in reply to Terence Eden

I tried asking three questions of #WordPress.

Q. Can Core Contributors continue to log in if they're affiliated with WP Engine?
A. We can't answer that. Please don't ask.

Q. Do contributors need to sign a CLA?
A. No.

Q. Can GitHub users send a Pull Request if they're affiliate with WP Engine?
A. (After much wailing and gnashing of teeth) We don't know. No one from WordPress will tell the volunteers anything.

Very dispiriting.

in reply to Terence Eden

The media in this post is not displayed to visitors. To view it, please go to the original post.

As tediously predicted. Had lots of positive reactions to my message. But, of course, no dissent is tolerated in Open Source…⸮

Why do these tech-bros have such thin skins?

#WordPress

in reply to Terence Eden

#WPDrama #GDPR

Sensitive content

in reply to Terence Eden

The media in this post is not displayed to visitors. To view it, please go to the original post.

I asked the #WordPress Data Protection team for a copy of my information from their official Slack - linked to from make.wordpress.org/chat/

This is the nonsense they came back with.

I have a feeling that they aren't even slightly #GDPR compliant!

in reply to Terence Eden

I think they are saying that you didn't provide your data to WordPress.org to access Slack and that WordPress.org doesn't have an agreement with Slack but you do. Are they really saying that you need to talk to Slack? Seems unlikely (given it appears they unlocked your slack account) but might be worth checking (Did someone on slack just restore you access to WordPress channels) .

How did you register for the access to Slack ?

This is a common issue. e. g is a group on Facebook covered by a data request to an org if the org doesn't keep a copy of your data off Facebook

in reply to abeorch

@abeorch Slack specifically says the organisers are responsible for data protection.
See shkspr.mobi/blog/2024/12/is-wo…
in reply to Terence Eden

I don't understand this statement from them "WordPress.org is privately owned by a person, not by a registered or covered entity." because that doesn't matter. Referreing to the ICO website ico.org.uk/for-organisations/u… I quote

Some things are not listed here as exemptions, although in practice they work a bit like an exemption. This is simply because they are not covered by the UK GDPR. Here are some examples:
"Domestic purposes – personal data processed in the course of a purely personal or household activity, with no connection to a professional or commercial activity, is outside the UK GDPR’s scope. This means that if you only use personal data for such things as writing to friends and family or taking pictures for your own enjoyment, you are not subject to the UK GDPR."

The data has to be "with no connection to a professional or commercial activity" to be outside the UK GDPR’s scope - Running a Open Source project would not be "personal or household activity"

in reply to Terence Eden

I'm suddenly wondering if you're dealing with a furry - because I've seen this "loophole" used extensively in that space (usually for harassment, or to justify not taking action against an abuser).

Basically the "loophole" is: we don't manage the volunteer group, it's entirely voluntary, therefore it's up to individuals how they behave and whether they'd stop their abuse.

Schrodinger's organisation: there's one when it suits us, but when it doesn't, we're a bunch of independent people.

This entry was edited (Friday, May 9, 2025, 3:59 PM)
in reply to Terence Eden

Wierd they are only considering where records use your 'likeness' that implies image but its actually any record where you can be personally identified regardless whether it includes your name or image. Hence if you have an email trail that includes emails where you are only referred to as "that man" but the wider mail trail includes your name you should have access to all emails