Closed Lastique closed 8 months ago
I used Termly.io to create a template, ensuring compliance with privacy laws like GDPR, CCPA, PIPEDA, and the ePrivacy Regulation. I'm not a lawyer, but I didn't request any additional language; I followed the template for our use and paid Termly.io for the document. @frankwiles, with your experience, is there a less bloated way to stay compliant? Perhaps I was overly cautious, adding unnecessary elements. I'll review it again with the web developers.
I understand that "services" specifically relates to Boost.org website and not to the Boost library or Boost license, as no one owns those. Thus, that claim would be invalid. So, much of the wording doesn't pertain to the library, license, contributions, or ownership.
Regarding the mention of age, I'm curious why it was included, I will have to look at that wording.
@louistatta yeah I'm happy to go over the template with a fine tooth comb with you and make recommendations. The vagueness and age restrictions are really there to protect "typical" websites from litigation, but that isn't really a serious concern for the boost site.
We can be compliant with less vague and troubling wording.
Out of curiosity, you specifically reference GLBA in the TOU document. What relevance does it have to the Boost website and why does TOU need to mention it? The same pertains to other US Acts that are mentioned in the document.
Please note that as a non-US reader, I have no idea what any of those acts are about (at best, I glanced over a Wikipedia page, at worst I didn't bother) and whether I am affected or should care. I think, this example illustrates the problem with the document - for an average international viewer, the document is too difficult to understand and too verbose to even read through.
One of the reasons why BSL is so attractive is that it is short and easy to understand even to an unprepared reader. I think, the new TOU document should also have those qualities.
BSL can't literally apply here because it is a software license, while the website is a service. But I agree I would like the simplest possible legal document.
One point in the TOU document that I also find bothering is that it states that the user assigns all rights on Submissions and Contributions to The C Plus Plus Alliance, Inc. and that The C Plus Plus Alliance, Inc. owns that content. I do not think this is acceptable, at least not with respect to user-generated content.
I think the user must own his personal data, as well as comments, forum posts that he made and so on, to be able to modify or delete them (where deletion would mean complete removal from the website databases). The owner of the Service may reserve some rights to be able to store, publish and moderate that content, but that certainly should not include passing intellectual property rights to The C Plus Plus Alliance or it "owning" the content.
@Lastique which section is that? I see it grants the site a "license" to use that submission (which is necessary) but not ownership.
@louistatta the TOU mentions the code of the site itself, which I realized we do not have a license on one way or another here on Github. Is the site itself under an OSS license? If it is we should strike the clause:
Copy or adapt the Services' software, including but not limited to Flash, PHP, HTML, JavaScript, or other code.
Suggest we also strike these as they either don't really apply or there is existing precedent that makes them unenforceable/meaningless :
Except as permitted by applicable law, decipher, decompile, disassemble, or reverse engineer any of the software comprising or in any way making up a part of the Services.
Except as may be the result of standard search engine or Internet browser usage, use, launch, develop, or distribute any automated system, including without limitation, any spider, robot, cheat utility, scraper, or offline reader that accesses the Services, or use or launch any unauthorized script or other software.
Use a buying agent or purchasing agent to make purchases on the Services.
Section 2, Intellectual Property Rights:
Submissions: By directly sending us any question, comment, suggestion, idea, feedback, or other information about the Services ("Submissions"), you agree to assign to us all intellectual property rights in such Submission. You agree that we shall own this Submission and be entitled to its unrestricted use and dissemination for any lawful purpose, commercial or otherwise, without acknowledgment or compensation to you.
Emphasis mine.
@Lastique aha, I missed that. @louistatta we should adjust the Section 2 language here to be "license" and not own. This covers you in the event someone suggests a useful feature, it can be built without having the person suggesting it be able to sue you for compensation related to the idea.
@Lastique @frankwiles I've updated TOS to use the MD that was provided, does this cover everything that was discussed here?
https://www.preview.boost.org/terms-of-use/
Thanks!
Believe it does, closing. Thanks!
