Late 2019-10-24 Edit: https://gitlab.com/gitlab-com/www-gitlab-com/issues/5672
It appears, due to massive amounts of feedback, Gitlab has reverted the telemetry TOS updates until an unspecified future date. Discussion is ongoing in multiple-connected Gitlab issue threads.
I have been a non-posting lurker for some time, so please forgive the brevity of my profile’s activity history.
I have also tried my best to search both this forum and the more general python.org community forums for related discussion ahead of this post. I have also searched through relevant PEP discussion (507 comes to mind) for additional insight. If there is a more suitable (or existing) location for this discussion, I will happily transfer elsewhere.
As many already know, Gitlab has updated its Terms of Service announcing that they intend to implement mandatory telemetry. At this time, and based on the sparsely available communications from Gitlab, it appears that this TOS update forces users to opt-in to the telemetry (implementation appears to be a staggered rollout based on user subscription level.) Furthermore, if a user declines to opt-in, Gitlab says this will effectively break Gitlab web and API access for those users until they opt-in.
I am hoping someone within the core team, or the PSF, or the steering council would kindly inform those of us in the non-core community about how this situation might affect the Python language and its ongoing development work. Specifically, I am wondering how this TOS update might affect (or break) any Python development’s GDPR compliance. For example, would interacting with Python through Gitlab cause an unknowing user to submit to this new telemetry?
I am aware that most (almost all) Python development is source controlled through Github, which appears to be compliant based on available information. I personally have a number of products that require this compliance for legal marketability, and so this issue is understandably relevant and important.
I realize this post is somewhat out-of-the-norm for the majority of content here, so I thank you all in advance for offering insight in to the matter. It is my hope to avoid opinion-based judgements about Gitlab and their decisions, as already seen elsewhere.