What is iapp, protected data pages

64ix · 64ix · commit d4eb78fc1937 · 2025-07-24T16:38:50.000+02:00
Content for the two explanation pages
diff --git a/build_iapp/iapp-generator/what-is-iapp.md b/build_iapp/iapp-generator/what-is-iapp.md
@@ -0,0 +1,175 @@
+---
+title: What Is an iApp?
+description: Privacy-first applications that run on decentralized infrastructure
+---
+
+# 🚀 What Is an iApp?
+
+**Think about code, but it runs in a privacy-safe environment.** An iApp is just your regular application code (Python script, AI model, data processor) packaged to run inside secure enclaves.
+
+## Why Would You Want This?
+
+Simple: **to process sensitive data that users won't normally share.**
+
+Imagine you want to build:
+- An AI that analyzes personal health data
+- An email tool that needs access to contact lists  
+- A financial advisor that processes bank statements
+- A content filter that reads private messages
+
+Users have this data, but they won't give it to your regular app. **With iApps, they will.**
+
+## How It Works
+
+Your code runs in a **trusted execution environment** (TEE) - think of it as a "privacy bubble" that even iExec workers can't peek into.
+
+Users run your iApp when they want to **use** their Protected Data for something. Your code gets access to their protected data, performs actions with it - all without you ever seeing the raw data.
+
+## iApp Generator: Your Development Tool
+
+Creating iApps used to be complex. **iApp Generator** simplifies this by:
+
+- **Simulating TEE environment locally** - Test your code in conditions close to real execution
+- **Handling deployment** - Package and deploy with simple commands
+- **Managing dependencies** - Docker containers, environment setup, etc.
+
+```bash
+# Create your iApp (Python or Node.js supported)
+iapp init my-sentiment-analyzer
+cd my-sentiment-analyzer
+
+# Develop and test locally (simulates TEE environment)
+iapp test
+# Deploy to the network
+iapp deploy
+```
+
+*Note: iApp Generator currently supports Python and Node.js, but iApps can be built in any language that runs in Docker.*
+
+## Real Examples
+
+**Email Notification iApp**
+```python
+# User runs: "Send updates to my contacts about my project"
+contacts = load_protecteddata()  # User's protected contact list
+for contact in contacts:
+    send_email(contact, project_update_message)
+# → Emails sent directly, you never see the addresses
+```
+
+**Oracle Update iApp**  
+```python
+# User runs: "Update price oracle with my private trading data"
+trading_data = load_protecteddata()  # User's protected trading history
+average_price = calculate_weighted_average(trading_data)
+update_oracle_contract(average_price)
+# → Oracle updated with real data, trading history stays private
+```
+
+**Automated Transactions iApp**
+```python
+# User runs: "Buy tokens when my portfolio meets certain conditions"
+portfolio = load_protecteddata()  # User's protected portfolio data
+if should_buy_tokens(portfolio):
+    execute_trade(token_address, amount)
+# → Trade executed based on private data, portfolio details stay hidden
+```
+
+## The Trust Model
+
+Here's why users will actually use your iApp with their private data:
+
+### What Users See
+- ✅ "This code runs in a secure enclave, not on the developer's servers"
+- ✅ "My data gets used privately for actions I want"  
+- ✅ "Even iExec workers can't see my data during execution"
+- ✅ "I can revoke access anytime"
+
+### What You Get  
+- ✅ Users willing to use your services with their sensitive data
+- ✅ New business models around privacy-preserving analytics
+- ✅ Competitive advantage through privacy guarantees
+
+### The Technical Reality
+
+```
+User's Private Data → Encrypted → TEE Environment → Your iApp uses it → Actions Performed
+```
+
+**Nobody sees the raw data except your code running inside the secure enclave.**
+
+Your iApp can send emails, update contracts, make transactions, trigger notifications - anything your code needs to do with the protected data. This isn't about trust - it's about **mathematical guarantees** that privacy is preserved.
+
+## What This Enables
+
+### 📧 **Private Communication**
+Users send emails, notifications, or messages using their protected contact lists without exposing recipient information.
+
+### 🔮 **Trustworthy Oracles**  
+Users contribute real data to oracles while keeping their private information confidential.
+
+### 🤖 **Personal AI Assistants**
+Users let AI models perform actions based on their private data - trading, scheduling, recommendations.
+
+### ⚡ **Automated Actions**
+Users set up automated workflows that use their private data to trigger actions, transactions, or updates.
+
+## ❓ Frequently Asked Questions
+
+
+::: details 📦 What can I build with iApps?
+Anything that runs in Docker! AI models, data processing scripts, web scrapers, image processing, financial calculations, etc. If it runs in a container, it can be an iApp.
+:::
+
+::: details ⚡ How fast are iApps?
+Initial task scheduling takes ~30 seconds (depending on the resources the worker download, congestion etc), then your code runs at normal speed depending on complexity.
+:::
+
+::: details 🛡️ Are iApps really secure?
+Yes! Code runs in Intel SGX or TDX secure enclaves. Even the worker running your iApp can't see what's happening inside the enclave.
+:::
+
+::: details 🚀 How do I deploy my first iApp?
+Try our [Hello World](/overview/helloWorld) for a quick start, or check the [iApp Generator](/build_iapp/iapp-generator) section for detailed instructions.
+:::
+
+::: details 🔧 What programming languages are supported?
+iApps can be built in any language that runs in Docker (Python, JavaScript, R, Java, Go, etc.). However, **iApp Generator** currently supports only Python and Node.js for simplified development.
+:::
+
+## Why This Changes Everything
+
+### ✅ **True Privacy**
+Users never expose their raw data. Your app processes it privately inside secure enclaves.
+
+### ✅ **Verifiable Execution**
+Cryptographic proof that your code ran exactly as intended. No black box execution.
+
+### ✅ **Decentralized Infrastructure**
+No single point of failure. Your app runs across a distributed network of workers.
+
+### ✅ **Zero Trust Architecture**
+Users don't need to trust you with their data. The protocol guarantees privacy.
+
+## Start Building
+
+Ready to build privacy-first applications?
+
+### 🚀 **Try iApp Generator**
+- [Getting Started](/build_iapp/iapp-generator/getting-started) - Deploy your first iApp in 15 minutes
+- [Building Your iExec App](/build_iapp/iapp-generator/building-your-iexec-app) - Complete development guide
+
+### 📖 **Learn with Guides**
+- [Orders](/build_iapp/guides/orders) - How iApp execution works
+- [Inputs and Outputs](/build_iapp/guides/inputs-and-outputs) - Handle data flow
+- [Debugging Your iApp](/build_iapp/guides/debugging-your-iapp) - Troubleshoot issues
+
+### 🎯 **See iApps in Action**
+Real iApps you can use today:
+- [Web3Mail](/use_iapp/web3mail) - Private emailing iApp SDK
+- [Web3Telegram](/use_iapp/web3telegram)  Private messaging iApp SDK
+- [Oracle Factory](/use_iapp/oracle-factory) - Decentralized oracles
+
+---
+
+**TL;DR**: iApps = Your code + Secure execution + User privacy + Verifiable results. Cloud computing, but nobody can spy on your stuff. 🔒 
diff --git a/manage_data/dataProtector/what-is-protected-data.md b/manage_data/dataProtector/what-is-protected-data.md
@@ -1,58 +1,137 @@
 ---
 title: What Is Protected Data?
-description: Understanding iExec's data protection mechanisms
+description: Data ownership meets privacy - understand how iExec gives you control
 ---
 
