-server-seizure-fbi-overreaches-yet-again">With May First/Riseup Server Seizure, FBI Overreaches Yet Again</a></li>
  <li><a href="https://www.autistici.org/ai/crackdown/">Autistici/Inventati server compromised</a> - The cryptographic services offered by the Autistici/Inventati server have been compromised on 15th June 2004. It was discovered on 21st June 2005. One year
    later. During an enquiry on a single mailbox, the Postal Police may have tapped for a whole year every user's private communication going through the server autistici.org/inventati.org.</li>
 </ul>
--- a/_includes/sections/email-warning.html
+++ b/_includes/sections/email-warning.html
@ -0,0 +1,10 @@
 <div class="card border-danger">
  <div class="card-header text-danger"><i class="fas fa-exclamation-circle fa-fw"></i> Warning</div>
    <div class="card-body">
      <p class="card-text text-danger">When using end-to-end encryption (E2EE) technology like <a href="https://en.wikipedia.org/wiki/Pretty_Good_Privacy">OpenPGP</a>, email will still have some metadata that is not encrypted in the header of the email. <a href="/providers/email/#metadata">Read more about email metadata.</a></p>
      <p class="card-text text-danger">OpenPGP also does not support <a href="https://en.wikipedia.org/wiki/Forward_secrecy">Forward secrecy</a>, which means if either your or the recipient's private key is ever stolen, <strong>all</strong> previous messages encrypted with it will be exposed. <a href="/providers/email/#email-encryption">How do I protect my private keys?</a></p>
      <p class="card-text text-secondary">Rather than use email for prolonged conversations, consider using a medium that does support Forward secrecy.</p>
      <a href="/software/real-time-communication/" class="btn btn-outline-secondary">Recommended Instant Messengers</a>
    </div>
 </div>
--- a/_includes/sections/file-encryption.html
+++ b/_includes/sections/file-encryption.html
@ -7,7 +7,8 @@
 {%
  include cardv2.html
  title="VeraCrypt - Disk Encryption"
-  image="/assets/img/tools/VeraCrypt.png"
+  image="/assets/img/svg/3rd-party/veracrypt.svg"
  image-dark="/assets/img/svg/3rd-party/veracrypt-dark.svg"
  description="<strong>VeraCrypt</strong> is a source-available freeware utility used for on-the-fly encryption. It can create a virtual encrypted disk within a file or encrypt a partition or the entire storage device with pre-boot authentication. VeraCrypt is a fork of the discontinued TrueCrypt project. It was initially released on June 22, 2013. According to its developers, security improvements have been implemented and issues raised by the initial TrueCrypt code audit have been addressed."
  website="https://veracrypt.fr/"
  forum="https://forum.privacytools.io/t/discussion-veracrypt-file-encryption/1532"
@ -20,7 +21,7 @@
 {%
  include cardv2.html
  title="GNU Privacy Guard - Email Encryption"
-  image="/assets/img/tools/GnuPG.png"
+  image="/assets/img/svg/3rd-party/gnupg.svg"
  description="<strong>GnuPG</strong> is a GPL-licensed alternative to the PGP suite of cryptographic software. GnuPG is compliant with RFC 4880, which is the current IETF standards track specification of OpenPGP. Current versions of PGP (and Veridis' Filecrypt) are interoperable with GnuPG and other OpenPGP-compliant systems. GnuPG is a part of the Free Software Foundation's GNU software project, and has received major funding from the German government."
  website="https://gnupg.org/"
  forum="https://forum.privacytools.io/t/discussion-gnupg-file-encryption/1533"
@ -38,7 +39,7 @@
 {%
  include cardv2.html
  title="PeaZip - File Archive Encryption"
-  image="/assets/img/tools/PeaZip.png"
+  image="/assets/img/svg/3rd-party/peazip.svg"
  description="<strong>PeaZip</strong> is a free and open-source file manager and file archiver made by Giorgio Tani. It supports its native PEA archive format (featuring compression, multi volume split and flexible authenticated encryption and integrity check schemes) and other mainstream formats, with special focus on handling open formats. It also supports 180+ archive formats."
  website="http://www.peazip.org"
  forum="https://forum.privacytools.io/t/discussion-peazip-file-encryption/1534"
@ -53,8 +54,8 @@
 <h3>Worth Mentioning</h3>
 <ul>
-  <li><a href="https://cryptomator.org/">Cryptomator</a> - Free client-side AES encryption for your cloud files. Open source software: No backdoors, no registration. <span class="badge badge-warning" data-toggle="tooltip" title="Cryptomator's mobile apps are not open-source."><a href="https://github.com/cryptomator/cryptomator-android/issues/1#issuecomment-257979375"><i class="fas fa-exclamation-triangle"></i></a></span></li></li>
+  <li><a href="https://cryptomator.org/">Cryptomator</a> - Free client-side AES encryption for your cloud files. Open source software: No backdoors, no registration. <span class="badge badge-warning" data-toggle="tooltip" title="Cryptomator's mobile apps are not open-source."><a href="https://github.com/cryptomator/cryptomator-android/issues/1#issuecomment-257979375"><i class="fas fa-exclamation-triangle"></i></a></span></li>
  <li><a href="https://gitlab.com/cryptsetup/cryptsetup/">Linux Unified Key Setup (LUKS)</a> - A full disk encryption system for Linux using dm-crypt as the disk encryption backend. Included by default in Ubuntu. Available for Windows and Linux.</li>
-  <li><a href="https://hat.sh/">Hat.sh</a> - A cross-platform, serverless JavaScript web application that provides secure file encryption using the AES-256-GCM algorithm in your browser. It can also be downloaded and run offline.</a></li>
+  <li><a href="https://hat.sh/">Hat.sh</a> - A cross-platform, serverless JavaScript web application that provides secure file encryption using the AES-256-GCM algorithm in your browser. It can also be downloaded and run offline.</li>
  <li><a href="https://www.keka.io/">Keka</a> - A macOS-only, open-source file archiver with the ability to encrypt files.</li>
 </ul>
--- a/_includes/sections/file-sharing.html
+++ b/_includes/sections/file-sharing.html
@ -2,9 +2,10 @@
 {% include cardv2.html
 title="Firefox Send"
-image="/assets/img/tools/Firefox-Send.png"
+image="/assets/img/svg/3rd-party/firefox_send.svg"
 labels="warning:<a href=//send.firefox.com/legal>Warning</a>: IP addresses are retained in logs for 90 days."
 description="Firefox Send uses end-to-end encryption to keep your data secure from the moment you share to the moment your file is opened. It also offers security controls that you can set. You can choose when your file link expires, the number of downloads, and whether you would like to add a password for an extra layer of security."
 website="https://send.firefox.com/"
 description="Firefox Send uses end-to-end encryption to keep your data secure from the moment you share to the moment your file is opened. It also offers security controls that you can set. You can choose when your file link expires, the number of downloads, and whether to add an optional password for an extra layer of security."
 forum="https://forum.privacytools.io/t/discussion-firefox-send/755"
 github="https://github.com/mozilla/send"
 web="https://send.firefox.com/"
@ -13,10 +14,10 @@ googleplay="https://play.google.com/store/apps/details?id=org.mozilla.firefoxsen
 {% include cardv2.html
 title="OnionShare"
-image="/assets/img/tools/OnionShare.png"
+image="/assets/img/svg/3rd-party/onionshare.svg"
 website="https://onionshare.org/"
-tor="http://elx57ue5uyfplgva.onion/"
+tor="http://lldan5gahapx5k7iafb3s4ikijc4ni7gx5iywdflkba5y2ezyg6sjgyd.onion/"
-description="OnionShare is an open-source tool that lets you securely and anonymously share a file of any size. It works by starting a web server, making it accessible as a Tor onion service, and generating an unguessable URL for you to share so that the recipients can access and download the files."
+description="OnionShare is an open-source tool that lets you securely and anonymously share a file of any size. It works by starting a web server accessible as a Tor onion service, with an unguessable URL that you can share with the recipients to download or send files."
 forum="https://forum.privacytools.io/t/discussion-onionshare/754"
 github="https://github.com/micahflee/onionshare"
 windows="https://onionshare.org/#downloads"
@ -28,7 +29,7 @@ openbsd="http://openports.se/net/onionshare"
 {% include cardv2.html
 title="Magic Wormhole"
-image="/assets/img/tools/Magic-Wormhole.png"
+image="/assets/img/png/3rd-party/magic_wormhole.png"
 website="https://magic-wormhole.readthedocs.io"
 description="Magic Wormhole is a package that provides a library and a command-line tool named wormhole, which makes it possible to get arbitrary-sized files and directories (or short pieces of text) from one computer to another. Their motto: \"Get things from one computer to another, safely.\""
 forum="https://forum.privacytools.io/t/discussion-magic-wormhole/756"
@ -44,6 +45,7 @@ netbsd="https://pypi.org/project/magic-wormhole/"
 <h3>Worth Mentioning</h3>
 <ul>
-  <li><a href="https://github.com/schollz/croc">croc</a> - Easily and securely send things from one computer to another.</li>
+  <li><a href="https://framadrop.org/">FramaDrop</a> - Stores a file of any size for 24h. Data is end-to-end encrypted from your browser, powered by <a href="https://framagit.org/fiat-tux/hat-softwares/lufi">LuFi</a>. <span class="badge badge-warning" data-toggle="tooltip" title="FramaDrop logs IP addresses and fingerprints the browser for an unclear amount of time."><a href="https://framasoft.org/en/cgu/"><i class="fas fa-exclamation-triangle"></i></a></span></li>
-  <li><a href="https://freedombox.org/">FreedomBox</a> - Designed to be your own inexpensive server at home. It runs free software and offers an increasing number of services ranging from a calendar or Jabber server, to a wiki, or VPN.</li>
+  <li><a href="https://github.com/schollz/croc">croc</a> - Easily and securely send arbitrary-sized files from one computer to another. Similar to Magic Wormhole but without dependencies.</li>
  <li><a href="https://freedombox.org/">FreedomBox</a> - Designed to be your own inexpensive server at home. It runs free software and offers an increasing number of services ranging from a calendar or XMPP server, to a wiki, or VPN.</li>
 </ul>
--- a/_includes/sections/file-sync.html
+++ b/_includes/sections/file-sync.html
@ -8,8 +8,8 @@
 {%
  include cardv2.html
  title="Syncthing"
-  image="/assets/img/tools/Syncthing.png"
+  image="/assets/img/svg/3rd-party/syncthing.svg"
-  description="<strong>Syncthing</strong> replaces proprietary sync and cloud services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third-party and how it's transmitted over the Internet."
+  description="<strong>Syncthing</strong> replaces proprietary sync and cloud services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third-party, and how it is transmitted over the Internet."
  website="https://syncthing.net/"
  forum="https://forum.privacytools.io/t/discussion-syncthing/1627/2"
  github="https://github.com/syncthing?type=source"
@ -23,8 +23,8 @@
 {%
  include cardv2.html
  title="SparkleShare"
-  image="/assets/img/tools/SparkleShare.png"
+  image="/assets/img/svg/3rd-party/sparkleshare.svg"
-  description="<strong>SparkleShare</strong> creates a special folder on your computer. You can add remotely hosted folders (or \"projects\") to this folder. These projects will be automatically kept in sync with both the host and all of your peers when someone adds, removes or edits a file."
+  description="<strong>SparkleShare</strong> creates a special folder on your computer. You can add remotely hosted folders (or \"projects\") to this folder. These projects will be automatically kept in sync with both the host and all of your peers when someone adds, removes, or edits a file."
  website="https://sparkleshare.org/"
  forum="https://forum.privacytools.io/t/discussion-sparkleshare/1626"
  github="https://github.com/hbons/SparkleShare"
@ -36,7 +36,6 @@
 <ul>
  <li>
-    <a href="https://git-annex.branchable.com/">git-annex</a> - Allows managing files with git, without checking the file contents into git. While that may seem paradoxical, it is useful when dealing with files larger than git can currently easily handle,
+    <a href="https://git-annex.branchable.com/">git-annex</a> - Allows managing files with git, without checking the file contents into git. While that may seem paradoxical, it is useful when dealing with files larger than git can currently easily handle, whether due to limitations in memory, time, or disk space.
    whether due to limitations in memory, time, or disk space.
  </li>
 </ul>
--- a/_includes/sections/fourteen-eyes.html
+++ b/_includes/sections/fourteen-eyes.html
@ -1,6 +1,6 @@
 <h1 id="ukusa" class="anchor"><a href="#ukusa"><i class="fas fa-link anchor-icon"></i></a> Global Mass Surveillance - The Fourteen Eyes</h1>
-<img src="/assets/img/layout/UKUSA.png" width="260" height="115" class="img-fluid float-right ml-2" alt="UKUSA Agreement">
+<img src="/assets/img/svg/layout/ukusa.svg" width="260" height="115" class="img-fluid float-right ml-2" alt="UKUSA Agreement">
 <p>The UKUSA Agreement is an agreement between the United Kingdom, United States, Australia, Canada, and New Zealand to cooperatively collect, analyze, and share intelligence. Members of this group, known as the <a href="https://www.giswatch.org/en/communications-surveillance/unmasking-five-eyes-global-surveillance-practices">Five Eyes</a>, focus on gathering and analyzing intelligence from different parts of the world. While Five Eyes countries have agreed to <a href="https://www.pbs.org/newshour/world/an-exclusive-club-the-five-countries-that-dont-spy-on-each-other">not spy on each other</a> as adversaries, leaks by Snowden have revealed that some Five Eyes members monitor each other's citizens and <a href="https://www.theguardian.com/uk/2013/jun/21/gchq-cables-secret-world-communications-nsa">share intelligence</a> to <a href="https://www.theguardian.com/politics/2013/jun/10/nsa-offers-intelligence-british-counterparts-blunkett">avoid breaking domestic laws</a> that prohibit them from spying on their own citizens. The Five Eyes alliance also cooperates with groups of third-party countries to share intelligence (forming the Nine Eyes and Fourteen Eyes); however, Five Eyes and third-party countries can and do spy on each other.</p>
--- a/_includes/sections/header.html
+++ b/_includes/sections/header.html
@ -3,7 +3,14 @@
 </div>
 <div class="jumbotron p-5">
-  <h1 class="display-4"><a href="{{ site.production_url }}" title="{{ site.name }}"><img src="/assets/img/layout/logo.png" width="600" height="88" class="img-fluid" alt="{{ site.name }}"></a></h1>
+  <h1 class="display-4">
    <a href="{{ site.production_url }}" title="{{ site.name }}">
      <img class="img-fluid d-none d-sm-block" src="/assets/img/svg/layout/brand/horizontal.svg" width="500px" alt="{{ site.name }}">
      <div class="text-center">
        <img class="img-fluid d-sm-none" src="/assets/img/svg/layout/brand/vertical.svg" width="300px" alt="{{ site.name }}">
      </div>
    </a>
  </h1>
  <p class="lead">You are being watched. Private and state-sponsored organizations are monitoring and recording your online activities. {{ site.name }} provides services, tools and knowledge to protect your privacy against global mass surveillance.</p>
 </div>
--- a/_includes/sections/hosting-provider.html
+++ b/_includes/sections/hosting-provider.html
@ -2,7 +2,8 @@
 {% include cardv2.html
 title="Data Center: Bahnhof"
-image="/assets/img/provider/bahnhof.png"
+image="/assets/img/svg/3rd-party/bahnhof.svg"
 image-dark="/assets/img/svg/3rd-party/bahnhof-dark.svg"
 description="Bahnhof is one of Sweden’s largest network operators, founded in 1994. They specialize in innovative data center construction: Extreme security coupled with low-cost green energy has made them world famous."
 website="https://www.bahnhof.net/"
 forum="https://forum.privacytools.io/t/discussion-bahnhof-net/341"
@ -10,8 +11,9 @@ forum="https://forum.privacytools.io/t/discussion-bahnhof-net/341"
 {% include cardv2.html
 title="VPS & Domain: Njalla"
-image="/assets/img/provider/Njalla.png"
+image="/assets/img/svg/3rd-party/njalla.svg"
-description="Njalla is a privacy-aware domain registration service and VPS provider based in Nevis (with VPS data centers in Sweden). It is created by people from The Pirate Bay and IPredator VPN. Accepted payments: Bitcoin, Litecoin, Monero, DASH, Bitcoin Cash and PayPal."
