Purpose: Quick operational checklist for developers & admins to implement legal pages and protections.

1) Deploy HTML legal pages (place under /legal or root):
– 01_terms_of_service.html
– 02_privacy_policy.html
– 03_disclaimer.html
– 04_community_guidelines.html
– 05_dmca_policy.html
– 06_mentor_agreement.html

2) Footer & site links:
– Add persistent footer with links to above pages on both stellaredx.org and lms.stellaredx.org.
– Show “Last updated” date and document version.

3) Signup & consent:
– Require checkbox acceptance of Terms & Privacy at registration; store timestamp, version, IP, UA.
– Add age gate; block under-18 OR implement parental consent flow if you choose to accept minors.

4) Cookie/CCPA:
– Install CMP that supports GPC; block non-essential scripts until consent.

5) Payments:
– Use hosted checkout (Stripe/PayPal). Add Payment Terms link.

6) DMCA:
– Register DMCA agent at U.S. Copyright Office and replace placeholder in DMCA page.

7) Security & headers:
– Enforce HTTPS, HSTS, CSP limiting script-src, X-Frame-Options/frame-ancestors, Referrer-Policy.
– Implement rate limiting & brute-force protections.

8) Reporting & moderation:
– Hook reports to internal ticketing (safety@) and create a moderation dashboard.

9) Privacy requests:
– Implement /privacy-requests endpoint and verification workflow.

10) Accessibility:
– Post Accessibility Statement and remediate critical WCAG 2.2 AA issues.

Contacts:- Legal: legal@stellaredx.org