We reserve the right, in our sole discretion, to make changes or modifications to these Legal Terms from time to time. We will alert you about any changes by updating the "Last updated" date of these Legal Terms, and you waive any right to receive specific notice of each such change. It is your responsibility to periodically review these Legal Terms to stay informed of updates.
I think you should take the necessary steps to notify at least the registered users of the TOU updates. Even the unregistered users could be made aware of the TOU update via a pinned post on the front page or a displayed notification (based on a cookie, for example).
I'm not saying you should guarantee you will notify the user of a TOU update, but you should at least state that you will try, to the best of your technical abilities. Requiring users to poll TOU for changes is not a reasonable proposition.
Intellectual Property
Boost libraries, documentation, and source code are provided under the terms of the Boost Software License.
It is better to say "Boost libraries, documentation, and source code are property of the respective library authors and maintainers and are provided under the terms of the licenses of the respective libraries". Yes, all current libraries are licensed under BSL, but there is no formal requirement that a new library must be under BSL. It would be very strongly desirable to be under BSL, though.
This section should probably also mention that the website implementation itself is licensed under BSL.
You grant The C Plus Plus Alliance, Inc. and Boost a royalty-free and non-exclusive license to display, use, copy, transmit, and broadcast the content you upload and publish.
Boost is not a legal entity. There Boost Foundation and individual authors and maintainers of Boost libraries. The sentence above should be clarified which ones it refers to.
For issues regarding intellectual property claims, you should contact the company in order to come to an agreement.
This sentence should be clarified which one is "the company", in coherence with the clarified previous sentence.
Prohibited Activities
In addition your contribitions must meet these requirements:
Typo in "contributions".
Not obscene, lewd, lascivious, filthy, violent, harassing, libelous, slanderous, or otherwise objectionable (as determined by us).
This sentence should start with something like "They are not ...".
Your Contributions do not violate any applicable law concerning child pornography, or otherwise intended to protect the health or well-being of minors.
The last part of the sentence seem to contradict the first. Did you mean "harm" instead of "protect"?
@4down Please reopen until the issues above are addressed.
Before we consider revising the Terms of Service (TOS) language on TOS updates, I'd prefer to have a fully automated system in place. It would automatically send an email notification to all registered users with valid email addresses whenever the website's TOS or Privacy Policy is updated, ensuring the process is seamless and doesn't depend on manual intervention, such as someone remembering to send out a mass email after each update..
Currently, we're focused on other priorities, but we will look into the implementation of this feature in the future. If anyone is willing or able to help expedite the process, we would greatly welcome the assistance, especially considering our website has just been launched under BSL.
Yes, all current libraries are licensed under BSL, but there is no formal requirement that a new library must be under BSL. It would be very strongly desirable to be under BSL, though.
Let's cross that bridge if and when it happens.
All other issues reported have been addressed. Thank you for your contributions and for bringing these matters to our attention.
The typo in "contributions" is still there.
The changed wording says contributions "should be aimed at safeguarding the health and well-being of minors". I don't think this change is correct, as aiming every contribution at protecting the minors is not realistic. The wording should instead say that contributions harming the minors are prohibited (which is consistent with the Prohibited Activities section name).
Updated and we're adding this feature. https://github.com/boostorg/website-v2/issues/986
https://www.preview.boost.org/terms-of-use/
I am not a lawyer, but these terms of use are a significant departure from the current website, which, to the best of my knowledge, is licensed under the Boost Software License 1.0 (or BSL for short):
https://www.boost.org/
(Notice the copyright at the bottom.)
I understand that the new website has a wider range of content that is published, and there should probably be some additional terms and definitions regarding that added content. However, the Terms of Use (TOU) page linked above seems both more verbose and less clear at the same time.
In particular, I have the following concerns:
There are probably other points that are questionable, I did not analyze the TOU document in every detail, and again, I'm not a lawyer and don't understand all the legal details in it. But my main requests can be summarized as follows:
Also, I think this topic might be worth discussing on the Boost mailing list.