On Thu, Jul 18, 2024 at 09:48:21AM +0000, Zbigniew Jędrzejewski-Szmek wrote: > a long time ago I wanted to propose a more formal policy for privacy > behaviours and I wrote this draft [1]. My idea was that we'd first > create and approve such a policy, and then add the conformance to this > policy to the packaging guidelines. Maybe this draft can be useful. > If a policy is created, I'd like to participate in the process. > > [1] https://in.waw.pl/~zbyszek/fedora/fedora-privacy-policy-draft-20210531.md Thanks. I have not yet run this by any lawyers, but my sense is we should 1. Avoid legalese-sounding phrases and possibly some landmine terms, and 2. Avoid promising anything. I also think listing all possible things is... ambitious. It's certainly unlikely to ever be exhaustive, so we shouldn't give the impression that it is (if we have such a list at all). Also, this focuses on describing what we know about some of the software we include. I think we need more of the very first paragraph -- what our intentions are, and what policies we have for our packages and artifacts. As we can see from this thread alone, there is no consensus at all on what it means to "strive to protect user privacy" (but I think all of us agree that we should). -- Matthew Miller <mattdm@xxxxxxxxxxxxxxxxx> Fedora Project Leader -- _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
