privacy policy

Adrian Klaver adrian.klaver at aklaver.com
Mon Nov 24 19:32:57 UTC 2014


On 11/24/2014 11:25 AM, Alan Mackenzie wrote:
> Hello, Tugba.
>
> On Mon, Nov 24, 2014 at 04:39:46PM +0100, Tugba Gündogdu wrote:
>> Hello,
>
>> we´re currently reviewing our companies toolchain on SHA (Save Harbour
>> Agreement) compliance internally.
>> Since we couldn´t find any statement regarding this in your privacy policy
>> we like to know wether <Company/Tool> is compliant to SHA or not.
>
>> We´d be glad if you can provide a feedback on short note.
>
> I'm not part of the Mercurial project, so it's not really for me to say.
>
> But it might help get good answers if you could briefly outline what the
> "Save [?Safe] Harbour Agreement" actually is.
>
> It sounds to me like it might have something to do with network
> infrastructure companies having, or not having responsibility for
> copyright infringement perpetrated on their networks.  If that is the
> case, then it would seem Mercurial, being a tool for managing file
> versions, is outside of its scope, much as a sack of potatoes would be.
>
> But that depends on what the SHA really is.

It is worse than that:

http://www.export.gov/safeharbor/


I believe the salient point can be found here:

http://www.export.gov/safeharbor/eu/eg_main_018474.asp

What Organizations May Join the Safe Harbor Program

U.S. organizations subject to the jurisdiction of the Federal Trade 
Commission (FTC) and U.S. air carriers and ticket agents subject to the 
jurisdiction of the Department of Transportation (DoT) may participate 
in the Safe Harbor program. The FTC and the DoT have both stated in 
letters that they will take enforcement action against organizations 
that state that they are in compliance with one or both of the Safe 
Harbor Frameworks, but then fail to live up to their statements. Please 
note that certain sectors are not subject to the jurisdiction of either 
the FTC or the DoT, and thus may not be eligible for Safe Harbor. 
Organizations generally not subject to FTC jurisdiction include certain 
financial institutions, such as banks, investment houses, credit unions, 
and savings & loan institutions, as well as telecommunication common 
carriers, labor associations, non-profit organizations, agricultural 
co-operatives, and meat processing facilities. In addition, the FTC’s 
jurisdiction with regard to insurance activities is limited to certain 
circumstances. If your organization is considering joining Safe Harbor, 
but you are not certain whether it falls within the jurisdiction of 
either the FTC or the DoT, it is recommended that you contact those 
agencies for further guidance.

>
>> Best Regards
>
>> Tugba Gündogdu
>


-- 
Adrian Klaver
adrian.klaver at aklaver.com



More information about the Mercurial mailing list