[opensuse-project] Minutes of openSUSE Board meeting 2020-09-29
Present: Axel, Gerald, Marina, Stasiek, Vinz Excused: Simon Minutes: Gerald Marina got delayed so we restarted the meeting half an hour later, then also including her. == "openSUSE Intro" == * Gerald wonders whether we have / should have / can get a general presentation? * Use cases: events, new partners, new colleagues (think SUSE and Rancher) * AI anyone who has material, please share. * AI Gerald to send a question to marketing@ == Data protection officer for openSUSE == * Not strictly necessary as of today, though desirable; latest with a Foundation openSUSE will need a data protection officer. * Gerald is waiting for a brief role description. * Will then share that and a request for volunteer(s) with project@. == openSUSE + LibreOffice conference update == * Marina reported from prep call Sep 28th, where the team tested the platform, * Next step is testing accessibility. * AI everyone to log into the platform to become familiar. == Board presentation slot at openSUSE + LibreOffice conference == * Not too much input from project@ so far. * Probably a good idea to create a slide deck, go through that, and then take open questions. * Some thoughts ** Foundation ** Closing the Leap Gap: transparency (features, bugs,...) ** It would be great to get updates from the different teams of openSUSE. * AI Axel: prepare board presentation for oSLO, update statistics * AI Axel to invite heroes, marketing@, membership officials, election officials, localization teams to ** co-present, or ** share input or slides, or ** abstain this time around. -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
On 7. Oct 2020, at 21:59, Gerald Pfeifer <gp@suse.com> wrote:
== Data protection officer for openSUSE ==
* Not strictly necessary as of today, though desirable; latest with a Foundation openSUSE will need a data protection officer. * Gerald is waiting for a brief role description. * Will then share that and a request for volunteer(s) with project@.
Under most legislations that have some clear jurisdictions over the openSUSE Project, a Data Protection Officer is a legally defined role that has very clear requirements and protections. For example in the UK: The DPO must be independent, an expert in data protection, adequately resourced, and report to the highest management level. UK guidance on this topic is very clear - an organisation that fails to appoint a DPO with sufficient professional expertise can be judged to be failing its obligations under Data Protection legislation. In our case where openSUSE (as a result of its close relationship with SUSE), this responsibility would mean someone with sufficient professional expertise in not only the UK, but (after 1 Jan 2021) also the rest of the EU which may develop its laws differently and also the US. While, luckily, all legislation I’m aware of doesn’t transfer liability of the organisation onto its DPOs (ie. the Foundation will be legally responsible in the event of a DPO failing to do their job properly) I think it will be a tall order to find an volunteer for such an important and complicated role. Don’t most foundations pay for a DPO? Regards Richard
Richard Brown wrote:
Don’t most foundations pay for a DPO?
I don't know about foundations specifically, but many places do outsource the job - DPOaaS. There simply aren't enough experts in data protection available. -- Per Jessen, Zürich (11.3°C) Member, openSUSE Heroes -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
participants (3)
-
Gerald Pfeifer -
Per Jessen -
Richard Brown