Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [open-regulatory-compliance] White paper on types of open source projects
By PD I assume you mean PLD

On Mon, May 19, 2025 at 6:35 PM Idelberger, Florian (IIWR) <florian.idelberger@xxxxxxx> wrote:
* Framework by the PD that should have been. But in their argumentation they still use both.

More interesting are perhaps their legal arguments, but I assume you are more interested in the results. If not can try to arrange for a private copy.

summary:

* the exception of the PD in Art 2 - 2 is always applicable when direct or indirect business activity takes place. => PD not applicable
* „reverse exception“ when foss as part of direct business activity such as supplied for payment (in any form), personal data or as "embedded software“ => applicable
* „reverse exception“ in case of an indirect business activity, if: sponsoring campaign, supply of foss for services paid for by public funds, or development with the intent to supply services for the manufacturers own software. => applicable
* in case technical support or software maintenance are provided for third party foss they differentiate:
* if such services lead to substantial changes based on the guidelines pertaining to the CRA, this leads to the supplier being „manufacturer“ under the CRA => reverse exception applies, PD applicabel
* if there is no „substantial change“, the supplier doesn’t qualify as manufacturer, thus no business activity in the sense of the PD and the exception applies. => PD not applicable

Maybe this is nothing new, but found it interesting in any case. For people really deep in the topic and interested in their precise arguments, I don’t think I can easily summarize those.

Best,

Florian

-- 
Dr. Florian Idelberger


Karlsruher Institut für Technologie (KIT)
Zentrum für Angewandte Rechtswissenschaft (ZAR)
Institut für Informations- und Wirtschaftsrecht
Vincenz-Prießnitz-Str. 3, D-76131 Karlsruhe

E-Mail: florian.idelberger@xxxxxxx

KIT - Universität des Landes Baden-Württemberg und
nationales Forschungszentrum in der Helmholtz-Gemeinschaft

Am 19.05.2025 um 18:13 schrieb Daniel Thompson-Yvetot <denjell@xxxxxxxxxxxxxx>:

Yeah, I am not interested in paying 30 EUR for this. Can you clean-room cite describe it for us?

On Mon, May 19, 2025 at 5:55 PM Idelberger, Florian (IIWR) via open-regulatory-compliance <open-regulatory-compliance@xxxxxxxxxxx> wrote:
Although not entirely analogous, this article from a German law journal might also be applicable.
They categorize foss project based on economic activity / professionalism, along the framework given by the CRA. https://www.degruyterbrill.com/document/doi/10.9785/cr-2025-410407/html
I know it will likely be behind an annoying paywall for many, so do let me know if you want to more details.

-- 
Dr. Florian Idelberger


Karlsruher Institut für Technologie (KIT)
Zentrum für Angewandte Rechtswissenschaft (ZAR)
Institut für Informations- und Wirtschaftsrecht
Vincenz-Prießnitz-Str. 3, D-76131 Karlsruhe

E-Mail: florian.idelberger@xxxxxxx

KIT - Universität des Landes Baden-Württemberg und
nationales Forschungszentrum in der Helmholtz-Gemeinschaft

Am 18.05.2025 um 14:16 schrieb Georg Link via open-regulatory-compliance <open-regulatory-compliance@xxxxxxxxxxx>:

A helpful reference for the white paper could be the 7 year old Open Source Archetypes report from Mozilla: 

Georg Link, PhD
(he/him)
TZ: US Central Time: US/Chicago


On Mon, May 12, 2025 at 3:34 PM Daniel Thompson-Yvetot via open-regulatory-compliance <open-regulatory-compliance@xxxxxxxxxxx> wrote:
This is good, I have been thinking about how to explain this in Malta. 

Cheers,
Daniel

On Mon, May 12, 2025 at 7:02 PM Tobie Langel via open-regulatory-compliance <open-regulatory-compliance@xxxxxxxxxxx> wrote:
Hi folks,

The idea of creating a white paper to describe the different types of open source projects was floated on Slack and discussed in our SIG calls.

Here's the proposed abstract for it:

The open source ecosystem is a rich ecosystem composed of very different types of projects and of communities, organizations, and maintainers supporting them. This diversity of project and community types isn't well documented and is rarely considered by policymakers. As a result, the whole open source ecosystem is often lumped together as a whole, or separated into arbitrary groups that don't match reality. The purpose of this white paper is threefold:
  1. Identify important traits of open source projects that help differentiate and categorize projects into meaningful groups.
  2. Define a set of categories based on those traits.
  3. Provide examples of open source projects for each category and demonstrate where they fit and why.
Please review, comment, and approve the related pull request and let me know if you want to be involved in authoring this white paper.

Thanks,

--tobie

---
Tobie Langel
Tech Lead ORC WG, Eclipse Foundation
Principal, UnlockOpen
_______________________________________________
open-regulatory-compliance mailing list
open-regulatory-compliance@xxxxxxxxxxx
To unsubscribe from this list, visit https://accounts.eclipse.org
_______________________________________________
open-regulatory-compliance mailing list
open-regulatory-compliance@xxxxxxxxxxx
To unsubscribe from this list, visit https://accounts.eclipse.org
_______________________________________________
open-regulatory-compliance mailing list
open-regulatory-compliance@xxxxxxxxxxx
To unsubscribe from this list, visit https://accounts.eclipse.org

_______________________________________________
open-regulatory-compliance mailing list
open-regulatory-compliance@xxxxxxxxxxx
To unsubscribe from this list, visit https://accounts.eclipse.org

Back to the top