+image-dark="/assets/img/svg/3rd-party/njalla-dark.svg"
 description="Njalla is a privacy-aware domain registration service and VPS provider based in Nevis (with VPS data centers in Sweden). It is created by people from The Pirate Bay and IPredator VPN. Accepted payments: Bitcoin, Litecoin, Monero, Zcash, DASH, Bitcoin Cash and PayPal."
 website="https://njal.la/"
 tor="http://njalladnspotetti.onion"
 forum="https://forum.privacytools.io/t/discussion-njalla/339"
@ -19,7 +21,7 @@ forum="https://forum.privacytools.io/t/discussion-njalla/339"
 {% include cardv2.html
 title="Colocation: DataCell"
-image="/assets/img/provider/datacell.png"
+image="/assets/img/png/3rd-party/datacell.png"
 description="DataCell is a data center providing secure colocating in Switzerland and Iceland."
 website="https://datacell.is/"
 forum="https://forum.privacytools.io/t/discussion-datacell-is/342"
@ -27,7 +29,7 @@ forum="https://forum.privacytools.io/t/discussion-datacell-is/342"
 {% include cardv2.html
 title="VPS, Hosting, & Domain: Orange Website"
-image="/assets/img/provider/orange_hosting.png"
+image="/assets/img/png/3rd-party/orange_website.png"
 description="Orange Website is an Icelandic web hosting provider that prides themselves in protecting online privacy and free speech."
 website="https://www.orangewebsite.com/"
 forum="https://forum.privacytools.io/t/discussion-orange-website/343"
--- a/_includes/sections/instant-messenger.html
+++ b/_includes/sections/instant-messenger.html
@ -1,64 +1,205 @@
-<h1 id="im" class="anchor"><a href="#im"><i class="fas fa-link anchor-icon"></i></a> Encrypted Instant Messenger</h1>
+<h1 id="im" class="anchor"><a href="#im"><i class="fas fa-link anchor-icon"></i></a> Encrypted Instant Messengers</h1>
 <div class="alert alert-warning" role="alert">
-  <strong>If you are currently using an Instant Messenger like Telegram, LINE, Viber, <a href="https://www.eff.org/deeplinks/2016/10/where-whatsapp-went-wrong-effs-four-biggest-security-concerns">WhatsApp</a>, or plain SMS you should pick an alternative here.</strong>
+  <strong>If you are currently using an Instant Messenger like Telegram, LINE, Viber, <a href="https://www.eff.org/deeplinks/2016/10/where-whatsapp-went-wrong-effs-four-biggest-security-concerns">WhatsApp</a>, or plain SMS, you should pick an alternative here.</strong></div>
 </div>
 <p>We only recommend instant messenger programs or apps that support <a href="https://en.wikipedia.org/wiki/End-to-end_encryption">end-to-end encryption (E2EE)</a>. When E2EE is used, all transmissions (messages, voice, video, etc.) are encrypted <strong>before</strong> they are sent from your device. E2EE protects both the authenticity and confidentiality of the transmission as they pass through any part of the network (servers, etc.).</p>
-{% include cardv2.html
+<p>All the client programs/apps we chose are <a href="https://en.wikipedia.org/wiki/Free_and_open-source_software">free and open-source software</a> unless otherwise mentioned. This to ensure that the code can be independently verified by experts now and in the future.</p>
-title="Signal"
+
-image="/assets/img/tools/Signal.png"
+<p>We have described the three main types of messaging programs that exist: Centralized, Federated and Peer-to-Peer (P2P), with the advantages and disadvantages of each.</p>
-description="Signal is a mobile app developed by Open Whisper Systems. The app provides instant messaging, as well as voice and video calling.
+
-All communications are end-to-end encrypted. Signal is free and open source."
+<h2 id="centralized" class="anchor"><a href="#centralized"><i class="fas fa-link anchor-icon"></i></a> Centralized</h2>
-labels="success:VoIP"
+
-website="https://signal.org/"
+<p>Centralized messengers are those where every participant is on the same server or network of servers controlled by the same organization.</p>
-forum="https://forum.privacytools.io/t/discussion-signal/664"
+
-github="https://github.com/signalapp"
+<h3>Advantages</h3>
-windows="https://signal.org/download/"
+<ul>
-mac="https://signal.org/download/"
+    <li>New features and changes can be implemented more quickly.</li>
-linux="https://signal.org/download/"
+    <li>Easier to get started with and to find contacts.</li>
-googleplay="https://play.google.com/store/apps/details?id=org.thoughtcrime.securesms"
+</ul>
-android="https://signal.org/android/apk/#apk-danger"
+
-ios="https://apps.apple.com/us/app/signal-private-messenger/id874139669"
+<h3>Disadvantages</h3>
 <ul>
    <li>Centralized services could be more susceptible to <a href="#exploiting-centralized-networks">legislation requiring backdoor access</a>.</li>
    <li>Can include <a href="https://drewdevault.com/2018/08/08/Signal.html">restricted control or access</a>. This can include things like:</li>
    <ul>
        <li>Being <a href="https://github.com/LibreSignal/LibreSignal/issues/37#issuecomment-217211165">forbidden from connecting third-party clients</a> to the centralized network that might provide for greater customization or better user experience. Often defined in Terms and Conditions of usage.</li>
        <li>Poor or no documentation for third-party developers.</li>
    </ul>
    <li>The <a href="https://blog.privacytools.io/delisting-wire">ownership</a>, privacy policy, and operations of the service can change easily when a single entity controls it, potentially compromising the service later on.</li>
 </ul>
 {%
   include cardv2.html
   title="Signal"
   image="/assets/img/svg/3rd-party/signal.svg"
   description='Signal is a mobile app developed by Signal Messenger LLC. The app provides instant messaging, as well as voice and video calling. All communications are E2EE unless you choose to send as SMS. Its protocol has also been <a href="https://eprint.iacr.org/2016/1013.pdf">indepedently audited (PDF)</a>'
   labels="warning:<a>Requires phone number</a>:Signal requires your phone number as an personal identifier which means anyone you communicate with will see it.|success:VoIP"
   website="https://signal.org/"
   forum="https://forum.privacytools.io/t/discussion-signal/664"
   github="https://github.com/signalapp"
   windows="https://signal.org/download/"
   mac="https://signal.org/download/"
   linux="https://signal.org/download/"
   googleplay="https://play.google.com/store/apps/details?id=org.thoughtcrime.securesms"
   android="https://signal.org/android/apk/#apk-danger"
   ios="https://apps.apple.com/app/signal-private-messenger/id874139669"
 %}
-<h3>Complete Comparison</h3>
+{%
-<ul>
+  include cardv2.html
-	<li><a href="https://securechatguide.org/effguide.html">securechatguide.org</a> - Guide to Choosing a Messenger.</li>
+  title="Keybase"
-	<li><a href="https://www.securemessagingapps.com/">securemessagingapps.com</a> - Secure Messaging Apps Comparison.</li>
+  image="/assets/img/svg/3rd-party/keybase.svg"
-  <li><a href="https://www.thinkprivacy.io/messengers.html">thinkprivacy.io</a> - Simple Secure Messaging Apps Comparison.</li>
+  description='Keybase provides a hosted team chat with E2EE. Its protocol has also been <a href="https://keybase.io/docs-assets/blog/NCC_Group_Keybase_KB2018_Public_Report_2019-02-27_v1.3.pdf">indepedently audited (PDF)</a>. Keybase can help you prove you own social media accounts though the use of cryptographic signing of "<a href="https://en.wikipedia.org/wiki/Keybase#Identity_proofs">identity proofs</a>".'
-</ul>
+  labels="warning:<a href=//github.com/keybase/client/issues/6374>Warning</a>:This software relies on a closed-source central server."
  website="https://keybase.io/"
  forum="https://forum.privacytools.io/t/discussion-keybase/1224"
  tor="http://keybase5wmilwokqirssclfnsqrjdsi7jdir5wy7y7iu3tanwmtp6oid.onion/"
  github="https://github.com/Keybase"
  windows="https://keybase.io/docs/the_app/install_windows"
  mac="https://keybase.io/docs/the_app/install_macos"
  linux="https://keybase.io/docs/the_app/install_linux"
  freebsd="https://www.freshports.org/security/keybase/"
  googleplay="https://play.google.com/store/apps/details?id=io.keybase.ossifrage"
  ios="https://apps.apple.com/app/keybase-crypto-for-everyone/id1044461770"
  firefox="https://addons.mozilla.org/firefox/addon/keybase-for-firefox/"
  chrome="https://chrome.google.com/webstore/detail/keybase-for-reddit/ognfafcpbkogffpmmdglhbjboeojlefj"
 %}
 <div>
    <h2 id="federated" class="anchor"><a href="#federated"><i class="fas fa-link anchor-icon"></i></a> Federated</h2>
    <p>Federated messengers use multiple, independent servers that are able to talk to each other (email is one example of a federated service). Federation allows system administrators to control their own server and still be a part of the larger communications network.</p>
    <h3>Advantages</h3>
    <ul>
        <li>Allows for greater control over your own data when running your own server.</li>
        <li>Allows you to choose who to trust your data with by choosing between multiple "public" servers.</li>
        <li>Often allows for third party clients which can provide a more native, customized, or accessible experience.</li>
        <li>Generally a less juicy target for governments wanting <a href="#exploiting-centralized-networks">backdoor access to everything</a> as the trust is decentralized. The server may be hosted independently from the organization developing the software.</li>
        <li>Server software can be verified that it matches public source code, assuming you have access to the server or you trust the person who does (e.g., a family member)</li>
        <li>Third-party developers can contribute code and add new features, instead of waiting for a private development team to do so.</li>
    </ul>
    <h3>Disadvantages</h3>
    <ul>
        <li>Adding new features is more complex, because these features need to be standardized and tested to ensure they work with all servers on the network.</li>
        <li>Some metadata may be available (e.g., information like "who is talking to whom," but not actual message content if E2EE is used).</li>
        <li>Federated servers generally require trusting your server's administrator. They may be a hobbyist or otherwise not a "security professional," and may not serve standard documents like a privacy policy or terms of service detailing how your data is utilized.</li>
        <li>Server administrators sometimes choose to block other servers, which are a source of unmoderated abuse or break general rules of accepted behavior. This will hinder your ability to communicate with users on those servers.</li>
    </ul>
 </div>
 {%
  include cardv2.html
  title="Matrix"
  image="/assets/img/svg/3rd-party/matrix.svg"
  image-dark="/assets/img/svg/3rd-party/matrix-dark.svg"
  description='<a href="https://matrix.org/docs/guides/introduction">Matrix</a> is an open-source project that publishes the <a href="https://matrix.org/docs/spec">Matrix open standard</a> for secure, decentralized, real-time communication.<br />
  <a href="https://en.wikipedia.org/wiki/Riot.im">Riot.im</a> is the popular reference client produced by the Matrix.org team. It offers optional E2EE for 1:1 and group conversations that <strong>must</strong> be turned on by the user. (This can be done by clicking on the toggle switch which is accessed by clicking the room name or user name of the chat → Security &amp; Privacy → Encrypted). In the future it will be <a href="https://github.com/vector-im/riot-web/issues/6779">on by default.</a>'
  website="https://about.riot.im/"
  forum="https://forum.privacytools.io/t/discussion-riot-im/665/"
  github="https://github.com/vector-im/riot-web/"
  windows="https://riot.im/download/desktop/"
  mac="https://riot.im/download/desktop/"
  linux="https://riot.im/download/desktop/"
  fdroid="https://f-droid.org/repository/browse/?fdid=im.vector.alpha"
  googleplay="https://play.google.com/store/apps/details?id=im.vector.app"
  ios="https://itunes.apple.com/app/vector.im/id1083446067"
  web="https://riot.im/app/"
 %}
 <div>
    <h4>Worth Mentioning</h4>
    <ul>
        <li>Other <a href="https://matrix.org/clients">Matrix</a> clients, that may however be less feature complete than Riot.im.</li>
        <li><a href="https://xmpp.org/about">XMPP</a> (Extensible Messaging and Presence Protocol) is an open-source communications protocol that began development in 1999. Since then, XMPP has been extended by the publishing of XEPs (XMPP Extension Protocols). <a href="https://conversations.im/omemo/">OMEMO</a> is the most popular XEP (XMPP extension) for E2EE. Clients are developed by the community and not by the XSF (XMPP Standards Foundation). <span class="badge badge-warning" data-toggle="tooltip" title="VoIP and file transfers/names may not be end-to-end encrypted.">Inconsistent E2EE</span></li>
        <ul>
            <li><a href="https://gajim.org/">Gajim</a></li>
            <li><a href="https://conversations.im">Conversations</a></li>
            <li><a href="https://siskin.im/">Siskin</a></li>
            <li>Other <a href="https://omemo.top">OMEMO</a> capable clients for XMPP.</li>
        </ul>
        <li><a href="https://www.kontalk.org">Kontalk</a> is a community-driven instant messaging network based on XMPP.</li>
    </ul>
    <h2 id="peer-to-peer" class="anchor"><a href="#peer-to-peer"><i class="fas fa-link anchor-icon"></i></a> Peer to Peer (P2P)</h2>
    <p>Peer-to-Peer instant messengers connect directly to each other without requiring third-party servers. Clients (peers) usually find each other through the use of a <a href="https://en.wikipedia.org/wiki/Distributed_computing">distributed computing</a> network. Examples of this include <a href="https://en.wikipedia.org/wiki/Distributed_hash_table">DHT (distributed hash table)</a> (used with technologies like <a href="https://en.wikipedia.org/wiki/BitTorrent_(protocol)">torrents</a> and <a href="https://en.wikipedia.org/wiki/InterPlanetary_File_System">IPFS</a>, for example), or <a href="https://en.wikipedia.org/wiki/Ethereum">Ethereum</a>'s <a href="https://github.com/ethereum/wiki/wiki/Whisper">Whisper</a> protocol (used with some newer DApps). Another approach is proximity based networks, where a connection is established over WiFi or Bluetooth (for example, Briar or the <a href="https://www.scuttlebutt.nz">Scuttlebutt</a> social networking protocol). Once a peer has found a route to its contact via any of these methods, a direct connection between them is made.</p>
-<h3>Worth Mentioning</h3>
+    <h3>Advantages</h3>
    <ul>
        <li>Minimal information is exposed to third parties.</li>
        <li>Modern P2P platforms implement end-to-end encryption by default. There are no servers that could potentially intercept and decrypt your transmissions, unlike centralized and federated models.</li>
    </ul>
    <h3>Disadvantages</h3>
    <ul>
        <li>Reduced feature set:</li>
        <ul>
            <li>Messages can only be sent when both peers are online, however, your client may store messages locally to wait for the contact to return online.</li>
            <li>Generally increases battery usage on mobile devices, because the client must stay connected to the distributed network to learn about who is online.</li>
        </ul>
        <li>Your <a href="https://en.wikipedia.org/wiki/IP_address">IP address</a> and that of the contacts you're communicating with may be visible if you do not use the software in conjunction with a <a href="/software/networks">self contained network</a>, such as <a href="https://www.torproject.org">Tor</a> or <a href="https://geti2p.net/">I2P</a>. Many countries have some form of mass surveillance and/or metadata retention.</li>
    </ul>
 </div>
 {%
  include cardv2.html
  title="Briar"
  image="/assets/img/svg/3rd-party/briar.svg"
  description="Encrypted instant messenger that connects to contacts via Wi-Fi, Bluetooth, or Tor over the internet to synchronize messages. Technology such as this has proven to be useful when Internet availability is an issue, such as in times of crisis."
  website="https://briarproject.org"
  forum="https://forum.privacytools.io/t/discussion-briar/2114"
  gitlab="https://code.briarproject.org/briar/briar"
  fdroid="https://f-droid.org/packages/org.briarproject.briar.android/"
  googleplay="https://play.google.com/store/apps/details?id=org.briarproject.briar.android"
 %}
 {%
  include cardv2.html
  title="Jami"
  image="/assets/img/svg/3rd-party/jami.svg"
  description="Encrypted instant messaging and video calling software. Uses <a href=//jami.net/improving-performance-and-security-with-tls-1-3/>TLS 1.3</a> for encryption."
  labels="success:VoIP"
  website="https://jami.net/"
  forum="https://forum.privacytools.io/t/discussion-jami/2116"
  gitlab="https://git.jami.net/savoirfairelinux"
  windows="https://jami.net/download-jami-windows"
  mac="https://jami.net/download-jami-macos"
  linux="https://jami.net/download-jami-linux"
  fdroid="https://f-droid.org/packages/cx.ring/"
  googleplay="https://play.google.com/store/apps/details?id=cx.ring"
  ios="https://itunes.apple.com/app/ring-a-gnu-package/id1306951055?mt=8"
 %}
 {%
  include cardv2.html
  title="Tox"
  image="/assets/img/svg/3rd-party/tox.svg"
  image-dark="/assets/img/svg/3rd-party/tox-dark.svg"
  description='Encrypted instant messaging and video calling software. Uses its <a href="https://toktok.ltd/spec.html"> own encryption protocol</a> that has not yet been officially audited by cryptographers.'
