[Qgis-psc] QGIS Question, infrastructure

Sun Sep 3 10:34:41 PDT 2023

-- replying only to PSC
Hi all,
All conformity documents, quality and security strictly apply to vendors,
which we are not exactly. It is the same spirit as the CRA that would
oblige us to do security certification.
I would be in favor to raise a discussion in the mailing lists to get
opinions of our contributors. I foresee a future with a lot more requests
of this type. This is good news, we have users in bigger organizations.
 I imagine we could give a framework for all certifications on he websitte.
We could bootstrap the process with one or two certifications, but let our
communities and big users take a part of the burden if they really need it.
We could also offer an enterprise grade membership, that could fund this
recurrent work of going through all possible certifications. Some of them
are really specific to one country, in which case I would leave this to the
local user group
The OGC compliancy process is a good preflight test. It is something we
wish because following OGC standards is one pilar of FOSS4G. But it is a
lot of work, each year. We really need to find a way to get enough income
to fund some part time job.

As for Goldfield, which is a big mining company, I would prefer if we push
them to medium or large sustaining membership, even if they only have a few
GIS users

Let's discuss this on tuesday's meeting
Bye!

Le ven. 1 sept. 2023 à 21:01, Andreas Neumann via QGIS-PSC <
qgis-psc at lists.osgeo.org> a écrit :

> Hi Lourens, Dear QGIS PSC colleagues,
>
> Thank you for your inquiry. We don't have (yet) a workflow (or IM
> document) to handle such ISO 17001 related requests.
>
> @Marco Bernasocchi <marco at qgis.org> - do you have any material related to
> ISO 17001 ?
>
> Concerning GDPR or related regulations we have a part in our documentation
> that outlines what QGIS does regarding network connections or places where
> potentially IP addresses of QGIS users could be stored temporarily. You can
> find this section at
> https://docs.qgis.org/3.28/en/docs/user_manual/appendices/qgis_desktop_network_connections.html
>
> Regarding sustaining membership: if you use QGIS extensively we welcome if
> your organization or company becomes a new sustaining member. This is an
> annual membership - in your case at 500 € per calendar year. See
> https://www.qgis.org/en/site/getinvolved/governance/sustaining_members/sustaining_members.html#qgis-sustaining-memberships
> for details. In case you would like to become a sustaining member, I can
> issue an invoice. However, I am on vacation until Sep. 13 - so can respons
> only starting from September 14.
>
> Perhaps some PSC member (or a related QGIS support company) knows anything
> about ISO 17001 and IM documents?
>
> Greetings,
> Andreas Neumann
> QGIS.ORG treasurer
>
> On Fri, 1 Sept 2023 at 06:00, Lourens Smuts <Lourens.Smuts at goldfields.com>
> wrote:
>
>>
>>
>> Hello,
>>
>> Just following up regarding QGIS
>>
>> We at Gold Fields Australia trailed QGIS and the outcome we are very
>> happy with the product. However we are ISO 17001 registered, for the
>> registration we need to follow GFA IT internal protocols, all software need
>> to be evaluated and require the completion of an IM document, stipulating a
>> few details regarding the software. This might require us to utilise a
>> sustainable membership, just following up what the best approach would be,
>> I am sure Gold Fields Australia would not be the only company asking this
>> question.
>>
>> Especially the web reporting and data security will be the main questions
>> asked and to be covered in the documentation side. (Mostly details about
>> the servers and security utilised by QGIS
>>
>>
>>
>> Let me know who at QGIS will be the best to contact regarding my question.
>>
>>
>>
>> Currently we have about 3 to 5 users.
>>
>>
>>
>> Thanks you,
>>
>> Lourens
>>
>>
>>
>> Discover QGIS
>> <https://www.qgis.org/en/site/about/index.html#:~:text=QGIS%20is%20an%20official%20project,Source%20Geospatial%20Foundation%20(OSGeo).>
>>
>> QGIS is a volunteer driven project. We welcome contributions in the form
>> of code contributions, bug fixes, bug reports, contributed documentation,
>> advocacy and supporting other users on our mailing lists and
>> gis.stackexchange.com. If you are interested in actively supporting the
>> project, you can find more information under the development menu and on
>> the QGIS Wiki.
>>
>>
>>
>>
>>
>> finance at qgis.org
>>
>> Sustaining Membership Program Overview (qgis.org)
>> <https://www.qgis.org/en/site/getinvolved/governance/sustaining_members/sustaining_members.html#qgis-sustaining-memberships>
>>
>>
>>
>>
>>
>> *Sustaining membership*
>>
>> Sustaining members can support QGIS for any amount of money of at least
>> 500 €. Sustaining memberships last one year, after which they may be
>> continued with a new payment, or allowed to lapse. Sustaining members have
>> no voting rights (unless they are simultaneously voting members in which
>> case their voting rights are unaffected). At or above the following levels
>> a sustaining member will be designated as being one of the following
>> category, based on their size and assigned through self declaration:
>>
>> *euros*
>>
>> *membership level*
>>
>> 27,000+ ($45,000)
>>
>> Flagship Member (e.g. for companies larger than 100
>>
>> employees, federal governmental organizations)
>>
>> 9,000+ ($15,300)
>>
>> Large Member (e.g. for larger cities, provinces or companies up to 100
>> employees)
>>
>> 3,000+ ($5,100)
>>
>> Medium Member (e.g. for universities, medium size cities or companies up
>> to 50 employees)
>>
>> 500+
>>
>> Small Member (e.g. for smaller cities or companies up to 10 employees)
>>
>>
>>
>>
>>
>>
>>
>>
>>
>> *Lourens Smuts*
>> *Unit Manager Geological Systems *
>>
>> Australasia, Perth Corporate Office
>>
>> *A:* Level 4, 235 St Georges Terrace, Perth, WA 6000, Australia
>> *T:* +61 (0) 8 6316 4005 | *M:* +61 (0) 448 004 916
>>
>> *E: lourens.smuts at goldfields.com <lourens.smuts at goldfields.com>*
>>
>> http://www.goldfields.com
>>
>>
>>
>>
>>
>>
>> ------------------------------
>> CONFIDENTIAL CAUTION:
>> This e-mail, its attachments and any privileges/rights attaching hereto,
>> are, unless the context obviously indicates otherwise, the property of *Gold
>> Fields Limited* and/or its subsidiaries (collectively referred to as
>> “Gold Fields”). It is private, confidential and intended solely for the
>> addressee. If you are not the intended recipient and receive this e-mail
>> erroneously, kindly notify the sender, and delete this e-mail immediately
>> and do not disclose or use same in any manner whatsoever. Any such
>> unauthorized use is prohibited and may be unlawful.
>> ------------------------------
>>
>
>
> --
>
> --
> Andreas Neumann
> QGIS.ORG board member (treasurer)
> _______________________________________________
> QGIS-PSC mailing list
> QGIS-PSC at lists.osgeo.org
> https://lists.osgeo.org/mailman/listinfo/qgis-psc
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.osgeo.org/pipermail/qgis-psc/attachments/20230903/2a1de845/attachment.htm>