Bonum Certa Men Certa

Open Source Initiative (OSI) Privacy Fiasco in Detail: A "Deep Dive" Into the Complaint at the California Privacy Protection Agency

posted by Roy Schestowitz on Apr 08, 2025,
updated Apr 08, 2025

Alligator in the Weeds

LAST month we published an introduction to this series and the following part explained the urgency/importance. The previous part gave a glimpse into the complaint which had been submitted to the CPPA, the California Privacy Protection Agency.

Today we take a "Deep Dive" - to borrow the words used by the OSI to describe its Microsoft-sponsored lobbying for GPL violations.

From the CPPA site: "Additionally, the CCPA imposes separate obligations on service providers and contractors (who contract with businesses to process personal information) and other recipients of personal information from businesses. The CCPA does not generally apply to nonprofit organizations or government agencies."

We'll deal with the status ("nonprofit organization") some other day.

"Note," the complainant told us, "since OSI is a Nonprofit benefits corporation and may not be considered under CPPA, and if so, I will file a complaint with California DOJ."

"If you have a consumer complaint related to something other than consumer privacy, please report your issue using the California Department of Justice's complaint system," it says.

The OSI is a California Corporation. Incorporated in 1999 by ESR and Ian Murdock. The OSI articles of incorporation:

ARTICLES OF INCORPORATION OF
OPEN SOURCE INITIATIVE

A California Nonprofit Public Benefit Corporation

One: The name of the corporation is Open Source Initiative.

Two: This corporation is a nonprofit public benefit corporation and is not organized for the private gain of any person. It is organized under the Nonprofit Public Benefit Corporation Law for public purposes. This corporation is also organized for educational purposes within the meaning of Section 501(c)(3) of the Internal Revenue Code of 1954 or the corresponding provision of any future United States internal revenue law. The specific purposes of the corporation are to (1) educate the public about the advantages of open source software [software that users are free to modify and redistribute]; (2) encourage the software community to participate in open source software development; (3) identify how software users’ objectives are best served through open source software; (4) persuade organizations and software authors to distribute source software freely they otherwise would not distribute; (5) provide resources for sharing information about open source software and licenses; (6) assist attorneys to craft open source licenses; (7) manage a certification program to allow use of one or more certification marks in association with open source software; and (8) advocate for open source principles.

Here's the full thing in case they remove this page in the future for revisionism purposes:

OPEN SOURCE INITIATIVE

CPPA continued: "Personal information is information that identifies, relates to, or could reasonably be linked to a particular consumer or household. For example, it could include a consumer’s name, email address, records of products purchased, internet browsing history, geolocation data, fingerprints, and inferences about the consumer’s preferences and characteristics."

From the complaint:

L – Right to LIMIT the use and disclosure of sensitive personal information collected about them. 4 years and still showing as of yesterday!

O – Right to OPT-OUT of the sale of their personal information and the right to opt-out of the sharing of their personal information for cross-context behavioral advertising. Never had an option to opt-out of having my personal info showing for 4+ years or ever to my recollection.

C – Right to CORRECT inaccurate personal information that businesses have about them.

K – Right to KNOW what personal information businesses have collected about them and how they use and share it.

It's possible during voting they let me know. However, I didn't want it shared with the world for 4 years.

E – Right to EQUAL treatment. Businesses cannot discriminate against consumers for exercising their CCPA rights.

D – Right to DELETE personal information businesses have collected from them (subject to some exceptions).

Some time later this week we'll show the remainder of this complaint. There are many facets to it and it may be the first complaint of several.

Other Recent Techrights' Posts

OFTC Has Just Culled About a Third of Its Online Users
It's not the first time they purge or force offline many people/bots
Why We'll Continue Covering EPO Abuses (Other Patent Offices as Well, as the Need Arises) for Many Years to Come
We're basically becoming Russia
Central Staff Committee of the EPO Opposes Abuses Against EPO Staff, Challenging SuccessFactors Stunts
Europe became institutionally colonised
Gemini Links 22/05/2025: "Conspirituality" and Visiting One's Old University
Links for the day
Microsoft Killed the Term "Open Source" (by Bribing/Taking Over OSI, 'Linux' Foundation Etc.) and Now It Needs to Kill the Brand Linux (Because Windows Just Won't Run!)
Why else would Microsoft falsely describe Windows as "Linux" and "Open Source"?
Slopwatch: Liars for Microsoft, Plagiarism, and IBM Red Hat Markets Slop as "AI"
Today was a bad day news-wise
 
Links 22/05/2025: TikTok Laying Off Again, Microsoft-Backed Builder.ai Set for Bankruptcy, Scam Altman Uses 'Funny Money' to 'Buy' (Hire) Company
Links for the day
These Feet Are Made for Walking
Humans are apparently so very clever that they decided to form a "progressive" consensus: feet no more
We Seem to Have Abandoned Science and Replaced Sound Policy With Private Patent Shareholders and College Dropouts Like Bill Espteingate
Because of what they did there are now many people out there who reject all vaccines
The Evolution of Microsoft's War on GNU/Linux
13 sins
My New Desk Arrangement (and More Breaks From the Keyboard)
all in all yesterday I devoted 4-5 hours to redoing and shuffling stuff
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, May 21, 2025
IRC logs for Wednesday, May 21, 2025
Bigots and Lunatics Who Attack Microsoft Critics, Projecting Their Own Bigotry by Accusing Others of Imaginary Things (Which They're Innocent Of)
"In psychology, projection refers to assigning your negative traits or unwanted emotions to others without being aware you’re doing it."
"The Appeals Committee [at the EPO] Unanimously Stated a Formal Flaw in the Consultation of the General Consultative Committee (GCC) on the Reform"
It's a truly horrifying situation
Links 21/05/2025: Climate Problems and Ceasefires No Longer Foreseen
Links for the day
Gemini Links 21/05/2025: "Shrimps of Doom" and "ASCII-graphs"
Links for the day
Links 21/05/2025: GitHub Becoming Slop, MElon as a Drug Addict Considered National Security Risk
Links for the day
Slopwatch: Slopfarms 'Think' Redis is "Linux" (RedisRaider)
Today we'll keep it short and to the point again
IBM Has Allegedly Just Sacked Mr. McKinsey (McK), Clay Cowan, Its Fourth CMO in a Few Years
To insiders he represented the company that's killing IBM or advising IBM on how to self-destruct
Gemini Links 21/05/2025: Trips, 4D Golf, and Writing Software
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, May 20, 2025
IRC logs for Tuesday, May 20, 2025
Links 20/05/2025: Biden's Cancer, GDPR Changes, and UK Defamation Cases (or SLAPPs) Fail Again
Links for the day
Microsofters Targeting the Wife of the Critic of Microsoft
false claims and loaded statement
Links 20/05/2025: "Bankrupt 23andMe Just Sold Off All Your DNA Data" and "Free Speech Warriors" MIA
Links for the day
Microsoft a Top Sponsor at Red Hat Summit (IBM Selling Proprietary Spyware and Back Doors in a "Red" Trench Coat)
They both work for Microsoft
Openwashing of Windows, Back Doors, Persistent Surveillance, Keyloggers, Screen Loggers, DRM and So On
WSL is not "Linux", it's Windows
New 'Interview' With - or Talk Coverage of - Richard Stallman in the European Union
automated English translation
IBM Mass Redundancies Likely This Coming Thursday
We're not in a position to judge if that's true or false
Gemini Links 20/05/2025: LLM Scraper Bots in Gopher and "Starmer and the Somewheres"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, May 19, 2025
IRC logs for Monday, May 19, 2025