-# ❓ What Is Protected Data?
+# 🛡️ What Is Protected Data?
 
-Protected Data is iExec's revolutionary approach to data privacy and ownership.
-It allows you to maintain control over your data while enabling computation on
-it without exposing the raw information.
+**Your data, but with superpowers.** Protected Data is how iExec gives you blockchain-verified ownership over your information. You control who uses it, for what purpose, and you can get paid when it creates value.
 
-## Key Concepts
+## The Problem
 
-### Data Ownership
+Traditional apps treat your data like their property. You upload it, they own it. You lose control, they make money from it.
 
-- **You own your data**: The original data never leaves your control
-- **Granular permissions**: Decide who can access and use your data
-- **Revocable access**: Grant and revoke permissions at any time
+## The Solution: Blockchain-Verified Ownership
 
-### Privacy-Preserving Computation
+Protected Data flips this model. Here's how you protect data:
 
-- **Encrypted processing**: Data is encrypted during computation
-- **TEE (Trusted Execution Environment)**: Secure enclaves protect data during
-  processing
-- **Zero-knowledge**: Compute on data without revealing it
+```javascript
+const protectedData = await dataprotector.protectData({
+  name: 'my-contacts.json', 
+  data: { emails: ['user@example.com', ...] }
+});
+```
 
-### Monetization
+Now you have **blockchain-verified ownership** of this data. No one can access it without your explicit permission.
 
-- **Data marketplaces**: Sell access to your protected data
-- **Usage tracking**: Monitor how your data is being used
-- **Fair compensation**: Get paid for data usage
+## Access Control That Actually Works
 
-## How It Works
+Traditional permissions: "This app can access your contacts" *(forever, for anything)*
 
-1. **Protect**: Encrypt and register your data on the iExec network
-2. **Share**: Grant access permissions to specific users or applications
-3. **Monitor**: Track usage and maintain control
-4. **Monetize**: Earn from your data while keeping it private
+Protected Data permissions: "This newsletter app can use my contacts to send marketing emails, but only during weekdays, and I get 2€ per campaign."
 
-## Use Cases
+```javascript
+await dataprotector.grantAccess({
+  protectedData: protectedData.address,
+  authorizedApp: '0x123...', // Specific app
+  authorizedUser: '0xabc...', // Specific user
+  // Plus pricing, time limits, usage rules...
+});
+```
 
-- **Personal Data**: Health records, financial data, personal preferences
-- **Business Intelligence**: Market research, customer analytics, proprietary
-  datasets
-- **AI Training**: Training models without exposing sensitive data
-- **Research**: Collaborative research with privacy guarantees
+## Privacy-Safe Processing
 
-## Next Steps
+When apps use your Protected Data, they process it inside **secure enclaves** (TEEs). They get the results they need, but your raw data never leaves the privacy bubble.
 
