Data Protection team delegation

To: debian-devel-announce@lists.debian.org
Subject: Data Protection team delegation
From: Chris Lamb <lamby@debian.org>
Date: Tue, 05 Jun 2018 20:41:28 +0100
Message-id: <[🔎] 1528227688.412908.1397547576.57703279@webmail.messagingengine.com>
Mail-followup-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Dear developers,

In light of the recent introduction of the EU GDPR [0] I am announcing the
creation of the Debian Data Protection team. As outlined in the official
delegation, the two main roles for the team are to:

 * Provide a single contact point for external queries about data the
   Project may hold about an individual.

 * Act as an "advice service" for members of the Project who are involved
   in running systems within Debian that may hold personal information
   about individuals.

If you believe you can help out, please do get in contact via the email
address listed in "Contact" below. More general discussion regarding the
GDPR and related topics should be redirected to the "gpdr-discuss" mailing
list [1].


Delegation
- ----------

I hereby appoint the following as members of the Debian Data Protection
team:

 - Jonathan McDowell (noodles)
 - Tollef Fog Heen (tfheen)

This is the first delegation of this team. The delegation is not time-
limited; it will be effective until further changes by present or future
Project Leaders.


Task Description
- ----------------

How we handle personal information is something the entire project needs to
be aware of. This team provides a centralised point for both external and
internal queries to ensure Debian takes appropriate care when dealing with
such information.

 - Single contact point for external queries about data the Project may
   hold.

   It is accepted that Debian is a large and complex project especially
   when viewed from the outside. Services under the debian.org
   infrastructure are often operated by different project members with no
   consistent method of reaching them. The Data Protection team therefore
   provides a single point of contact for outside parties who can then
   redirect queries to the appropriate team or teams.

 - Advice service for project members.

   Data protection is an issue all service owners need to be concerned
   with. The Debian Data Protection team will provide guidance to Project
   members about how to apply appropriate data protection principles to
   their service such as data minimisation, appropriate retention policies
   and dealing with deletion requests, etc.


Contact
- -------

The team can be contacted at data-protection@debian.org.


 [ 0] https://en.wikipedia.org/wiki/General_Data_Protection_Regulation
 [ 1] https://www.earth.li/pipermail/gdpr-discuss/


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb, Debian Project Leader
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=WRG6
-----END PGP SIGNATURE-----

Reply to:

Next by Date: its dead jim - alioth is gone
Next by thread: its dead jim - alioth is gone
Index(es):
- Date
- Thread