  labels="warning:<a href=//tox.chat/download.html#warning>Experimental</a>:Encryption has not been audited by professional cryptographers|success:VoIP"
  website="https://tox.chat"
  forum="https://forum.privacytools.io/t/discussion-tox/2115"
  windows="https://tox.chat/download.html#oses"
  mac="https://tox.chat/download.html#oses"
  linux="https://tox.chat/download.html#oses"
  freebsd="https://tox.chat/download.html#oses"
  openbsd="http://openports.se/search.php?so=tox"
  netbsd="http://pkgsrc.se/search.php?so=tox"
  fdroid="https://tox.chat/download.html#oses"
  googleplay="https://tox.chat/download.html#oses"
  ios="https://tox.chat/download.html#oses"
 %}
 <h4>Worth Mentioning</h4>
 <ul>
-  <li><a href="https://briarproject.org/">Briar</a> - An ultra-secure peer-to-peer instant messenger that connects to contacts via Direct Wi-Fi, Bluetooth, or Tor over the internet, keeping its users protected from surveillance and censorship.</li>
+    <li><a href="https://status.im">Status.im</a> - Encrypted instant messenger with an integrated <a href="https://en.wikipedia.org/wiki/Ethereum">Ethereum</a> wallet (cryptocurrency) that also includes support for <a href="https://our.status.im/tag/dapps">DApps (decentralized apps)</a> (web apps in a curated store). Uses the <a href="https://blog.enuma.io/update/2018/08/08/decentralized-application-messaging-with-whisper.html">Whisper protocol</a> for P2P communication. <span class="badge badge-warning">Experimental</span></li>
-  <li><a href="https://about.riot.im/">Riot</a> - An open-source, federated messenger that utilizes the Matrix protocol. This application is primarily recommended as a large group/team chat solution. While Riot has the ability to perform 1-on-1 communications we believe there are better solutions for direct communications.</li>
+    <li><a href="https://retroshare.cc">Retroshare</a> - Encrypted instant messaging and voice/video call client. RetroShare supports both <a href="https://www.torproject.org/">Tor</a> and <a href="https://geti2p.net">I2P</a>.</li>
-  <li><a href="https://retroshare.cc/">RetroShare</a> - An end-to-end encrypted instant messaging and voice/video call client. RetroShare supports both TOR and I2P. </li>
+    <li><a href="https://bitmessage.org">Bitmessage</a> is a decentralized, encrypted, peer-to-peer, trustless communications protocol that can be used by one person to send encrypted messages to another person, or to multiple subscribers.</li>
  <li><a href="https://xmpp.org/">XMPP</a> - Federated instant messaging protocol with <a href="https://conversations.im/omemo/">OMEMO</a>, OTR, or OpenPGP end-to-end encryption:</li>
  <ul>
    <li><a href="https://conversations.im/">Conversations</a> (Android) - An open-source Jabber/XMPP client for Android 4.4+ smartphones. <span class="badge badge-success">OMEMO</span></li>
    <li><a href="https://gajim.org/">Gajim</a> (FreeBSD, Linux, Windows) - An open-source fully featured XMPP client. <span class="badge badge-success">OMEMO</span></li>
    <li><a href="https://monal.im/">Monal</a> (iOS, MacOS) - An XMPP client in active development. <span class="badge badge-success">OMEMO</span> <span class="badge badge-success">VoIP</span></li>
    <li><a href="https://omemo.top/">Other OMEMO-ready clients</a>.</li>
  </ul>
  <li><a href="https://www.kontalk.org/">Kontalk</a> - A community-driven instant messaging network. Supports end-to-end encryption. Both client-to-server and server-to-server channels are fully encrypted.</li>
  <li><a href="https://keybase.io/">Keybase</a> - <span class="badge badge-warning" data-toggle="tooltip" title="This software relies on a closed-source central server.">Warning</span> End-to-end encrypted messaging with social verification.</li>
  <li><a href="https://status.im/">Status</a> - <span class="badge badge-warning">Experimental</span> A free and open-source, peer-to-peer, encrypted instant messanger with support for DAPPs.</li>
  <li> <a href="https://tox.chat/">Tox</a> - <span class="badge badge-warning">Experimental</span> A free and open-source, peer-to-peer, encrypted instant messaging, and video calling software. <span class="badge badge-success">VoIP</span></li>
  <li><a href="https://jami.net/">Jami (formerly Ring/SFLphone)</a> - Gives you full control over your communications and an unmatched level of privacy. Jami has text messaging, video and audio calls, file transfer, and video conferencing. <span class="badge badge-success">VoIP</span></li>
 </ul>
 <h3>Related Information</h3>
 <ul>
  <li><a href="https://firstlook.org/theintercept/2015/07/14/communicating-secret-watched/">Chatting in Secret While We're All Being Watched - firstlook.org</a></li>
  <li><a href="https://signal.org/android/apk/">Advanced users with special needs can download the Signal APK directly. Most users should not do this under normal circumstances.</a></li>
  <li>Independent security audits</li>
  <ul>
    <li><a href="https://eprint.iacr.org/2016/1013.pdf">A Formal Security Analysis of the Signal Messaging Protocol (2019)</a> by Katriel Cohn-Gordon, Cas Cremers, Benjamin Dowling, Luke Garratt and Douglas Stebila</li>
    <li><a href="https://keybase.io/docs-assets/blog/NCC_Group_Keybase_KB2018_Public_Report_2019-02-27_v1.3.pdf">Keybase's Protocol Security Review (2019)</a> by <a href="https://www.nccgroup.trust/">NCC Group</a></li>
  </ul>
 </ul>
--- a/_includes/sections/key-disclosure-law.html
+++ b/_includes/sections/key-disclosure-law.html
@ -28,7 +28,7 @@
  title="Key disclosure laws may apply"
  body='
  <ol class="card-ol">
-    <li><a href="https://en.wikipedia.org/wiki/Key_disclosure_law#Belgium">Belgium *</a> <div class="float-right"><span class="flag-icon flag-icon-be"></span></div></li>
+    <li><a href="https://tweakers.net/nieuws/163116/belgische-rechter-verdachte-mag-verplicht-worden-code-smartphone-af-te-staan.html">Belgium</a> <div class="float-right"><span class="flag-icon flag-icon-be"></span></div></li>
    <li><a href="https://www.riigiteataja.ee/akt/106012016019">Estonia</a> <div class="float-right"><span class="flag-icon flag-icon-ee"></span></div></li>
    <li><a href="https://en.wikipedia.org/wiki/Key_disclosure_law#Finland">Finland *</a> <div class="float-right"><span class="flag-icon flag-icon-fi"></span></div></li>
    <li><a href="https://en.wikipedia.org/wiki/Key_disclosure_law#New_Zealand">New Zealand</a> (unclear) <div class="float-right"><span class="flag-icon flag-icon-nz"></span></div></li>
@ -67,7 +67,7 @@
 <h3 id="usa" class="anchor">Why is it not recommended to choose a US-based service?</h3>
-<img src="/assets/img/layout/USA.png" width="200" height="200" class="img-fluid float-right ml-3" alt="USA">
+<img src="/assets/img/svg/layout/great_seal_of_the_united_states_obverse.svg" width="200" height="200" class="img-fluid float-right ml-3" alt="USA">
 <p>Services based in the United States are not recommended because of the country's surveillance programs and use of <a href="https://www.eff.org/issues/national-security-letters/faq">National Security Letters</a> (NSLs) with accompanying gag orders, which forbid the recipient from talking about the request. This combination allows the government to <a href="https://www.schneier.com/blog/archives/2013/08/more_on_the_nsa.html">secretly force</a> companies to grant complete access to customer data and transform the service into a tool of mass surveillance.</p>
--- a/_includes/sections/live-operating-systems.html
+++ b/_includes/sections/live-operating-systems.html
@ -1,38 +1,26 @@
-<h1 id="live_os" class="anchor"><a href="#live_os"><i class="fas fa-link anchor-icon"></i></a> Live CD Operating Systems</h1>
+<h1 id="live_os" class="anchor"><a href="#live_os"><i class="fas fa-link anchor-icon"></i></a> PC Live Operating Systems</h1>
 {% include cardv2.html
 title="Tails"
-image="/assets/img/tools/Tails.png"
+image="/assets/img/svg/3rd-party/tails.svg"
-description='Tails is a live operating system that starts on almost any computer from a DVD, USB stick, or SD card. It aims at preserving privacy and anonymity, and circumventing censorship by forcing Internet connections through the Tor network; leaving no trace on the computer; and using state-of-the-art cryptographic tools to encrypt files, emails, and instant messages.'
+description='Tails is a live operating system that can boot on almost any computer from a DVD, USB stick, or SD card you control. It aims at preserving privacy and anonymity, and circumventing censorship by forcing Internet connections through the Tor network; leaving no trace on the computer; and using state-of-the-art cryptographic tools to encrypt files, emails, and instant messages.'
 badges="info:GNU/Linux"
 labels="warning:contrib:This software may depend on or recommend non-free software."
 website="https://tails.boum.org/"
 git="https://git-tails.immerda.ch/tails/"
 %}
 {% include cardv2.html
 title="KNOPPIX"
 image="/assets/img/tools/KNOPPIX.png"
 description='Knoppix is an operating system based on Debian designed to be run directly from a CD / DVD (Live CD) or a USB flash drive (Live USB), one of the first of its kind for any operating system. When starting a program, it is loaded from the removable medium and decompressed into a RAM drive. The decompression is transparent and on-the-fly.'
 badges="info:GNU/Linux"
 labels="warning:contrib:This software may depend on or recommend non-free software."
 website="https://www.knopper.net/knoppix/index-en.html"
 source="https://www.knopper.net/knoppix-info/index-en.html#license"
 %}
 {% include cardv2.html
 title="Puppy Linux"
 image="/assets/img/tools/Puppy-Linux.png"
 description='Puppy Linux operating system is a lightweight Linux distribution that focuses on ease of use and minimal memory footprint. The entire system can be run from RAM with current versions generally taking up about 210 MB, allowing the boot medium to be removed after the operating system has started.'
 badges="info:GNU/Linux"
 labels="warning:contrib:This software may depend on or recommend non-free software."
 website="http://puppylinux.org/"
 source="http://distro.ibiblio.org/puppylinux/"
 %}
 <h3>Worth Mentioning</h3>
 <ul>
-  <li><a href="https://distro.ibiblio.org/tinycorelinux/">Tiny Core Linux</a> <span class="badge badge-info">GNU/Linux</span> <span class="badge badge-warning" data-toggle="tooltip" title="This software may depend on or recommend non-free software.">contrib <i class="far fa-question-circle"></i></span> - A minimal Linux operating system focusing on providing a base system using BusyBox and FLTK. The distribution is notable for its size (15 MB) and minimalism, with additional functionality
+  <li>
-    provided by extensions.</li>
+    <a href="https://getfedora.org/">Fedora Workstation</a>
    <span class="badge badge-info">GNU/Linux</span>
    - Fedora is a Linux distribution developed by the Fedora Project and sponsored by Red Hat. Fedora Workstation is a secure, reliable, and user-friendly edition developed for desktops and laptops, using GNOME as the default desktop environment.
  </li>
  <li>
    <a href="https://debian.org/">Debian</a>
    <span class="badge badge-info">GNU/Linux</span>
    - Debian is a Unix-like computer operating system and a Linux distribution that is composed entirely of free and open-source software, most of which is under the GNU General Public License, and packaged by a group of individuals known as the Debian project.
  </li>
 </ul>
--- a/_includes/sections/mobile-operating-systems.html
+++ b/_includes/sections/mobile-operating-systems.html
@ -1,13 +1,13 @@
 <h1 id="mobile_os" class="anchor"><a href="#mobile_os"><i class="fas fa-link anchor-icon"></i></a> Mobile Operating Systems</h1>
 <div class="alert alert-warning" role="alert">
-  <strong>Even though the source code of the following OS is provided, installing Google Apps may compromise your setup.</strong>
+  <strong>Even though the source code of the following operating systems is provided, installing Google Apps may compromise your setup.</strong>
 </div>
 {% include cardv2.html
 title="GrapheneOS"
-image="/assets/img/tools/GrapheneOS.png"
+image="/assets/img/svg/3rd-party/grapheneos.svg"
-image-dark="/assets/img/tools/GrapheneOS-dark.png"
+image-dark="/assets/img/svg/3rd-party/grapheneos-dark.svg"
 description='GrapheneOS (formerly known as CopperheadOS) is a free and open-source security- and privacy-focused mobile operating system built on top of the Android Open Source Project. It currently specifically targets devices offering strong hardware security.'
 badges="info:AOSP"
 labels="warning:contrib:This software may depend on or recommend non-free software."
@ -17,7 +17,7 @@ github="https://github.com/GrapheneOS/"
 {% include cardv2.html
 title="LineageOS"
-image="/assets/img/tools/LineageOS.png"
+image="/assets/img/svg/3rd-party/lineageos.svg"
 description='LineageOS is a free and open-source operating system for smartphones and tablets, based on the official releases of the Android Open Source Project. It is the continuation of the CyanogenMod project.'
 badges="info:AOSP"
 labels="warning:contrib:This software may depend on or recommend non-free software."
@ -27,7 +27,7 @@ github="https://github.com/LineageOS"
 {% include cardv2.html
 title="Ubuntu Touch"
-image="/assets/img/tools/Ubuntu-Touch.png"
+image="/assets/img/svg/3rd-party/ubuntu.svg"
 description="Ubuntu Touch is a free and open-source operating system for smartphones and tablets. It's an alternative to the current popular mobile operating systems on the market. Only a few devices are <a href=https://devices.ubuntu-touch.io/>supported.</a>"
 badges="info:GNU/Linux"
 labels="warning:contrib:This software may depend on or recommend non-free software."
--- a/_includes/sections/notebooks.html
+++ b/_includes/sections/notebooks.html
@ -6,7 +6,7 @@
 {% include cardv2.html
 title="Joplin"
-image="/assets/img/tools/Joplin.png"
+image="/assets/img/svg/3rd-party/joplin.svg"
 description="Joplin is a free, open-source, and fully-featured note-taking and to-do application which can handle a large number of markdown notes organized into notebooks and tags. It offers end-to-end encryption and can sync through Nextcloud, Dropbox, and more. It also offers easy import from Evernote and plain-text notes."
 website="https://joplinapp.org/"
 github="https://github.com/laurent22/joplin"
@ -23,8 +23,8 @@ chrome="https://chrome.google.com/webstore/detail/joplin-web-clipper/alofnhikmmk
 {% include cardv2.html
 title="Standard Notes"
-image="/assets/img/tools/StandardNotes.png"
+image="/assets/img/svg/3rd-party/standard_notes.svg"
-description='Standard Notes is a simple and private notes app that makes your notes easy and available everywhere you are. Features end-to-end encryption on every platform, and a powerful desktop experience with themes and custom editors. It has also been <a href="https://s3.amazonaws.com/standard-notes/security/Report-SN-Audit.pdf">independently audited (PDF)</a>.'
+description='Standard Notes is a simple and private notes app that makes your notes easy and available everywhere you are. It features end-to-end encryption on every platform, and a powerful desktop experience with themes and custom editors. It has also been <a href="https://s3.amazonaws.com/standard-notes/security/Report-SN-Audit.pdf">independently audited (PDF)</a>.'
 website="https://standardnotes.org/"
 github="https://github.com/standardnotes"
 windows="https://standardnotes.org/#get-started"
@ -38,7 +38,7 @@ web="https://app.standardnotes.org/"
 {% include cardv2.html
 title="Turtl"
-image="/assets/img/tools/Turtl.png"
+image="/assets/img/svg/3rd-party/turtl.svg"
 description="Turtl lets you take notes, bookmark websites, and store documents for sensitive projects. From sharing passwords with your coworkers to tracking research on an article you're writing, Turtl keeps it all safe from everyone but you and those you share with."
 website="https://turtlapp.com/"
 github="https://github.com/turtl"
@ -60,7 +60,6 @@ chrome="https://chrome.google.com/webstore/detail/turtl/dgcojenhfdjhieoglmiaheih
 <h3>Worth Mentioning</h3>
 <ul>
  <li><a href="https://github.com/notable/notable">Notable</a> - The markdown-based note-taking app that doesn't suck.</li>
  <li><a href="https://paperwork.cloud/">Paperwork</a> - An open-source and self-hosted solution. For PHP / MySQL servers.</li>
  <li><a href="https://orgmode.org">Org-mode</a> - A major mode for GNU Emacs. Org-mode is for keeping notes, maintaining TODO lists, planning projects, and authoring documents with a fast and effective plain-text system. </li>
 </ul>
--- a/_includes/sections/operating-systems.html
+++ b/_includes/sections/operating-systems.html
@ -1,12 +1,12 @@
 <h1 id="os" class="anchor"><a href="#os"><i class="fas fa-link anchor-icon"></i></a> PC Operating Systems</h1>
 <div class="alert alert-warning" role="alert">
-  <strong>If you are currently using a operating system like Windows 10, you should pick an alternative here.</strong>
+  <strong>If you are currently using an operating system like Windows 10, you should pick an alternative here.</strong>
 </div>
 {% include cardv2.html
 title="Qubes OS"
-image="/assets/img/tools/Qubes-OS.png"
+image="/assets/img/svg/3rd-party/qubes_os.svg"
 description='Qubes is an open-source operating system designed to provide strong security for desktop computing. Qubes is based on Xen, the X Window System, and Linux, and can run most Linux applications and utilize most of the Linux drivers.'
 badges="info:Xen"
 labels="warning:contrib:This software may depend on or recommend non-free software."
@ -17,7 +17,7 @@ tor="http://qubesosfasa4zl44o4tws22di6kepyzfeqv3tg4e3ztknltfxqrymdad.onion/"
 {% include cardv2.html
 title="Fedora Workstation"
-image="/assets/img/tools/Fedora.png"
+image="/assets/img/svg/3rd-party/fedora.svg"
 description='Fedora is a Linux distribution developed by the Fedora Project and sponsored by Red Hat. Fedora Workstation is a secure, reliable, and user-friendly edition developed for desktops and laptops, using GNOME as the default desktop environment.'
 badges="info:GNU/Linux"
 labels="warning:contrib:This software may depend on or recommend non-free software."