-Ready to protect your data? Check out:
+### How the Technical Magic Works
 
-- [Getting Started with DataProtector](/manage_data/dataProtector/getting-started)
-- [DataProtector Guides](/manage_data/guides)
+Here's what actually happens under the hood:
+
+1. **Your data gets encrypted** and stored online (IPFS,Arweave..)
+2. **The decryption key** is stored in a secure TEE database 
+3. **Only authorized TEE workers** can retrieve this key to process your data
+4. **Apps run inside these TEE workers** - they can decrypt and use your data, but only within the secure enclave
+5. **Results come back encrypted** to you - the raw data never leaves the TEE environment
+
+```
+Your Data (encrypted, online) + Decryption Key (in TEE database) = Processing (only in authorized TEEs)
+```
+
+This architecture ensures that even iExec workers can't access your raw data - only the TEE environment can decrypt it for processing, and only when you've authorized it.
+
+## What This Enables
+
+### 📧 **Privacy-First Email Marketing**
+Your users upload their contact lists as Protected Data. Your newsletter app can send personalized emails without ever seeing the actual email addresses. Users stay private, you get engagement.
+
+### 🤖 **Ethical AI Training**  
+People contribute personal data (health records, preferences) as Protected Data. AI models can learn from this data without seeing individual information. Better AI, fair compensation, zero privacy trade-offs.
+
+### 🏢 **Confidential Business Intelligence**
+Companies protect their datasets but still collaborate on insights. Research partners get aggregate results without accessing raw competitive data. Innovation without information leaks.
+
+### 💰 **Data Monetization**
+Create marketplaces where data owners set their own terms. "Use my fitness data for $5/month, health insights only, no advertising." Automatic payments, programmable rules.
+
+
+
+## ❓ Frequently Asked Questions
+
+::: details 💰 How much does it cost?
+It's **free**! No gas fees on iExec's Bellecour network. You just need a Web3 wallet to sign transactions.
+:::
+
+::: details 📏 What's the maximum dataset size?
+It depends on your use case context. For standard cases (contacts, small datasets), no problem. For large volumes, [contact us](https://iex.ec/contact/) so we can assess if it fits your needs.
+:::
+
+::: details 💸 Can I monetize my data?
+Yes! You can sell access to your Protected Data with flexible pricing, subscriptions, etc. See the [Manage Data Monetization](/manage_data/guides/manage-data-monetization) guide for all details.
+:::
+
+::: details 🚀 How do I get started?
+You need a Web3 wallet (MetaMask, WalletConnect) and Node.js 16+. Follow [DataProtector Core](/manage_data/dataProtector/dataProtectorCore) for installation and first examples.
+:::
+
+
+
+::: details 🔒 Is my data really secure?
+Yes! Your data is encrypted and keys are stored in secure TEE environments. Even iExec workers can't see your raw data - only the authorized TEE environment can decrypt it for processing.
+:::
+
+## Why This Changes Everything
+
+### ✅ **True Ownership**
+Your data is blockchain-verified yours. Not "terms & conditions" yours, actually yours.
+
+### ✅ **Privacy by Design**
+Apps get utility without compromising privacy. No more "privacy vs functionality" trade-offs.
+
+### ✅ **Programmable Control**
+Set complex rules: "Use my data only for health insights, only on weekdays, only if I get paid 5€."
+
+### ✅ **Composable Privacy**
+Any iApp can use your Protected Data (if authorized). Build privacy-first ecosystems.
+
+## Start Building
+
+Ready to give your users data ownership?
+
+### 🚀 **Try DataProtector**
+- [Getting Started](/manage_data/dataProtector/getting-started) - Protect your first dataset
+- [DataProtector Core](/manage_data/dataProtector/dataProtectorCore) - Full SDK reference
+- [DataProtector Sharing](/manage_data/dataProtector/dataProtectorSharing) - Monetization features
+
+### 📖 **Learn with Guides**
+- [Create and Share Access](/manage_data/guides/create-and-share-access) - Basic workflow
+- [Handle Schemas & Dataset Types](/manage_data/guides/handle-schemas-dataset-types) - Advanced data types
+- [Manage Data Monetization](/manage_data/guides/manage-data-monetization) - Get paid for your data
+
+### 🎯 **Use in iApps**
+Protected Data works with any iApp:
+- [Web3Mail](/use_iapp/web3mail) - Private email with contact protection
+- [Build your own iApp](/build_iapp/iapp-generator) - Custom privacy-first apps
 
 ---
 
-_Protect your data, maintain control, and unlock its value with iExec's
-DataProtector._
+**TL;DR**: Protected Data = Your data + Your rules + Privacy guarantees. Finally, data ownership that actually works. 🔒