@ -27,7 +27,7 @@ git="https://src.fedoraproject.org/"
 {% include cardv2.html
 title="Debian"
-image="/assets/img/tools/Debian.png"
+image="/assets/img/svg/3rd-party/debian.svg"
 description='Debian is a Unix-like computer operating system and a Linux distribution that is composed entirely of free and open-source software, most of which is under the GNU General Public License, and packaged by a group of individuals known as the Debian project.'
 badges="info:GNU/Linux"
 website="https://www.debian.org/"
@ -45,38 +45,3 @@ gitlab="https://salsa.debian.org/qa/debsources"
  <li><a href="https://www.whonix.org/">Whonix</a> <span class="badge badge-info">GNU/Linux</span> - A Debian-based security-focused Linux distribution. It aims to provide privacy, security and anonymity on the internet. The operating system consists of two virtual machines, a "Workstation"
    and a Tor "Gateway". All communication are forced through the Tor network to accomplish this.</li>
 </ul>
 <h3>Warning</h3>
 <ul>
  <li><a href="#win10"><i class="fas fa-link"></i> Don't use Windows 10 - It's a privacy nightmare</a></li>
 </ul>
 <h4 id="cpuvulns">Remember to check CPU vulnerability mitigations</h4>
 <p><em><a href="https://support.microsoft.com/en-us/help/4073757/protect-windows-devices-from-speculative-execution-side-channel-attack">This also affects Windows 10</a>, but it doesn't expose this information or mitigation instructions as easily. MacOS users check <a href="https://support.apple.com/en-us/HT210108">How to enable full mitigation for Microarchitectural Data Sampling (MDS) vulnerabilities on Apple Support</a>.</em></p>
 <p>When running a recent enough Linux kernel, you can check the CPU vulnerabilities it detects by <code>tail -n +1 /sys/devices/system/cpu/vulnerabilities/*</code>. By using <code>tail -n +1</code> instead of <code>cat</code>, the file names are also visible.</p>
 <p>
    In case you have an Intel CPU, you may notice "SMT vulnerable" display after running the <code>tail</code> command. To mitigate this, disable <a href="https://en.wikipedia.org/wiki/Hyper-threading">hyper-threading</a> from the UEFI/BIOS. You can also take the following mitigation steps below if your system/distribution uses GRUB and supports <code>/etc/default/grub.d/</code>:
 </p>
 <ol>
  <li><code>sudo mkdir /etc/default/grub.d/</code> to create a directory for additional grub configuration</li>
  <li><code>echo GRUB_CMDLINE_LINUX_DEFAULT="$GRUB_CMDLINE_LINUX_DEFAULT l1tf=full,force mds=full,nosmt mitigations=auto,nosmt nosmt=force" | sudo tee /etc/default/grub.d/mitigations.cfg</code> to create a new grub config file source with the echoed content</li>
  <li><code>sudo grub-mkconfig -o /boot/grub/grub.cfg</code> to generate a new grub config file including these new kernel boot flags</li>
  <li><code>sudo reboot</code> to reboot</li>
  <li>after the reboot, check <code>tail -n +1 /sys/devices/system/cpu/vulnerabilities/*</code> again to see that everything referring to SMT now says "SMT disabled."</li>
 </ol>
 <h5>Further reading</h5>
 <ul>
  <li><a href="https://cpu.fail/">CPU.fail</a></li>
  <li><a href="https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/">Hardware vulnerabilities index on The Linux kernel user's and administrator's guide</a></li>
  <li><a href="https://www.cyberciti.biz/faq/install-update-intel-microcode-firmware-linux/">How to install/update CPU microcode firmware on Linux</a> - Regardless of your CPU manufacturer, you should always install the latest microcode packages available to be protected from CPU vulnerabilities, especially if the command above reports <strong>no microcode</strong> in its output.</li>
  <li><a href="https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html">MDS - Microarchitectural Data Sampling on The Linux kernel user's and administrator's guide</a></li>
  <li><a href="https://mdsattacks.com/">RIDL and Fallout: MDS attacks on mdsattacks.com</a></li>
  <li><a href="https://en.wikipedia.org/wiki/Simultaneous_multithreading">Simultaneous multithreading on Wikipedia</a></li>
 </ul>
--- a/_includes/sections/participate.html
+++ b/_includes/sections/participate.html
@ -2,13 +2,13 @@
  <h1 id="participate" class="anchor"><a href="#participate"><i class="fas fa-link anchor-icon"></i></a> Participate with suggestions and constructive criticism</h1>
 </div>
-<p>It's important for a website like {{ site.name }} to stay up-to-date. Keep an eye on software updates for the applications listed on our site. Follow recent news about providers that we recommend. We try our best to keep up, but we're not perfect and the internet is changing fast. If you find an error, or you think a provider should not be listed here, or a qualified service provider is missing, or a browser plugin is not the best choice anymore, or anything else... <strong>Talk to us please.</strong> You can also find us on <a rel="me" href="https://social.privacytools.io/@privacytools">our own Mastodon instance</a> or on <a href="https://chat.privacytools.io">Matrix</a> at <code class="highlighter-rouge">#general:privacytools.io</code>.</p>
+<p>It's important for a website like {{ site.name }} to stay up-to-date. Keep an eye on software updates for the applications listed on our site. Follow recent news about providers that we recommend. We try our best to keep up, but we're not perfect and the internet is changing fast. If you find an error, or you think a provider should not be listed here, or a qualified service provider is missing, or a browser plugin is not the best choice anymore, or anything else... <strong>Talk to us please.</strong> You can also find us on <a href="https://chat.privacytools.io">Matrix</a> at <code class="highlighter-rouge">#general:privacytools.io</code>. When using our services, users should follow our <a href="https://wiki.privacytools.io/view/PrivacyTools:Code_of_Conduct">Code of Conduct</a>.</p>
 <div class="row">
  {% include card.html color="success"
  title="Discourse & Reddit"
-  image="/assets/img/icons/discourse.png"
+  image="/assets/img/svg/3rd-party/discourse.svg"
  url="https://forum.privacytools.io/"
  website="Discourse"
  extra_button='<a class="btn btn-success mb-1" href="https://www.reddit.com/r/privacytoolsIO/">Reddit</a>'
@ -17,8 +17,8 @@
  {% include card.html color="primary"
  title="Follow on Mastodon & Twitter"
-  image="/assets/img/icons/mastodon.png"
+  image="/assets/img/svg/3rd-party/mastodon.svg"
-  url="https://social.privacytools.io/"
+  url="https://social.privacytools.io/@privacytools"
  website="Mastodon"
  extra_button='<a class="btn btn-primary mb-1" href="https://twitter.com/privacytoolsIO">Twitter</a>'
  description="Get the latest privacy-related updates from our Mastodon Feed. Follow us today!"
--- a/_includes/sections/password-managers.html
+++ b/_includes/sections/password-managers.html
@ -7,7 +7,7 @@
 {%
  include cardv2.html
  title="Bitwarden - Cloud/Self-host"
-  image="/assets/img/tools/bitwarden.png"
+  image="/assets/img/svg/3rd-party/bitwarden.svg"
  description="<strong>Bitwarden</strong> is a free and open-source password manager. It aims to solve password management problems for individuals, teams, and business organizations. Bitwarden is among the easiest and safest solutions to store all of your logins and passwords while conveniently keeping them synced between all of your devices. If you don't want to use the Bitwarden cloud, you can easily host your own Bitwarden server."
  website="https://bitwarden.com/"
  forum="https://forum.privacytools.io/t/discussion-bitwarden/1343"
@ -32,7 +32,7 @@
 {%
  include cardv2.html
  title="KeePassXC - Local"
-  image="/assets/img/tools/keepassxc.png"
+  image="/assets/img/svg/3rd-party/keepassxc.svg"
  description="<strong>KeePassXC</strong> is a community fork of KeePassX, a native cross-platform port of KeePass Password Safe, with the goal to extend and improve it with new features and bugfixes to provide a feature-rich, fully cross-platform and modern open-source password manager."
  website="https://keepassxc.org/"
  forum="https://forum.privacytools.io/t/discussion-keepassxc/1344/2"
@ -52,7 +52,7 @@
 {%
  include cardv2.html
  title="LessPass - Browser"
-  image="/assets/img/tools/LessPass.png"
+  image="/assets/img/svg/3rd-party/lesspass.svg"
  description="<strong>LessPass</strong> is a free and open-source password manager that generates unique passwords for websites, email accounts, or anything else based on a master password and information you know. No sync needed. Uses PBKDF2 and SHA-256. It's advised to use the browser addons for more security."
  website="https://lesspass.com/"
  forum="https://forum.privacytools.io/t/discussion-keepassxc/1344/2"
@ -81,10 +81,7 @@
  <li>
    <a href="https://pwsafe.org/">Password Safe</a> - Whether the answer is one or hundreds, Password Safe allows you to safely and easily create a secured and encrypted username/password list. With Password Safe all you have to do is create and remember a single "Master Password" of your choice in order to unlock and access your entire username/password list.
  </li>
-</ul>
+  <li>
-
+    <a href="https://www.passwordstore.org/">Pass</a> - Pass is a bare-bones password store that keeps passwords using gpg2 encrypted files inside a simple directory tree residing at <code>~/.password-store</code>. It has a simple terminal interface where the user can perform the usual actions, and it's functionality can be extended by plugins. It can also be used in scripts without having to input the actual password in plain text.
-<h3>Related Information</h3>
+  </li>
 <ul>
  <li><a href="https://peertube.mastodon.host/videos/watch/4cdedd90-a5b4-4022-b93d-828e85ed58cd">Edward Snowden on Passwords on Peertube</a></li>
 </ul>
--- a/_includes/sections/paste-services.html
+++ b/_includes/sections/paste-services.html
@ -2,7 +2,7 @@
 {% include cardv2.html
 title="PrivateBin"
-image="/assets/img/tools/PrivateBin.png"
+image="/assets/img/svg/3rd-party/privatebin.svg"
 description="PrivateBin is a minimalist, open-source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256-bit AES. It is the improved version of ZeroBin."
 website="https://privatebin.info/"
 forum="https://forum.privacytools.io/t/discussion-privatebin/296"
@ -12,7 +12,7 @@ github="https://github.com/PrivateBin/PrivateBin"
 {% include cardv2.html
 title="CryptPad"
-image="/assets/img/provider/CryptPad.png"
+image="/assets/img/svg/3rd-party/cryptpad.svg"
 description="CryptPad is an open-source, zero knowledge, and real-time collaborative editor. Data is encrypted/decrypted in the browser, using Salsa20 with Poly1305 to encrypt pads."
 website="https://cryptpad.fr/pad/"
 forum="https://forum.privacytools.io/t/discussion-cryptpad/1270"
--- a/_includes/sections/productivity-tools.html
+++ b/_includes/sections/productivity-tools.html
@ -3,7 +3,7 @@
 {%
  include cardv2.html
  title="CryptPad"
-  image="/assets/img/provider/CryptPad.png"
+  image="/assets/img/svg/3rd-party/cryptpad.svg"
  description="<strong>CryptPad</strong> is a private-by-design alternative to popular office tools and cloud services. All content is end-to-end encrypted. It is free and open-source, enabling anyone to verify its security by auditing the code. The development team is supported by donations and grants. No registration is required, and it can be used anonymously via Tor Browser."
  website="https://cryptpad.fr/"
  forum="https://forum.privacytools.io/t/discussion-cryptpad-productivity-tools/1537"
@ -14,8 +14,7 @@
 {%
  include cardv2.html
  title="Etherpad"
-  image="/assets/img/tools/Etherpad.png"
+  image="/assets/img/svg/3rd-party/etherpad.svg"
  image-dark="/assets/img/tools/Etherpad-dark.png"
  description="<strong>Etherpad</strong> is a highly customizable open-source online editor providing collaborative editing in real time. <a href=https://github.com/ether/etherpad-lite/wiki/Sites-that-run-Etherpad>Here are a list of sites that run Etherpad</a>."
  website="https://etherpad.org/"
  forum="https://forum.privacytools.io/t/discussion-etherpad-productivity-tools/1538"
@ -32,8 +31,8 @@
 {%
  include cardv2.html
  title="Write.as"
-  image="/assets/img/tools/WriteAs.png"
+  image="/assets/img/svg/3rd-party/writeas.svg"
-  image-dark="/assets/img/tools/WriteAs-dark.png"
+  image-dark="/assets/img/svg/3rd-party/writeas-dark.svg"
  description="<strong>Write.as</strong> is a cross-platform, privacy-oriented blogging platform. It's anonymous by default, letting you publish without signing up. If you create an account, it doesn't require any personal information. No ads, distraction-free, and built on a sustainable business model."
  website="https://write.as/"
  forum="https://forum.privacytools.io/t/discussion-write-as-productivity-tools/1539"
@ -70,7 +69,7 @@
 {%
  include cardv2.html
  title="MAT2"
-  image="/assets/img/tools/MAT2.png"
+  image="/assets/img/svg/3rd-party/mat2.svg"
  description="<strong>MAT2</strong> is free software, which allows the removal of metadata of image, audio, torrent, and document file types. It provides both a command line tool and a graphical user interface via an extension for Nautilus, the default file manager of GNOME."
  website="https://0xacab.org/jvoisin/mat2"
  forum="https://forum.privacytools.io/t/discussion-mat/1559"
--- a/_includes/sections/quotes.html
+++ b/_includes/sections/quotes.html
@ -2,7 +2,7 @@
  <h1>Privacy? I don't have anything to hide.</h1>
 </div>
 <blockquote class="blockquote">
-  <p><a href="https://www.ted.com/talks/glenn_greenwald_why_privacy_matters" title="Glenn Greenwald - Why privacy matters - TED Talk"><img src="/assets/img/layout/Glenn-Greenwald-Why-privacy-matters.jpg" width="177" height="200" class="img-fluid float-right ml-2" alt="Glenn Greenwald: Why privacy matters"></a>
+  <p><a href="https://www.ted.com/talks/glenn_greenwald_why_privacy_matters" title="Glenn Greenwald - Why privacy matters - TED Talk"><img src="/assets/img/png/layout/glenn_greenwald.png" width="170px" class="img-fluid float-right ml-2" alt="Glenn Greenwald: Why privacy matters"></a>
  Over the last 16 months, as I've debated this issue around the world, every single time somebody has said to me, "I don't really worry about invasions of privacy because I don't have anything to hide." I always say the same thing to them. I get out a
  pen, I write down my email address. I say, "Here's my email address. What I want you to do when you get home is email me the passwords to all of your email accounts, not just the nice, respectable work one in your name, but all of them, because I
  want to be able to just troll through what it is you're doing online, read what I want to read and publish whatever I find interesting. After all, if you're not a bad person, if you're doing nothing wrong, you should have nothing to hide." <strong>Not a single person has taken me up on that offer.</strong></p>
@ -14,6 +14,16 @@
   <footer class="blockquote-footer">Joshua in <cite title="The Crypto Paper"><a href="https://github.com/cryptoseb/CryptoPaper#let-me-explain-further">The Crypto Paper</a></cite></footer>
 </blockquote>
 <blockquote class="blockquote">
  <p>[...] But saying that you don't need or want privacy because you have nothing to hide is to assume that no one should have, or could have, to hide anything -- including their immigration status, unemployment history, financial history, and health records. You're assuming that no one, including yourself, might object to revealing to anyone information about their religious beliefs, political affiliations, and sexual activities, as casually as some choose to reveal their movie and music tastes and reading preferences.</p>
  <footer class="blockquote-footer">Edward Snowden in <cite title="Permanent Record"><a href="https://en.wikipedia.org/wiki/Permanent_Record_(autobiography)">Permanent Record</a></cite></footer>
 </blockquote>
 <blockquote class="blockquote">
  <p>Privacy is not a luxury [in America]: it is a right – one that we need to defend in the digital realm as much as in the physical realm. We need to stay vigilant to maintain access to that right, though ... especially as technology continues to advance...</p>
  <footer class="blockquote-footer">Chelsea Manning in <cite title="The Guardian"><a href="https://www.theguardian.com/commentisfree/2016/feb/22/privacy-is-a-right-not-a-luxury-and-its-increasingly-at-risk-for-lgbt-people">The Guardian</a></cite></footer>
 </blockquote>
 <h4>Read also:</h4>
 <ul>
@ -25,8 +35,8 @@
 <h1 id="quotes" class="anchor"><a href="#quotes"><i class="fas fa-link anchor-icon"></i></a> Quotes</h1>
 <blockquote class="blockquote">
-  <p>Arguing that you don't care about the right to privacy because you have nothing to hide is no different than saying you don't care about free speech because you have nothing to say.</p>
+  <p>Ultimately, saying that you don't care about privacy because you have nothing to hide is no different from saying you don't care about freedom of speech because you have nothing to say.  Or that you don't care about freedom of the press because you don't like to read. Or that you don't care about freedom of religion because you don't believe in God. Or that you don't care about the freedom to peacably assemble because you're a lazy, antisocial agoraphobe. </p>
-  <footer class="blockquote-footer">Edward Snowden on <cite title="Just days left to kill mass surveillance under Section 215 of the Patriot Act. We are Edward Snowden and the ACLU's Jameel Jaffer. AUA."><a href="https://www.reddit.com/r/IAmA/comments/36ru89/just_days_left_to_kill_mass_surveillance_under/crglgh2">Reddit</a></cite></footer>
+  <footer class="blockquote-footer">Edward Snowden in <cite title="Permanent Record"><a href="https://en.wikipedia.org/wiki/Permanent_Record_(autobiography)">Permanent Record</a></cite></footer>
 </blockquote>
 <blockquote class="blockquote">
--- a/_includes/sections/router-firmware.html
+++ b/_includes/sections/router-firmware.html
@ -2,7 +2,8 @@
 {% include cardv2.html
 title="OpenWrt"
-image="/assets/img/tools/OpenWrt.png"
+image="/assets/img/svg/3rd-party/openwrt.svg"
 image-dark="/assets/img/svg/3rd-party/openwrt-dark.svg"
 description="OpenWrt is an operating system (in particular, an embedded operating system) based on the Linux kernel, primarily used on embedded devices to route network traffic. The main components are the Linux kernel, util-linux, uClibc and BusyBox. All components have been optimized for size, to be small enough for fitting into the limited storage and memory available in home routers."
 badges="info:Linux"
 labels="warning:contrib:This software may depend on or recommend non-free software."
@ -12,7 +13,8 @@ git="https://git.openwrt.org/"
 {% include cardv2.html
 title="pfSense"
-image="/assets/img/tools/pfSense.png"
+image="/assets/img/svg/3rd-party/pfsense.svg"
 image-dark="/assets/img/svg/3rd-party/pfsense-dark.svg"
 description="pfSense is an open source firewall/router computer software distribution based on FreeBSD. It is installed on a computer to make a dedicated firewall/router for a network and is noted for its reliability and offering features often only found in expensive commercial firewalls. pfSense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and as a VPN endpoint."
 badges="info:BSD"
 labels="warning:contrib:This software may depend on or recommend non-free software."
@ -22,7 +24,8 @@ github="https://github.com/pfsense/"
 {% include cardv2.html
 title="LibreCMC"
-image="/assets/img/tools/LibreCMC.png"
+image="/assets/img/svg/3rd-party/librecmc.svg"
 image-dark="/assets/img/svg/3rd-party/librecmc-dark.svg"
 description="LibreCMC is a GNU/Linux-libre distribution for computers with minimal resources, such as the Ben Nanonote, ath9k-based Wi-Fi routers, and other hardware with emphasis on free software. The project's current goal is to aim for compliance with the GNU Free System Distribution Guidelines (GNU FSDG) and ensure that the project continues to meet these requirements set forth by the Free Software Foundation (FSF)."
 badges="info:GNU/Linux"
 website="https://librecmc.org"
--- a/_includes/sections/search-engines.html
+++ b/_includes/sections/search-engines.html
@ -6,8 +6,8 @@
 {% include cardv2.html
 title="searx - Decentral"
-image="/assets/img/provider/searx.png"
+image="/assets/img/svg/3rd-party/searx.svg"
-description='searx is an <a href="https://github.com/asciimoo/searx">open-source</a> metasearch engine, aggregating the results of other search engines while not storing information about its users. No logs, no ads and no tracking. There is a <a href="https://github.com/asciimoo/searx/wiki/Searx-instances">list of public instances</a>, or you can try <a href="https://search.privacytools.io/">the PrivacyTools Search</a>'
+description='searx is an <a href="https://github.com/asciimoo/searx">open-source</a> metasearch engine, aggregating the results of other search engines while not storing information about its users. No logs, no ads and no tracking. There is a <a href="https://searx.space/">list of public instances</a> or you can try the <a href="https://search.privacytools.io/">PrivacyTools instance</a>.'
 website="https://searx.me/"
 tor="http://ulrn6sryqaifefld.onion"
 forum="https://forum.privacytools.io/t/discussion-searx/283"
@ -16,7 +16,7 @@ github="https://github.com/asciimoo/searx"
 {% include cardv2.html
 title="DuckDuckGo - USA"
-image="/assets/img/provider/DuckDuckGo.png"
+image="/assets/img/svg/3rd-party/duckduckgo.svg"
 description='DuckDuckGo is a "search engine that doesn\'t track you." Some of DuckDuckGo\'s code is free software hosted at GitHub, but the core is proprietary. <span class="flag-icon flag-icon-us"></span> <a href="../../providers/#ukusa">The company is based in the USA.</a>'
 website="https://duckduckgo.com/"
 tor="http://3g2upl4pq6kufc4m.onion"
@ -26,7 +26,7 @@ github="https://github.com/duckduckgo"
 {% include cardv2.html
 title="Qwant - France"
-image="/assets/img/provider/Qwant.png"
+image="/assets/img/svg/3rd-party/qwant.svg"
 description='Qwant is a search engine with its philosophy based on two principles: no user tracking and no filter bubble. Qwant was launched in France in February 2013.'
 website="https://www.qwant.com/"
 forum="https://forum.privacytools.io/t/discussion-qwant/286"
@ -46,8 +46,7 @@ github="https://github.com/Qwant/"
 <h3>Worth Mentioning</h3>
 <ul>
-  <li><a href="https://yacy.net/">YaCy</a> - A free-software P2P search engine powered by its users.</a></li>
+  <li><a href="https://yacy.net/">YaCy</a> - A free-software P2P search engine powered by its users.</li>
  <li><a href="https://jivesearch.com/">Jive Search</a> - A free-software search engine with a similar look and feel to Google.</a></li>
  <li><a href="https://metager.de/en/">MetaGer</a> - An open-source metasearch engine, which is based in Germany. It focuses on protecting the user's privacy.</li>
  <li><a href="https://www.mojeek.com/">Mojeek</a> - Independent and unbiased search results with no user tracking.</li>
 </ul>
--- a/_includes/sections/self-contained-networks.html
+++ b/_includes/sections/self-contained-networks.html
@ -6,7 +6,7 @@
 {% include cardv2.html
 title="Tor"
-image="/assets/img/tools/Tor-Project.png"
+image="/assets/img/svg/3rd-party/tor.svg"
 description="The Tor network is a group of volunteer-operated servers that allows people to improve their privacy and security on the Internet. Tor's users employ this network by connecting through a series of virtual tunnels rather than making a direct connection, thus allowing both organizations and individuals to share information over public networks without compromising their privacy. Tor is an effective censorship circumvention tool."
 website="https://www.torproject.org/"
 tor="http://expyuzz4wqqyqhjn.onion"
@ -25,8 +25,8 @@ git="https://gitweb.torproject.org/tor.git"
 {% include cardv2.html
 title="I2P Anonymous Network"
-image="/assets/img/tools/I2P.png"
+image="/assets/img/svg/3rd-party/i2p.svg"
-image-dark="/assets/img/tools/I2P-dark.png"
+image-dark="/assets/img/svg/3rd-party/i2p-dark.svg"
 description="The Invisible Internet Project (I2P) is a computer network layer that allows applications to send messages to each other pseudonymously and securely. Uses include anonymous Web surfing, chatting, blogging, and file transfers. The software that implements this layer is called an I2P router and a computer running I2P is called an I2P node. The software is free and open-source and is published under multiple licenses."
 website="https://geti2p.net/"
 forum="https://forum.privacytools.io/t/discussion-i2p/1590"
@ -45,7 +45,7 @@ source="https://geti2p.net/en/get-involved/guides/new-developers#getting-the-i2p
 {% include cardv2.html
 title="The Freenet Project"
-image="/assets/img/tools/Freenet.png"
+image="/assets/img/svg/3rd-party/freenet.svg"
 description="Freenet is a peer-to-peer platform for censorship-resistant communication. It uses a decentralized distributed data store to keep and deliver information, and has a suite of free software for publishing and communicating on the Web without fear of censorship. Both Freenet and some of its associated tools were originally designed by Ian Clarke, who defined Freenet's goal as providing freedom of speech on the Internet with strong anonymity protection."
 website="https://freenetproject.org/"
 forum="https://forum.privacytools.io/t/discussion-freenet/1591"
@ -58,17 +58,12 @@ netbsd="https://freenetproject.org/pages/download.html#gnulinux-posix"
 github="https://github.com/freenet/"
 %}
 <h3>Related Information</h3>
 <ul>
  <li><a href="https://darknetdiaries.com/">darknetdiaries.com</a> - True stories from the dark side of the Internet.</li>
 </ul>
 <h3>Worth Mentioning</h3>
 <ul>
  <li><a href="https://zeronet.io/">ZeroNet</a> - Open, free, and uncensorable websites, using Bitcoin cryptography and BitTorrent network. <span class="badge badge-danger" data-toggle="tooltip" title="Your IP address isn't hidden by default and won't be, unless you enforce Tor usage.">privacy warning <span class="far fa-question-circle"></span></span></li>
  <li><a href="https://retroshare.cc/">RetroShare</a> - An open source, cross-platform, friend-to-friend, secure, and decentralized communication platform.</li>
  <li><a href="https://i2pbote.xyz/">I2P-Bote</a> - End-to-end encrypted decentralized mail system within the I2P network.</li>
  <li><a href="https://gnunet.org/">GNUnet</a> - GNUnet provides a strong foundation of free software for a global, distributed network that provides security and privacy.</li>
  <li><a href="https://ipfs.io/">IPFS</a> <em>and</em> <a href="https://github.com/ipfs-shipyard/ipfs-companion">IPFS Companion</a>- A peer-to-peer hypermedia protocol to make the web faster, safer, and more open. IPFS Companion is a browser extension for redirecting queries to a gateway of your choice (generally local). <a href="https://github.com/privacytoolsIO/privacytools.io/pull/361#issuecomment-344414022">
    <span class="badge badge-danger" data-toggle="tooltip" title="">
--- a/_includes/sections/selfhosted-cloud.html
+++ b/_includes/sections/selfhosted-cloud.html
@ -6,8 +6,8 @@
 {% include cardv2.html
 title="Nextcloud"
-image="/assets/img/provider/Nextcloud.png"
+image="/assets/img/svg/3rd-party/nextcloud.svg"
-description="Nextcloud is similar in functionality to the widely used Dropbox, with the difference being that Nextcloud is free and open-source, thereby allowing anyone to install and operate it without charge on a private server with no limits on storage space or the number of connected clients."
+description="<strong>Nextcloud</strong> is a suite of client-server software for creating your own file hosting services on a private server you control. Nextcloud is free and open-source, and supports end-to-end encryption with many of its clients. The only limits on storage and bandwidth are the limits on the <a href=\"/providers/hosting\">server provider</a> you choose."
 website="https://nextcloud.com/"
 forum="https://forum.privacytools.io/t/discussion-nextcloud/287"
 windows="https://nextcloud.com/install/#install-clients"
@ -24,8 +24,8 @@ github="https://github.com/nextcloud"
 {% include cardv2.html
 title="Tahoe-LAFS"
-image="/assets/img/tools/Tahoe-LAFS.png"
+image="/assets/img/svg/3rd-party/tahoe-lafs.svg"
-image-dark="/assets/img/tools/Tahoe-LAFS-dark.png"
+image-dark="/assets/img/svg/3rd-party/tahoe-lafs-dark.svg"
 website="https://www.tahoe-lafs.org/"
 forum="https://forum.privacytools.io/t/discussion-tahoe-lafs/1662"
 description="Tahoe-LAFS is a free and open decentralized cloud storage system. It distributes your data across multiple servers. Even if some of the servers fail or are taken over by an attacker, the entire file store continues to function correctly, preserving your privacy and security."
--- a/_includes/sections/social-networks.html
+++ b/_includes/sections/social-networks.html
@ -1,13 +1,13 @@
 <h1 id="social" class="anchor"><a href="#social"><i class="fas fa-link anchor-icon"></i></a> Decentralized Social Networks</h1>
 <div class="alert alert-warning" role="alert">
-  <strong> If you are currently using Social Networks like Facebook or Twitter, you should pick an alternative here. </strong>
+  <strong> If you are currently using Social Networks like Facebook or Twitter, you should pick an alternative here.</strong>
 </div>
 {% include cardv2.html
 title="Mastodon - Twitter Alternative"
-image="/assets/img/tools/Mastodon.png"
+image="/assets/img/svg/3rd-party/mastodon.svg"
-description='Mastodon is a social network based on open web protocols and free, open-source software. It is decentralized like email. It also has the most users, and the most diverse (in terms of interests) users; looks good; and is easy to setup. Feel welcome to join our hosted instance: <a href="https://social.privacytools.io/">social.privacytools.io</a>'
+description='Mastodon is a social network based on open web protocols and free, open-source software. It is decentralized like email, users can exist on different servers or even different platforms but still communicate with each other. It also has the most users, and the most diverse (in terms of interests) users, it looks good, and it is easy to setup yourself. If you are looking for a server to join, you are welcome to join our hosted instance: <a href="https://social.privacytools.io/">social.privacytools.io</a>'
 website="https://joinmastodon.org/"
 forum="https://forum.privacytools.io/t/discussion-mastodon/289"
 github="https://github.com/tootsuite/mastodon"
@ -25,8 +25,8 @@ web="https://joinmastodon.org/#getting-started"
 {% include cardv2.html
 title="diaspora* - Google+ Alternative"
-image="/assets/img/tools/diaspora.png"
+image="/assets/img/svg/3rd-party/diaspora.svg"
-description="diaspora* is based on three key philosophies: Decentralization, freedom and privacy. It is intended to address privacy concerns related to centralized social networks by allowing users set up their own server (or \"pod\") to host content; pods can then interact to share status updates, photographs, and other social data."
+description="diaspora* is based on three key philosophies: Decentralization, Freedom, and Privacy. It is intended to address privacy concerns related to centralized social networks by allowing users set up their own server (or \"pod\") to host content. Pods can then interact to share status updates, photographs, and other social data."
 website="https://diasporafoundation.org/"
 forum="https://forum.privacytools.io/t/discussion-diaspora/290"
 github="https://github.com/diaspora/diaspora"
@ -36,7 +36,7 @@ web="https://diasporafoundation.org/"
 {% include cardv2.html
 title="Friendica - Facebook Alternative"
-image="/assets/img/tools/Friendica.png"
+image="/assets/img/svg/3rd-party/friendica.svg"
 description="Friendica has an emphasis on extensive privacy settings and easy server installation. It aims to federate with as many other social networks as possible. Currently, Friendica users can integrate contacts from Facebook, Twitter, Diaspora, GNU social, App.net, Pump.io and other services in their social streams."
 website="https://friendi.ca/"
 forum="https://forum.privacytools.io/t/discussion-friendica/291"
@ -50,8 +50,8 @@ web="https://friendi.ca/"
 {% include cardv2.html
 title="PixelFed - Instagram Alternative"
-image="/assets/img/provider/pixelfed.png"
+image="/assets/img/svg/3rd-party/pixelfed.svg"
-description='PixelFed is a free and ethical photo sharing platform, powered by ActivityPub federation. Pixelfed is an open-source, federated platform. You can run your own instance or <a href="https://fediverse.party/en/pixelfed/">join one.</a>'
+description='PixelFed is a free and ethical photo sharing platform, powered by ActivityPub federation. Pixelfed is an open-source, federated platform. You can run your own instance or <a href="https://fediverse.party/en/pixelfed/">join an existing one.</a>'
 website="https://pixelfed.org/"
 forum="https://forum.privacytools.io/t/discussion-pixelfed/293"
 github="https://github.com/pixelfed"
@ -59,13 +59,20 @@ web="https://pixelfed.org/"
 %}
 {% include cardv2.html
-title="GNU social - Twitter Alternative"
+title="Pleroma - Twitter Alternative"
-image="/assets/img/provider/gnu-social.png"
+image="/assets/img/svg/3rd-party/pleroma.svg"
-description="GNU social is social-communication software for both public and private communications. It is widely supported and has a large userbase. It is already used by the Free Software Foundation."
+description="Pleroma is a free, federated social networking server built on open protocols. It is compatible with Mastodon and many other ActivityPub and OStatus implementations."
-website="https://gnu.io/social/"
+website="https://pleroma.social"
-forum="https://forum.privacytools.io/t/discussion-gnu-social/292"
+forum="https://forum.privacytools.io/t/discussion-pleroma/2307"
-gitlab="https://git.gnu.io/gnu/gnu-social/"
+gitlab="https://git.pleroma.social/pleroma/pleroma/"
-web="https://gnu.io/social/"
+windows="https://docs-develop.pleroma.social/backend/clients/#desktop"
 mac="https://docs-develop.pleroma.social/backend/clients/#desktop"
 linux="https://docs-develop.pleroma.social/backend/clients/#desktop"
 android="https://docs-develop.pleroma.social/backend/clients/#handheld"
 fdroid="https://docs-develop.pleroma.social/backend/clients/#handheld"
 googleplay="https://docs-develop.pleroma.social/backend/clients/#handheld"
 ios="https://docs-develop.pleroma.social/backend/clients/#handheld"
 web="https://docs-develop.pleroma.social/backend/clients/#alternative-web-interfaces"
 %}
 <h3>Worth Mentioning</h3>
@ -73,18 +80,3 @@ web="https://gnu.io/social/"
  <li><a href="https://www.minds.com/">Minds</a> - An <a href="https://gitlab.com/minds">open-source</a> and distributed social networking service, integrating the blockchain to reward the community.</li>
  <li><a href="https://movim.eu/">Movim</a> - A federated social platform that relies on the XMPP standard and therefore allows you to exchange with many other clients on all devices.</li>
 </ul>
 <h3>Related Information</h3>
 <ul>
  <li><a href="https://addons.mozilla.org/firefox/addon/mastodon-simplified-federation/">Mastodon: Simplified Federation</a> - Firefox Extension to improve usability for remote Mastodon instances.</li>
  <li><a href="https://justdeleteme.xyz/">JustDeleteMe</a> - A directory of direct links to delete your account from web services.</li>
  <li><a href="https://forget.codl.fr/">Forget</a> - A service that automatically deletes your old posts on Twitter and Mastodon that everyone has forgotten about.</li>
 </ul>
 <h3>Facebook Related</h3>
 <ul>
  <li><a href="https://www.facebook.com/help/delete_account">Delete your Facebook account</a> - Direct link to delete your Facebook account without being able to reactivate it again.</li>
  <li><a href="https://deletefacebook.com/">How To Permanently Delete A Facebook Account</a> - This guide will take you through a smooth and successful Facebook account deletion.</li>
  <li><a href="https://addons.mozilla.org/firefox/addon/facebook-container/">Facebook Container by Mozilla</a> - Prevent Facebook from tracking you around the web.</li>
  <li><a href="https://www.stopusingfacebook.co/">Stop using Facebook</a> - A curated list of reasons to stop using Facebook and how to do it.</li>
 </ul>
--- a/_includes/sections/social-news-aggregator.html
+++ b/_includes/sections/social-news-aggregator.html
@ -6,7 +6,7 @@
 {% include cardv2.html
 title="Aether"
-image="/assets/img/tools/aether.png"
+image="/assets/img/svg/3rd-party/aether.svg"
 description='<a href="https://github.com/nehbit/aether/blob/master/LICENSE.md">Aether is a free and open-source</a> decentralized social news aggregator with a built-in voting system.'
 website="https://getaether.net/"
 forum="https://forum.privacytools.io/t/discussion-aether/1256"
@ -18,7 +18,7 @@ linux="https://getaether.net/download/"
 {% include cardv2.html
 title="Tildes"
-image="/assets/img/tools/tildes.png"
+image="/assets/img/svg/3rd-party/tildes.svg"
 description='Tildes is a web-based self-hostable online bulletin board. It is licensed under <a href="https://gitlab.com/tildes/tildes/blob/master/LICENSE">GPL 3.0</a>.'
 website="https://tildes.net"
 forum="https://forum.privacytools.io/t/discussion-tildes/1257"
@ -28,7 +28,7 @@ web="https://tildes.net"
 {% include cardv2.html
 title="Raddle"
-image="/assets/img/tools/raddle.png"
+image="/assets/img/png/3rd-party/raddle.png"
 description="Raddle is a public Postmill instance focused on privacy and anti-censorship."
 website="https://raddle.me"
 forum="https://forum.privacytools.io/t/discussion-raddle/1258"
--- a/_includes/sections/teamchat.html
+++ b/_includes/sections/teamchat.html
@ -6,10 +6,11 @@
 {%
  include cardv2.html
-  title="Riot.im (Matrix)"
+  title="Matrix"
-  image="/assets/img/tools/Riot.png"
+  image="/assets/img/svg/3rd-party/matrix.svg"
-  description="Riot.im is a federated free-software messaging application based on the <a href\"https://matrix.org/\">Matrix</a> protocol, a recent open protocol for real-time communication offering optional E2E encryption. It also has bridging functionality, allowing you to connect to other chat protocols such as IRC or Telegram."
+  image-dark="/assets/img/svg/3rd-party/matrix-dark.svg"
-  labels="warning:<a href=//github.com/vector-im/riot-web/issues/6779>Experimental E2EE</a>:The end-to-end encryption is currently in beta, and the mobile client states 'End-to-end encryption is in beta and may not be reliable. You should not yet trust it to secure data.'"
+  description='<a href="https://matrix.org/docs/guides/introduction">Matrix</a> is an open-source project that publishes the <a href="https://matrix.org/docs/spec">Matrix open standard</a> for secure, decentralized, real-time communication.<br />
  <a href="https://en.wikipedia.org/wiki/Riot.im">Riot.im</a> is the popular reference client produced by the Matrix.org team. It offers optional E2EE for 1:1 and group conversations that <strong>must</strong> be turned on by the user. (This can be done by clicking on the toggle switch which is accessed by clicking the room name or user name of the chat → Security &amp; Privacy → Encrypted). In the future it will be <a href="https://github.com/vector-im/riot-web/issues/6779">on by default.</a>'
  website="https://about.riot.im/"
  forum="https://forum.privacytools.io/t/discussion-riot-im/665/"
  github="https://github.com/vector-im/riot-web/"
@ -18,14 +19,14 @@
  linux="https://riot.im/download/desktop/"
  fdroid="https://f-droid.org/repository/browse/?fdid=im.vector.alpha"
  googleplay="https://play.google.com/store/apps/details?id=im.vector.app"
-  ios="https://itunes.apple.com/us/app/vector.im/id1083446067"
+  ios="https://itunes.apple.com/app/vector.im/id1083446067"
  web="https://riot.im/app/"
 %}
 {%
  include cardv2.html
  title="Rocket.chat"
-  image="/assets/img/tools/rocket.chat.png"
+  image="/assets/img/svg/3rd-party/rocketchat.svg"
  description="Rocket.chat is an self-hostable open source platform for team communication. It has optional federation and experimental E2EE."
  labels="warning:<a href=//rocket.chat/docs/user-guides/end-to-end-encryption/>Experimental E2EE</a>:Regarding E2EE their documentation states 'This feature is currently in alpha. It's also not yet supported on mobile'. There is no forward secrecy so compromised decryption password would leak all messages. Federation was also added afterwards, potentially causing room for mistakes."
  website="https://rocket.chat/"
@ -42,9 +43,9 @@
 {%
  include cardv2.html
  title="Keybase"
-  image="/assets/img/tools/keybase.png"
+  image="/assets/img/svg/3rd-party/keybase.svg"
-  description='Keybase provides a hosted team chat with end-to-end encryption. It has also been <a href="https://keybase.io/docs-assets/blog/NCC_Group_Keybase_KB2018_Public_Report_2019-02-27_v1.3.pdf">independently audited (PDF)</a>.'
+  description='Keybase provides a hosted team chat with E2EE. Its protocol has also been <a href="https://keybase.io/docs-assets/blog/NCC_Group_Keybase_KB2018_Public_Report_2019-02-27_v1.3.pdf">indepedently audited (PDF)</a>. Keybase can help you prove you own social media accounts through the use of cryptographic signing of "<a href="https://en.wikipedia.org/wiki/Keybase#Identity_proofs">identity proofs</a>".'
-  labels="warning:<a href=//github.com/keybase/client/issues/6374>Warning</a>:The server side of Keybase runs on proprietary code and is centralized."
+  labels="warning:<a href=github.com/keybase/client/issues/6374>Warning</a>:This software relies on a closed-source central server."
  website="https://keybase.io/"
  forum="https://forum.privacytools.io/t/discussion-keybase/1224"
  tor="http://keybase5wmilwokqirssclfnsqrjdsi7jdir5wy7y7iu3tanwmtp6oid.onion/"
@ -53,8 +54,8 @@
  mac="https://keybase.io/docs/the_app/install_macos"
  linux="https://keybase.io/docs/the_app/install_linux"
  freebsd="https://www.freshports.org/security/keybase/"
-  googleplay="https://play.google.com/store/apps/details?id=io.keybase.ossifrage&hl=en_US"
+  googleplay="https://play.google.com/store/apps/details?id=io.keybase.ossifrage"
-  ios="https://keybase.io/_/download/keybase-for-ios"
+  ios="https://apps.apple.com/app/keybase-crypto-for-everyone/id1044461770"
-  firefox="https://addons.mozilla.org/en-US/firefox/addon/keybase-for-firefox/"
+  firefox="https://addons.mozilla.org/firefox/addon/keybase-for-firefox/"
  chrome="https://chrome.google.com/webstore/detail/keybase-for-reddit/ognfafcpbkogffpmmdglhbjboeojlefj"
 %}
--- a/_includes/sections/voice-video-messenger.html
+++ b/_includes/sections/voice-video-messenger.html
@ -6,7 +6,7 @@
 {% include cardv2.html
 title="Linphone"
-image="/assets/img/tools/Linphone.png"
+image="/assets/img/svg/3rd-party/linphone.svg"
 website="https://www.linphone.org/"
 description="Linphone is an open-source SIP Phone and a free voice over IP service, available on mobile and desktop environments and on web browsers. It supports ZRTP for end-to-end encrypted voice and video communication."
 forum="https://forum.privacytools.io/t/discussion-linphone/751"
@ -21,7 +21,7 @@ ios="https://itunes.apple.com/us/app/linphone/id360065638?mt=8"
 {% include cardv2.html
 title="Mumble"
-image="/assets/img/tools/Mumble.png"
+image="/assets/img/svg/3rd-party/mumble.svg"
 website="https://mumble.info/"
 description="Mumble is an open-source, low-latency, and high quality voice chat application primarily intended for use while gaming. Note that while Mumble doesn't log messages or record by default, <a href=\"https://github.com/mumble-voip/mumble/issues/1813\">it's missing end-to-end encryption</a>, so self-hosting is recommended."
 forum="https://forum.privacytools.io/t/discussion-mumble/1289"
--- a/_includes/sections/vpn.html
+++ b/_includes/sections/vpn.html
@ -1,90 +1,111 @@
-<h1 id="vpn" class="anchor"><a href="#vpn"><i class="fas fa-link anchor-icon"></i></a> Recommended VPN Service</h1>
+<h1 id="vpn" class="anchor"><a href="#vpn"><i class="fas fa-link anchor-icon"></i></a> Recommended VPN Services</h1>
 <div class="alert alert-success" role="alert">
-  <strong>Our recommended provider is outside the US, uses encryption, accepts Bitcoin, supports OpenVPN, and has a no logging policy. <a href="/providers/vpn/#criteria">Read our full list of criteria for more information</a>.</strong>
+  <strong>Our recommended providers are outside the US, use encryption, accept Bitcoin, support OpenVPN, and have a no logging policy. <a href="/providers/vpn/#criteria">Read our full list of criteria for more information</a>.</strong>
 </div>
 <div class="container-fluid">
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
-      <img src="/assets/img/provider/Mullvad.png" height="70" width="200" class="img-fluid d-block mr-auto ml-auto align-middle" alt="Mullvad">
+      <img
        src="/assets/img/svg/3rd-party/mullvad.svg"
        data-theme-src="/assets/img/svg/3rd-party/mullvad-dark.svg"
        height="70"
        width="200"
        class="img-fluid d-block mr-auto ml-auto align-middle"
        alt="Mullvad">
    </div>
    <div class="col">
-    <h2>Mullvad <span class="badge badge-info">EUR €60/Year</span></h2>
+    <h2 id="mullvad" class="anchor">
-    <p><strong>Mullvad</strong> is a fast and inexpensive VPN with a serious focus on transparency and security. They have been in operation since <strong>2009</strong>. It is the only VPN provider that currently meets our criteria for recommendation. Mullvad is based in <span class="flag-icon flag-icon-se"></span> Sweden and does not have a free trial. Visit <a href="https://mullvad.net/">mullvad.net</a> to create an account.</p>
+      <a href="#mullvad"><i class="fas fa-link anchor-icon"></i></a> Mullvad
-    <h5><span class="badge badge-success">406+ Servers</span></h5>
+      <span class="badge badge-info">EUR €60/Year</span>
-    <p>Mullvad has 409 servers in 39 countries at the time of writing this page. Typically the more servers a provider offers, the better: With hundreds of servers in operation, you are far more likely to find a fast connection and a server geographically closest to you.</p>
+    </h2>
-    <h5><span class="badge badge-success">WireGuard Support</span></h5>
+    <p><strong><a href="https://mullvad.net/">Mullvad.net</a> </strong> is a fast and inexpensive VPN with a serious focus on transparency and security. They have been in operation since <strong>2009</strong>. Mullvad is based in <span class="flag-icon flag-icon-se"></span> Sweden and does not have a free trial.</p>
-    <p>In addition to standard OpenVPN connections, Mullvad supports WireGuard. WireGuard is an experimental protocol with theoretically better security and higher reliability, although it is not currently recommended for production use.</p>
+    <h5><span class="badge badge-success">35 Countries</span></h5>
    <p>Mullvad has <a href="https://mullvad.net/en/servers/">servers in 35 countries</a> at the time of writing this page. Picking a VPN provider with a server nearest to you will reduce latency of the network traffic you send. This is because of a shorter route (less hops) to the destination.</p>
    <p>We also think it's better for the security of the VPN provider's private keys if they use <a href="https://en.wikipedia.org/wiki/Dedicated_hosting_service">dedicated servers</a>, instead of cheaper shared solutions (with other customers) such as <a href="https://en.wikipedia.org/wiki/Virtual_private_server">virtual private servers</a>.</p>
    <h5><span class="badge badge-success">Independently Audited</span></h5>
    <p>Mullvad's VPN clients have been audited by Cure53 and Assured AB in a pentest report <a href="https://cure53.de/pentest-report_mullvad_v2.pdf">published at cure53.de</a>. The security researchers concluded:</p>
    <blockquote class="blockquote">
      <p class="mb-0">...Cure53 and Assured AB are happy with the results of the audit and the software leaves an overall positive impression. With security dedication of the in-house team at the Mullvad VPN compound, the testers have no doubts about the project being on the right track from a security standpoint.</p>
    </blockquote>
    <h5><span class="badge badge-success">Open Source Clients</span></h5>
    <p>Mullvad provides the source code for their desktop and mobile clients in their <a href="https://github.com/mullvad/mullvadvpn-app">GitHub organization</a>.</p>
    <h5><span class="badge badge-success">Accepts Bitcoin</span></h5>
    <p>Mullvad in addition to accepting credit/debit cards and PayPal, accepts <strong>Bitcoin</strong>, <strong>Bitcoin Cash</strong>, and <strong>cash/local currency</strong> as anonymous forms of payment. They also accept Swish and bank wire transfers.</p>
    <h5><span class="badge badge-success">WireGuard Support</span></h5>
    <p>In addition to standard OpenVPN connections, Mullvad supports WireGuard. WireGuard is an experimental protocol with theoretically better security and higher reliability, although it is not currently recommended for production use.</p>
    <h5><span class="badge badge-success">IPv6 Support</span></h5>
    <p>Mullvad supports the future of networking <a href="https://en.wikipedia.org/wiki/IPv6">IPv6</a>. Their network allows users to <a href="https://mullvad.net/en/blog/2014/9/15/ipv6-support/">access services hosted on IPv6</a> as opposed to other providers who block IPv6 connections.</p>
    <h5><span class="badge badge-success">Remote Port Forwarding</span></h5>
    <p>Remote <a href="https://en.wikipedia.org/wiki/Port_forwarding">port forwarding</a> is allowed on Mullvad, see <a href="https://mullvad.net/help/port-forwarding-and-mullvad/">Port forwarding with Mullvad VPN</a>.</p>
    <h5><span class="badge badge-warning">No Mobile Clients</span></h5>
    <p>While iOS and Android clients are reportedly in the works, mobile users will need to use a traditional OpenVPN client and configuration files, which are a bit more difficult to configure.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>The Mullvad VPN clients have a built-in killswitch to block internet connections outside of the VPN. They also are able to automatically start on boot. The Mullvad website is also accessible via Tor at <a href="http://xcln5hkbriyklr6n.onion/">xcln5hkbriyklr6n.onion</a>.</p>
    </div>
  </div>
-
+  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img src="/assets/img/svg/3rd-party/protonvpn.svg" height="70" width="200" class="img-fluid d-block mr-auto ml-auto align-middle" alt="ProtonVPN">
    </div>
    <div class="col">
    <h2 id="protonvpn" class="anchor">
      <a href="#protonvpn"><i class="fas fa-link anchor-icon"></i></a> ProtonVPN
      <span class="badge badge-info">Free</span>
      <span class="badge badge-info">USD $96/year</span>
    </h2>
    <p><strong><a href="https://protonvpn.com/">ProtonVPN.com</a></strong> is a strong contender in the VPN space, and they have been in operation since <strong>2016</strong>. ProtonVPN is based in <span class="flag-icon flag-icon-ch"></span> Switzerland and offers a limited free pricing tier, as well as premium options.</p>
    <h5><span class="badge badge-success">44 Countries</span></h5>
    <p>ProtonVPN has <a href="https://protonvpn.com/vpn-servers">servers in 44 countries</a> at the time of writing this page. Picking a VPN provider with a server nearest to you will reduce latency of the network traffic you send. This is because of a shorter route (less hops) to the destination.</p>
    <p>We also think it's better for the security of the VPN provider's private keys if they use <a href="https://en.wikipedia.org/wiki/Dedicated_hosting_service">dedicated servers</a>, instead of cheaper shared solutions (with other customers) such as <a href="https://en.wikipedia.org/wiki/Virtual_private_server">virtual private servers</a>.</p>
    <h5><span class="badge badge-success">Independently Audited</span></h5>
    <p>As of January 2020 ProtonVPN has undergone an independent audit by SEC Consult. SEC Consult found some medium and low risk vulnerabilities in ProtonVPN's Windows, Android, and iOS applications, all of which were "properly fixed" by ProtonVPN before the reports were published. None of the issues identified would have provided an attacker remote access to a user's device or traffic. You can view individual reports for each platform at <a href="https://protonvpn.com/blog/open-source/">protonvpn.com</a>.
    <h5><span class="badge badge-success">Open Source Clients</span></h5>
    <p>ProtonVPN provides the source code for their desktop and mobile clients in their <a href="https://github.com/ProtonVPN">GitHub organization</a>.</p>
    <h5><span class="badge badge-success">Accepts Bitcoin</span></h5>
    <p>ProtonVPN does technically accept Bitcoin payments; however, you either need to have an existing account, or contact their support team in advance to register with Bitcoin.</p>
    <h5><span class="badge badge-success">Mobile Clients</span></h5>
    <p>In addition to providing standard OpenVPN configuration files, ProtonVPN has mobile clients for iOS or Android allowing for easy connections to their servers.</p>
    <h5><span class="badge badge-warning">No Port Forwarding</span></h5>
    <p>ProtonVPN does not currently support remote port forwarding, which may impact some applications. Especially Peer-to-Peer applications like Torrent clients.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>The ProtonVPN clients have a built-in killswitch to block internet connections outside of the VPN. They also are able to automatically start on boot. ProtonVPN also offers "Tor" servers allowing you to easily connect to onion sites, but we still strongly recommend using <a href="https://www.torproject.org/">the official Tor Browser</a> for this purpose.</p>
    </div>
  </div>
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img src="/assets/img/svg/3rd-party/ivpn.svg" height="70" width="200" class="img-fluid d-block mr-auto ml-auto align-middle" alt="IVPN">
    </div>
    <div class="col">
    <h2 id="ivpn" class="anchor">
      <a href="#ivpn"><i class="fas fa-link anchor-icon"></i></a> IVPN
      <span class="badge badge-info">Standard USD $60/Year</span>
      <span class="badge badge-secondary">Pro USD $100/Year</span>
    </h2>
    <p><strong><a href="https://www.ivpn.net">IVPN.net</a></strong> is another premium VPN provider, and they have been in operation since <strong>2009</strong>. IVPN is based in <span class="flag-icon flag-icon-gi"></span> Gibraltar and offers a 3 day free trial.</p>
    <h5><span class="badge badge-success">32 Countries</span></h5>
    <p>IVPN has <a href="https://www.ivpn.net/server-locations">servers in 32 countries</a> at the time of writing this page. Picking a VPN provider with a server nearest to you will reduce latency of the network traffic you send. This is because of a shorter route (less hops) to the destination.</p>
    <p>We also think it's better for the security of the VPN provider's private keys if they use <a href="https://en.wikipedia.org/wiki/Dedicated_hosting_service">dedicated servers</a>, instead of cheaper shared solutions (with other customers) such as <a href="https://en.wikipedia.org/wiki/Virtual_private_server">virtual private servers</a>.</p>
    <h5><span class="badge badge-success">Independently Audited</span></h5>
    <p>IVPN has undergone a <a href="https://cure53.de/audit-report_ivpn.pdf">no-logging audit from Cure53</a> which concluded in agreement with IVPN's no-logging claim. IVPN has also completed a <a href="https://cure53.de/summary-report_ivpn_2019.pdf">comprehensive pentest report Cure53</a> in January 2020. IVPN has also said they plan to have <a href="https://www.ivpn.net/blog/independent-security-audit-concluded">annual reports</a> in the future.</p>
    <h5><span class="badge badge-success">Open Source Clients</span></h5>
    <p>As of Feburary 2020 <a href="https://www.ivpn.net/blog/ivpn-applications-are-now-open-source">IVPN applications are now open source</a>. Source code can be obtained from their <a href="https://github.com/ivpn">GitHub organization</a>.</p>
    <h5><span class="badge badge-success">Accepts Bitcoin</span></h5>
    <p>In addition to accepting credit/debit cards and PayPal, IVPN accepts <strong>Bitcoin</strong> and <strong>cash/local currency</strong> (on annual plans) as anonymous forms of payment.</p>
    <h5><span class="badge badge-success">WireGuard Support</span></h5>
    <p>In addition to standard OpenVPN connections, IVPN supports WireGuard. WireGuard is an experimental protocol with theoretically better security and higher reliability, although it is not currently recommended for production use.</p>
    <h5><span class="badge badge-success">Remote Port Forwarding</span></h5>
    <p>Remote <a href="https://en.wikipedia.org/wiki/Port_forwarding">port forwarding</a> is possible with a Pro plan. Port forwarding <a href="https://www.ivpn.net/knowledgebase/81/How-do-I-activate-port-forwarding.html">can be activated</a> via the client area. Port forwarding is only available on IVPN when <a href="https://www.ivpn.net/knowledgebase/116/Port-forwarding-is-not-working-why.html">using OpenVPN and is disabled on US servers</a>.</p>
    <h5><span class="badge badge-success">Mobile Clients</span></h5>
    <p>In addition to providing standard OpenVPN configuration files, IVPN has mobile clients for iOS or Android allowing for easy connections to their servers.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>The IVPN clients have a built-in killswitch to block internet connections outside of the VPN. They also are able to automatically start on boot. IVPN also provides "<a href="https://www.ivpn.net/antitracker">AntiTracker</a>" functionality, which blocks advertising networks and trackers from the network level.</p>
    </div>
  </div>
 </div>
 <div class="alert alert-warning" role="alert">
  <strong>Note: Using a VPN provider will not make you anonymous, but it will give you better privacy in certain situations. A VPN is not a tool for illegal activities. Don't rely on a "no log" policy.</strong>
 </div>
 <h1 id="vpn" class="anchor"><a href="#worth-mentioning"><i class="fas fa-link anchor-icon"></i></a> Other Providers Worth Mentioning</h1>
 <div class="container-fluid">
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img src="/assets/img/provider/ProtonVPN.png" height="70" width="200" class="img-fluid d-block mr-auto ml-auto align-middle" alt="ProtonVPN">
    </div>
    <div class="col">
    <h2>ProtonVPN <span class="badge badge-info">Free</span> <span class="badge badge-info">USD $96/year</span></h2>
    <p><strong>ProtonVPN</strong> is a strong contender in the VPN space, and they have been in operation since <strong>2016</strong>. ProtonVPN is based in <span class="flag-icon flag-icon-ch"></span> Switzerland and offers a limited free pricing tier, as well as premium options. Unfortunately due to its lack of an independent security audit it does not meet the complete criteria for recommendation, see our notes below.</p>
    <h5><span class="badge badge-danger">Not Audited</span></h5>
    <p>ProtonVPN has not undergone a security audit by an independent third party, and therefore cannot be strongly recommended at this time. We have still chosen to list it on this page with the assumption that an audit will be published soon:</p>
    <blockquote class="blockquote">
      <p class="mb-0">We are currently undergoing a complete security audit of our VPN applications by a reputable Swiss security company. The results of the audit will be summarized in a public report for cases like this.</p>
      <footer class="blockquote-footer">Marc Loebekken, ProtonVPN AG Legal counsel</footer>
    </blockquote>
    <p>We will reevaluate this listing at the end of 2019 or when the aforementioned report has been published, whichever is sooner.
    <h5><span class="badge badge-success">526+ Servers</span></h5>
    <p>ProtonVPN has 526 servers in 42 countries at the time of writing this page. Typically the more servers a provider offers, the better: With hundreds of servers in operation, you are far more likely to find a fast connection and a server geographically closest to you.</p>
    <h5><span class="badge badge-success">Accepts Bitcoin</span></h5>
    <p>ProtonVPN does technically accept Bitcoin payments; however, you either need to have an existing account, or contact their support team in advance to register with Bitcoin.</p>
    <h5><span class="badge badge-success">Mobile Clients</span></h5>
    <p>In addition to providing standard OpenVPN configuration files, ProtonVPN has mobile clients for iOS or Android allowing for easy connections to their servers.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>The ProtonVPN clients have a built-in killswitch to block internet connections outside of the VPN. They also are able to automatically start on boot. ProtonVPN also offers "Tor" servers allowing you to easily connect to onion sites, but we still strongly recommend using the official Tor Browser for this purpose.</p>
    </div>
  </div>
  <div class="row mb-2">
    <div class="col-lg-3 col-sm-12 pt-lg-5">
      <img src="/assets/img/provider/IVPN.png" height="70" width="200" class="img-fluid d-block mr-auto ml-auto align-middle" alt="IVPN">
    </div>
    <div class="col">
    <h2>IVPN <span class="badge badge-info">USD $100/Year</span></h2>
    <p><strong>IVPN</strong> is another strong premium VPN provider, and they have been in operation since <strong>2009</strong>. IVPN is based in <span class="flag-icon flag-icon-gi"></span> Gibraltar and offers a 3 day free trial. Unfortunately, due to its lack of an independent security audit, it does not meet the complete criteria for recommendation, see our notes below.</p>
    <h5><span class="badge badge-danger">No Security Audit</span></h5>
    <p>IVPN has undergone a <a href="https://cure53.de/audit-report_ivpn.pdf">no-logging audit from Cure53</a> which concluded in agreement with IVPN's no-logging claim. However, IVPN has not undergone a more comprehensive security audit by an independent third party, and therefore cannot be strongly recommended at this time. We have still chosen to list it on this page with the assumption that an audit will be published soon: The IVPN team <a href="https://twitter.com/yaelwrites/status/1161796418220089344">reportedly plans to begin the process in September</a>.</p>
    <p>We will reevaluate this listing at the end of 2019 or when the aforementioned report has been published, whichever is sooner.
    <h5><span class="badge badge-success">77+ Servers</span></h5>
    <p>IVPN has 77 servers in 31 countries at the time of writing this page. Typically the more servers a provider offers, the better. IVPN has a decent (but not exceptional) server count that will most likely provide adequate coverage to most users.</p>
    <h5><span class="badge badge-success">Accepts Bitcoin</span></h5>
    <p>In addition to accepting credit/debit cards and PayPal, IVPN accepts <strong>Bitcoin</strong> and <strong>cash/local currency</strong> (on annual plans) as anonymous forms of payment.</p>
    <h5><span class="badge badge-success">Mobile Clients</span></h5>
    <p>In addition to providing standard OpenVPN configuration files, IVPN has mobile clients for iOS or Android allowing for easy connections to their servers.</p>
    <h5><span class="badge badge-info">Extra Functionality</span></h5>
    <p>The IVPN clients have a built-in killswitch to block internet connections outside of the VPN. They also are able to automatically start on boot. IVPN also provides "AntiTracker" functionality, which blocks advertising networks and trackers from the network level.</p>
    </div>
  </div>
 </div>
--- a/_includes/sections/warrant-canary.html
+++ b/_includes/sections/warrant-canary.html
@ -1,6 +1,6 @@
 <h1 id="wc" class="anchor"><a href="#wc"><i class="fas fa-link anchor-icon"></i></a> What is a warrant canary?</h1>
-<img src="/assets/img/layout/warrant-canary.jpg" width="450" height="236" class="img-fluid float-right ml-3" alt="Warrant Canary Example">
+<img src="/assets/img/svg/layout/warrant_canary_example.svg" width="450px" class="img-fluid float-right ml-3" alt="Warrant Canary Example">
 <p>A warrant canary is a posted document stating that an organization has not received any secret subpoenas during a specific period of time. If this document fails to be updated during the specified time then the user is to assume that the service has received such a subpoena and should stop using the service.</p>
--- a/_includes/sections/windows10.html
+++ b/_includes/sections/windows10.html
@ -4,7 +4,7 @@
  <strong>Microsoft introduced a lot of new features in Windows 10 such as Cortana. However, most of them are violating your privacy.</strong>
 </div>
-<img src="/assets/img/layout/Windows-10-Privacy.png" width="367" height="369" class="img-fluid float-right ml-3" alt="Windows 10 Privacy">
+<img src="/assets/img/svg/layout/windows_privacy.svg" width="367" height="369" class="img-fluid float-right ml-3" alt="Windows 10 Privacy">
 <ol>
  <li><strong>Data syncing is by default enabled.</strong>
--- a/_includes/sponsors/gold.html
+++ b/_includes/sponsors/gold.html
@ -0,0 +1,10 @@
 <div class="d-flex flex-wrap justify-content-center">
  <a class="m-3" href="https://safing.io" target="_blank" rel="noreferrer">
    <img
      src="/assets/img/svg/3rd-party/sponsors/safing.svg"
      data-theme-src="/assets/img/svg/3rd-party/sponsors/safing-dark.svg"
      width="210rem"
      title="Safing Privacy Network - Launching on Kickstarter January 2nd, 2020"
      alt="Safing Privacy Network - Safing.io Logo" />
  </a>
 </div>
--- a/_includes/team.html
+++ b/_includes/team.html
@ -1,6 +1,6 @@
 <div class="col-12 col-sm-6 col-lg-4 col-xl-3">
  <div class="card mb-3 mx-4 mx-sm-0" itemscope itemtype="http://schema.org/Person">
-    <img src="{{ site.baseurl }}/assets/img/team/{{ include.avatar }}" class="card-img-top" itemprop="image" alt="{% if include.nick %}{{ include.nick }}{% else %}{{ include.name }}{% endif %}">
+    <img src="{{ site.baseurl }}/assets/img/png/team/{{ include.avatar }}" class="card-img-top" itemprop="image" alt="{% if include.nick %}{{ include.nick }}{% else %}{{ include.name }}{% endif %}">
    <div class="card-body">
      <h5 class="card-title mt-0" itemprop="name">
@ -16,7 +16,7 @@
      <p class="card-text" {% if include.bio %}itemprop="description"{% endif %}>{{ include.bio | default: "<i>Hmm, this user hasn't written a bio quite yet :(</i>" }}</p>
      <div class="mx-n2">
        {% if include.email %}
-        <a href="mailto:{{ include.email }}" aria-label="Email" class="mx-2 text-decoration-none" itemprop="email">
+        <a href="{{ include.email }}" aria-label="Email" class="mx-2 text-decoration-none" itemprop="email">
          <i class="fas fa-envelope" aria-hidden="true" title="{{ include.email }}"></i>
        </a>
        {% endif %}
--- a/_sass/flag-icon.scss
+++ b/_sass/flag-icon.scss
--- a/assets/css/style.scss
+++ b/assets/css/style.scss
@ -186,13 +186,6 @@ h2, h3:not(.h5), h4, h5 {
  white-space: nowrap;
 }
 footer {
  img,
  i {
    margin-right: 1rem;
  }
 }
 .hover-text-decoration-none:hover {
  text-decoration: none;
  -webkit-text-decoration-skip: object;
@ -204,12 +197,19 @@ footer {
 .btn-icon {
  display: flex;
  justify-content: center;
  font-size: 1.5rem;
  padding: 0.5rem;
  border-radius: 0.25rem;
  display: flex;
  height: 2.4rem;
-  color: #ddd;
+  width: 2.4rem;
  color: #eee;
 }
 .btn-icon:hover {
  text-decoration: none;
  color: #fff;
 }
 .btn-tor {
--- a/assets/img/addons/Orbot.png
+++ b/assets/img/addons/Orbot.png
--- a/assets/img/addons/cookie-autodelete.png
+++ b/assets/img/addons/cookie-autodelete.png
--- a/assets/img/addons/decentraleyes.png
+++ b/assets/img/addons/decentraleyes.png
--- a/assets/img/addons/https-everywhere.png
+++ b/assets/img/addons/https-everywhere.png
--- a/assets/img/addons/netguard.png
+++ b/assets/img/addons/netguard.png
--- a/assets/img/addons/noscript.png
+++ b/assets/img/addons/noscript.png
--- a/assets/img/addons/privacy-badger.png
+++ b/assets/img/addons/privacy-badger.png
--- a/assets/img/addons/snowflake.png
+++ b/assets/img/addons/snowflake.png
--- a/assets/img/addons/tosdr.png
+++ b/assets/img/addons/tosdr.png
--- a/assets/img/addons/ublock-origin.png
+++ b/assets/img/addons/ublock-origin.png
--- a/assets/img/addons/umatrix.png
+++ b/assets/img/addons/umatrix.png
--- a/assets/img/favicons/android-chrome-144x144.png
+++ b/assets/img/favicons/android-chrome-144x144.png
--- a/assets/img/favicons/android-chrome-192x192.png
+++ b/assets/img/favicons/android-chrome-192x192.png
--- a/assets/img/favicons/android-chrome-36x36.png
+++ b/assets/img/favicons/android-chrome-36x36.png
--- a/assets/img/favicons/android-chrome-48x48.png
+++ b/assets/img/favicons/android-chrome-48x48.png
--- a/assets/img/favicons/android-chrome-72x72.png
+++ b/assets/img/favicons/android-chrome-72x72.png
--- a/assets/img/favicons/android-chrome-96x96.png
+++ b/assets/img/favicons/android-chrome-96x96.png
--- a/assets/img/favicons/apple-touch-icon-114x114.png
+++ b/assets/img/favicons/apple-touch-icon-114x114.png
--- a/assets/img/favicons/apple-touch-icon-120x120.png
+++ b/assets/img/favicons/apple-touch-icon-120x120.png
--- a/assets/img/favicons/apple-touch-icon-144x144.png
+++ b/assets/img/favicons/apple-touch-icon-144x144.png
--- a/assets/img/favicons/apple-touch-icon-152x152.png
+++ b/assets/img/favicons/apple-touch-icon-152x152.png
--- a/assets/img/favicons/apple-touch-icon-180x180.png
+++ b/assets/img/favicons/apple-touch-icon-180x180.png
--- a/assets/img/favicons/apple-touch-icon-57x57.png
+++ b/assets/img/favicons/apple-touch-icon-57x57.png
--- a/assets/img/favicons/apple-touch-icon-60x60.png
+++ b/assets/img/favicons/apple-touch-icon-60x60.png
--- a/assets/img/favicons/apple-touch-icon-72x72.png
+++ b/assets/img/favicons/apple-touch-icon-72x72.png
--- a/assets/img/favicons/apple-touch-icon-76x76.png
+++ b/assets/img/favicons/apple-touch-icon-76x76.png
--- a/assets/img/favicons/apple-touch-icon-precomposed.png
+++ b/assets/img/favicons/apple-touch-icon-precomposed.png
--- a/assets/img/favicons/apple-touch-icon.png
+++ b/assets/img/favicons/apple-touch-icon.png
--- a/assets/img/favicons/browserconfig.xml
+++ b/assets/img/favicons/browserconfig.xml
@ -1,12 +0,0 @@
 <?xml version="1.0" encoding="utf-8"?>
 <browserconfig>
  <msapplication>
    <tile>
      <square70x70logo src="https://www.privacytools.io/img/favicons/mstile-70x70.png?v=2"/>
      <square150x150logo src="https://www.privacytools.io/img/favicons/mstile-150x150.png?v=2"/>
      <square310x310logo src="https://www.privacytools.io/img/favicons/mstile-310x310.png?v=2"/>
      <wide310x150logo src="https://www.privacytools.io/img/favicons/mstile-310x150.png?v=2"/>
      <TileColor>#da532c</TileColor>
    </tile>
  </msapplication>
 </browserconfig>
--- a/assets/img/favicons/favicon-16x16.png
+++ b/assets/img/favicons/favicon-16x16.png
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Daniel Gray	d9dc08fcc2	Initial addition of Mailfence	2020-03-12 20:52:07 +10:30
nitrohorse	06758605f3	Update nitrohorse's key (#1778 )	2020-03-11 15:50:51 +01:00
zenithium	c5a303ca56	Add new browser tweaks and remove deprecated info (#1772 )	2020-03-11 12:19:19 +00:00
zenithium	edd177f9a8	Solve issues related to WebRTC (#1773 ) * Add explanation for disabling WebRTC in Safari * Add brief explanation of what disabling WebRTC does * Update _includes/sections/browser-webrtc.html Co-Authored-By: Jonah Aragon <jonah@triplebit.net> * Removed second test button * Add note about WebRTC with Snowflake * Grammar is hard Co-Authored-By: Jonah Aragon <jonah@triplebit.net> * Corrected iOS to macOS iOS is for phones Co-authored-by: Jonah Aragon <jonah@triplebit.net>	2020-03-10 17:15:14 +01:00
zenithium	76db0cf742	Add link to CoC and correct Mastodon link (#1776 )	2020-03-10 16:30:50 +01:00
zenithium	79bc5e9a05	Fix PR template CoC link (#1777 )	2020-03-10 17:26:50 +02:00
Daniel Nathan Gray	0b5b9b53ad	IVPN supports Wireguard, anchor links (#1767 )	2020-03-06 17:26:10 +00:00
Daniel Nathan Gray	8929918d5f	A New Path for DOJ to Finally Break Encryption (#1768 )	2020-03-06 17:25:30 +00:00
Daniel Nathan Gray	0cde9d204a	Update Posteo payment anonymization (#1762 )	2020-03-06 15:47:41 +01:00
zenithium	cb130b6f6f	Grammar fix (#1766 ) * Grammar * Grammar fix	2020-03-06 15:32:45 +01:00
Jonah Aragon	f65af998cc	Set security headers Honestly I can't remember why we have Access-Control-Allow-Origin set, so hopefully removing it does not break anything.	2020-03-04 16:32:03 -06:00
Daniel Nathan Gray	4c621018c6	Remove emphasis, correct disroot badge (#1754 )	2020-03-03 15:03:25 -08:00
PoorPockets McNewHold	055457fe9c	Removal of Jive Search due to #1739 (#1756 ) Approved issue by @blacklight447-ptio https://github.com/privacytoolsIO/privacytools.io/issues/1739#issuecomment-593086290	2020-03-03 12:26:28 -08:00
Daniel Nathan Gray	952197e8da	Minor email listing corrections (#1751 )	2020-03-02 22:04:29 -06:00
Jonah Aragon	e29266e53c	Add #dev:privacytools.io to README	2020-03-02 13:36:58 -06:00
nitrohorse	cf8ab73514	Remove Dnswarden - project unmaintained (#1746 ) approved, thanks for the PR nitro.	2020-03-02 11:58:46 +01:00
Daniel Nathan Gray	63ae3b3fb8	Use full name for processor Sofortüberweisung (#1747 )	2020-03-02 03:10:38 +00:00
Daniel Nathan Gray	e047c72a0f	Catchall only with Professional/Visionary accounts (#1748 )	2020-03-02 03:05:27 +00:00
Daniel Nathan Gray	79adb49386	Add missing space, use e.g. (#1744 )	2020-03-01 14:51:44 +00:00
Daniel Nathan Gray	4efdd0e27e	Add optimized version of Mailcow logo (#1743 )	2020-03-01 13:15:49 +00:00
Daniel Nathan Gray	7244734051	New email section (#1672 )	2020-03-01 12:06:06 +00:00
nitrohorse	065e454641	Update public Searx instances link (#1712 )	2020-02-24 07:58:43 -08:00
nitrohorse	64f79a4da5	Update README build instructions (#1681 ) * Update README build instructions * Update Ruby download link * Specify Bundler version * Add --incremental to bundle argument * Specify exact Bundler version * Specify bundler version in command	2020-02-24 07:43:50 -08:00
Jonah Aragon	b0917bc140	Update images section (#1730 ) Closes: #1730, Resolves: #1359 Co-Authored-By: szTheory <sztheory@users.noreply.github.com>	2020-02-21 11:34:10 -06:00
Jonah Aragon	dc76980832	Replace GPG Key	2020-02-21 10:15:52 -06:00
Jonah Aragon	c41a99e4b3	Add content correction issue template Because people can't read the website issues description.	2020-02-20 13:45:53 -06:00
Jonah Aragon	9d50db9919	Update Issue Templates (#1726 )	2020-02-20 08:30:26 -06:00
Jonah Aragon	85bf72a799	Update WKD (#1718 ) Closes: #1718	2020-02-19 12:19:33 -06:00
Hugo Costa	a84095ad6f	Remove Notable from Digital Notebooks (#1724 )	2020-02-19 12:09:33 -06:00
nitrohorse	616c30f220	index: add a Chelsea Manning quote (#1709 )	2020-02-18 18:30:35 +02:00
Stephen Karl Larroque	3f664a25e3	Updates for File Sharing (#1686 ) * Upgrade OnionShare as top 1 file sharing option, demote Firefox Send to 2nd and add warning about logging Signed-off-by: Stephen L. <lrq3000@gmail.com> * OnionShare has a receiver option, so the other party can send files too Signed-off-by: Stephen L. <lrq3000@gmail.com> * Move Firefox Send back as first entry after discussion Signed-off-by: Stephen L. <lrq3000@gmail.com> * add FramaDrop Signed-off-by: Stephen L. <lrq3000@gmail.com> * extend croc description (main advantage is that there is no dependencies, receiver can simply open the binary and type the passphrase) Signed-off-by: Stephen L. <lrq3000@gmail.com> * add warning for FramaDrop Signed-off-by: Stephen L. <lrq3000@gmail.com> * OnionShare simplify description Signed-off-by: Stephen L. <lrq3000@gmail.com> * FreedomBox XMPP server (instead of Jabber), fixes #1692 Signed-off-by: Stephen L. <lrq3000@gmail.com> * replace PTIO link with external source Signed-off-by: Stephen L. <lrq3000@gmail.com>	2020-02-14 18:03:13 -08:00
Dimitris Apostolou	8b9bbf4261	Add Zcash (#1698 )	2020-02-12 19:28:42 -08:00
Daniel Nathan Gray	6bf2f71284	Source code for IVPN now available (#1705 )	2020-02-12 07:12:56 +00:00
Stephen Karl Larroque	b2f1c6e58e	Remove star and update link for key disclosure laws for Belgium (#1700 ) Signed-off-by: Stephen L. <lrq3000@gmail.com>	2020-02-10 18:16:05 +01:00
Jonah Aragon	72e0f5d200	Clarify sponsorship policy (#1690 ) https://github.com/privacytoolsIO/privacytools.io/pull/1451#issuecomment-553954762	2020-02-04 05:52:22 +01:00
Daniel Nathan Gray	17e3898585	Normalize links for VPN section (#1688 )	2020-02-03 23:54:51 +01:00
Jonah Aragon	b0db6a2c36	Update my profile	2020-02-03 13:31:04 -06:00
blacklight447	919febd47e	Update @blacklight447-ptio's profile. (#1689 ) This adds the fact that i have become editor in chief, and adds my name. Co-authored-by: Jonah Aragon <jonah@triplebit.net>	2020-02-03 09:22:35 -06:00
Mario	892067a466	Added Pass to the PasswordManagers page (#1676 )	2020-02-02 12:41:19 +00:00
Daniel Nathan Gray	48050a1b1d	EARN IT ACT, a workaround for banning E2EE (#1677 )	2020-02-01 02:52:38 +00:00
Daniel Nathan Gray	d8988beaf6	VPN providers: Add visit link for IVPN (#1675 )	2020-01-30 19:01:23 +02:00
Daniel Nathan Gray	dd4d7dfc8c	Move IVPN into recommended section (#1667 )	2020-01-30 15:07:33 +00:00
djoate	04821d2491	No "high priority" tag for Website Issue template (#1665 )	2020-01-27 22:21:03 +02:00
Mikaela Suomalainen	b2c8ef4cdd	notebooks: link to Notable's homepage instead of GitHub (#1633 )	2020-01-27 22:20:23 +02:00
Daniel Nathan Gray	61348b24bb	ProtonVPN has now audited and open source clients. (#1658 )	2020-01-26 02:34:46 +00:00
Steven van de Graaf	49a5e56a0a	Update Edward Snowden quotes from Permanent Record (#1654 ) * Update Edward Snowden quotes from Permanent Record * Include link to Wikipedia instead of Amazon	2020-01-25 17:15:04 -08:00
Oskar Sharipov	a441fe6454	Change a warning of Firefox about:config entering (#1603 )	2020-01-24 03:21:23 +00:00
Mitch Wilkins	f72cf7eb1e	Update Tor link for OnionShare (#1621 )	2020-01-23 13:42:14 +00:00
Jay	052ce1789f	Update nav.html (#1657 ) Fixed the links to home page as requested from another user	2020-01-22 09:06:37 -08:00
Mikaela Suomalainen	27ac16bfcb	PR/ISSUE_TEMPLATEs: request reason and connection to the suggestion (#1651 )	2020-01-22 16:09:20 +02:00
Dawid Potocki	e0346ac501	Adjust sponsorship layout (#1593 ) * Fix SVG being black Adobe Illustrator SVGs have rendering problems on PTIO for unknown to me reasons. Inkscape works fine. * Rewrite with plain Flexbox Nicer end-user experience than Bootstrap grid	2020-01-05 18:35:30 -06:00
Carl	ee03264051	Change wording to be closer to Bromite's own description (#1597 ) * Change wording to be closer to Bromite's own description Mention ungoogled-chromium instead of GrapheneOS * Add an 'and'	2020-01-05 03:50:13 +00:00
User486375	b646f046da	Remove DNSCrypt from Cloudflares list of protocols (#1617 )	2019-12-24 20:59:51 +00:00
GrimPixel	35917cb7d1	Relocate warning text in Encrypted IM (#1612 )	2019-12-23 03:46:12 +00:00
Cédric Laubacher	5750035de2	VPN: Update the number of ProtonVPN servers (#1606 )	2019-12-21 14:09:31 +02:00
Daniel Nathan Gray	9f90e48a4d	Link to personal site, change email to reduce spam (#1610 )	2019-12-21 10:10:42 +00:00
Mikaela Suomalainen	53ace14630	teamchat: fix Keybase typo though -> through (#1609 ) Resolves: #1599 Thanks to @rm-rf-home for noticing	2019-12-21 12:07:43 +02:00
Dawid Potocki	d5b629c529	Redirect email to my website for my profile in /about/ to reduce spam (#1608 )	2019-12-21 04:56:51 +00:00
Oskar Sharipov	5c91bc420e	Remove `:` from 4th issue template (#1605 )	2019-12-20 19:46:25 -08:00
Dawid Potocki	6caaf9eb3e	Replace GNU Social with Pleroma (#1607 ) Closes #1281, #1282	2019-12-21 02:40:14 +00:00
Dawid Potocki	76b6bc7e88	Redo PC Live Operating Systems section (#1600 ) Remove the following operating systems, because of described issues KNOPPIX: - Site has optional HTTPS, so all links, will make you go back to HTTP - Source code distributed on ISOs, no online repositories/tarballs Puppy Linux: - Site is only over HTTP - Looks like garbage Tiny Core Linux: - Site is only over HTTP - Not really usable or useful - Looks like garbage Add Debian and Fedora to Worth Mentioning PC Live Operating Systems, since they are recommended as normal operating systems and support LiveUSB.	2019-12-20 13:51:00 +00:00
Jonah	34c099ecab	Safing Sponsorship Spot	2019-12-17 15:02:41 -06:00
Daniel Nathan Gray	a70a2ccec6	Real Time Communication: Mention XSF instead of "foundation" and reword (#1574 )	2019-12-17 09:01:16 +02:00
Daniel Nathan Gray	35dbf72258	Recommend "Tox" over "qTox" (#1569 )	2019-12-16 15:57:25 +00:00
Jonah Aragon	e31dd5b95b	Minor fixes (#1572 )	2019-12-10 00:54:21 -06:00
Alberto	2e126f48f5	Change StartMail's BTC data-value (#1581 )	2019-12-09 17:12:21 -08:00
Alberto	b3fec8034d	Fix typo in vpn.html (#1582 )	2019-12-09 18:07:05 +00:00
Daniel Nathan Gray	972fcf0da7	Remote port forwarding badge for VPN providers (#1570 )	2019-12-09 01:16:50 +00:00
Daniel Nathan Gray	70b52d84d7	Mention standard/pro account for IVPN (#1571 )	2019-12-06 03:18:05 +00:00
Dawid Potocki	d30a150016	Fix images on /providers/ and site favicons (#1568 )	2019-12-05 18:39:33 +00:00
Dawid Potocki	d12c541701	Update PrivacyTools logo (#1566 )	2019-12-04 19:46:17 +00:00
Dawid Potocki	eeaf642ee4	Fix /about/ page images (#1564 )	2019-12-04 12:18:35 -06:00
Dawid Potocki	7fb5d206f5	Switch images to svgs, where possible (#1563 ) Closes #1361, #1362	2019-12-04 15:35:20 +00:00
Daniel Nathan Gray	ac9b3fcec7	Move Bitmessage to peer-to-peer RTC. Move I2P-Bote to Self contained networks. Remove "email alternatives" page. (#1559 ) - Move I2P-Bote to Self contained networks. - Remove "email alternatives" page and nav item	2019-12-04 09:50:29 +00:00
Daniel Nathan Gray	b0944f31f2	Remove wirecutter, affiliate driven site, talks about VPNs we don't (#1560 ) recommend anyway	2019-12-02 17:14:26 +00:00
Jonah Aragon	1ab01944f0	Make breadcrumbs nicer looking (#1555 )	2019-12-02 08:13:55 +00:00
Jonah	c736a6d974	Legal Cleanup (#1558 )	2019-12-01 23:54:01 -06:00
Jonah	ff397b65d0	Update PGP Keys in WKD	2019-12-01 21:24:07 -06:00
Jonah Aragon	cace422247	Recommend Mailcow (#1545 )	2019-12-01 15:54:15 -06:00
Jonah Aragon	7791da0d19	Rearrange some sections and correct grammatical errors (#1548 ) Co-Authored-By: djoate <56777051+djoate@users.noreply.github.com>	2019-12-01 14:36:48 -06:00
dependabot[bot]	685d1077e2	Bump rubyzip from 1.2.3 to 2.0.0 (#1456 ) Bumps [rubyzip](https://github.com/rubyzip/rubyzip) from 1.2.3 to 2.0.0. - [Release notes](https://github.com/rubyzip/rubyzip/releases) - [Changelog](https://github.com/rubyzip/rubyzip/blob/master/Changelog.md) - [Commits](https://github.com/rubyzip/rubyzip/compare/v1.2.3...v2.0.0) Signed-off-by: dependabot[bot] <support@github.com>	2019-12-01 09:06:06 -08:00
Dawid Potocki	bd9f7b4a83	Change website button from image to HTML (#1554 )	2019-12-01 15:04:19 +00:00
Dawid Potocki	c4b0c4ed23	Fix collapsing navbar dropdown when clicking another element (#1552 ) JavaScript was checking if element clicked is exactly .nav-summary, which isn't a problem when just clicking text inside it, but if we try to click another element inside like <span>, it won't work, since now this span is clicked, not .nav-summary. Closes #1549	2019-12-01 10:15:15 +00:00
Jonah	905c2e5deb	Enforce Certificate Transparency	2019-12-01 00:50:04 -06:00
Daniel Nathan Gray	084b92cd4a	Remove neomailbox (#1553 )	2019-12-01 06:01:21 +00:00
djoate	d8275b4ce1	Fix typos in email.html (#1550 )	2019-11-30 22:30:52 -06:00
Daniel Nathan Gray	26b3382461	Update IVPN with current audit information (#1547 )	2019-11-30 13:08:24 -06:00
Jonah Aragon	40335b9e3d	Add security warning to email lists (#1543 )	2019-11-30 13:06:56 -06:00
moritztk	3462278383	calendar_contacts: add DecSync as worth mentioning (#1530 ) Co-Authored-By: nitrohorse <1514352+nitrohorse@users.noreply.github.com>	2019-11-30 17:45:01 +02:00
Jonah	9085b217ad	Implement WKD	2019-11-29 20:40:39 -06:00
Daniel Nathan Gray	132b662a8b	Fix VPN client open source line, and mention F-Droid (#1540 )	2019-11-29 17:12:40 +00:00
Daniel Nathan Gray	475b033480	Addition of responsible marketing section (#1538 ) Addition of responsible marketing section with mention of self-hosting analytics	2019-11-29 16:52:21 +00:00
Daniel Nathan Gray	5e38994584	IPv6 badge for Mullvad (#1537 ) IPv6 badge for Mullvad Add IPv6 to Best Case for Technology	2019-11-29 09:01:06 +00:00
Daniel Nathan Gray	45853b2770	Fix the warning label for XMPP inconistent E2EE (#1536 )	2019-11-28 17:08:21 +02:00
djoate	2d0b7b2a8b	Use e.g., instead of eg for instant messengers (#1534 )	2019-11-28 11:01:03 +00:00
Daniel Nathan Gray	6fac5720a6	Refine instant messenger section (centralized, federated, peer to peer) (#1500 )	2019-11-28 06:45:54 +00:00
Dan Arel	e4cc828a35	updated About with Dan's role (#1531 )	2019-11-26 17:04:01 -06:00
Alberto	ec14b83933	Change mailbox.org's bitcoin data-value (#1523 )	2019-11-26 12:07:27 +02:00