From 0ddc412d6660a29241033d62f3d56e2163ededdf Mon Sep 17 00:00:00 2001
From: Lucyeoh <66376240+Lucyeoh@users.noreply.github.com>
Date: Mon, 9 Nov 2020 11:30:41 -0500
Subject: [PATCH 1/6] Update to align with the form
---
standard-questions.md | 63 +++++++++++++++++--------------------------
1 file changed, 24 insertions(+), 39 deletions(-)
diff --git a/standard-questions.md b/standard-questions.md
index a65566d..2fb3061 100644
--- a/standard-questions.md
+++ b/standard-questions.md
@@ -33,7 +33,8 @@ This document contains the set of questions that are being asked to assess each
|
|
@@ -42,7 +43,7 @@ This document contains the set of questions that are being asked to assess each
Is the copyright and trademark ownership of everything that the project produces clearly defined and documented? |
- - Is the ownership of the project and everything that the project produces clearly defined and documented i.e. This can be through copyright, trademark, or other publicly available information.
+ - Is the ownership of the project and everything that the project produces clearly defined and documented?
- If yes - please link to the relevant copyright, trademarks, or ownership documentation for the project.
|
@@ -54,7 +55,7 @@ This document contains the set of questions that are being asked to assess each
- Does this open project have mandatory dependencies (i.e. hardware) that create more restrictions than the original license?
- If yes - are the open source components able to demonstrate independence from the closed component and/or are there functional, open alternatives?
- - If yes - please describe:
+ - If yes - please describe how the open source components are independent and/or list the open alternatives for the closed component:
@@ -64,7 +65,7 @@ This document contains the set of questions that are being asked to assess each
- Does some documentation exist of the source code, use cases, and/or functional requirements.
For software projects, this should be present as technical documentation that would allow a technical person unfamiliar with the project to launch and run the software. For data projects, this should be present as documentation that describes all the fields in the set, and provides context on how the data was collected and how it should be interpreted.For content, this should indicate any relevant compatible apps, software, hardware required to access the content and any instructions about how to use it.
- - If yes - please link to the documentation.
+ - If yes - please link to the relevant documentation:
|
@@ -73,9 +74,9 @@ This document contains the set of questions that are being asked to assess each
Is there a mechanism for extracting or importing non PII data from the system in a non-proprietary format? |
- - Does this project have non-PII data?
- - Is there a mechanism for extracting or importing non PII data from the system in a non-proprietary format?
- - If yes - please describe the mechanism for extracting or importing data
+ - Does this project collect or use non-personally identifiable information (PII) data?
+ - If yes - is there a mechanism for extracting or importing non PII data from the system in a non-proprietary format?
+ - If yes - Describe the mechanism for extracting or importing non personally identifiable data from the system in a non-proprietary format:
|
@@ -89,33 +90,26 @@ This document contains the set of questions that are being asked to assess each
Does this project adhere to relevant privacy laws? |
- - Does this project comply with all relevant privacy laws?
+ - To the best of your knowledge does this project complies with all relevant privacy laws?
+ - If yes - please list the relevant privacy laws that the project complies with:
|
- | List the key privacy laws that you're following |
-
-
- - Please list all the relevant privacy laws that the project complies with?
-
- |
-
-
- | To the best of your knowledge does this project comply with all applicable international and domestic laws? |
+ To the best of your knowledge is this project in adherence with applicable international and domestic laws? |
- To the best of your knowledge does this project comply with all applicable international and domestic laws?
- - Please list the applicable internation and domestic laws that the project complies with.
+ - If yes - please list the applicable internation and domestic laws that the project complies with.
|
| 8. Does the project adhere to standards and best practices? |
- Does this project support standards? |
+ Does this project support standards? (i.e. Web Content Accessibility Guidelines (WCAG) 2.1 or other standards such as those listed on W3C.) |
- - Does this project support standards i.e. w3c?
+ - Does this project support standards?Which standards does this project support (please list)
- Which standards does this project support (please list)
- Can you point to evidence of your support? (i.e. please link to your validator, open test suite, etc.)
@@ -125,7 +119,7 @@ This document contains the set of questions that are being asked to assess each
| Does this project adhere to best practices? |
- - Was this project build and developed according to industry best practices and principles i.e. the principles for digital development?
+ - Was this project built and developed according to or in adherence with any design, technical and/or sector best practices or principles? i.e. the Rrinciples for Digital Development?
- Which principles and best practices does this project support (please list)
|
@@ -141,48 +135,39 @@ This document contains the set of questions that are being asked to assess each
- | 9.a. Privacy and Freedom of Expression |
-
-
- - Does this project have strategies in place to anticipate, respond to and minimize adverse impacts on privacy and freedom of expression where governments or bad actors are believed to be using this projects’s products or services for illegitimate or political purposes
- - Please describe
-
- |
-
-
- | 9.b. Data Privacy & Security |
+ 9.a. Data Privacy & Security |
- Does this project collect or store personally identifiable data?
- - If yes - Please list the types of data collected and/or stored by the project
+ - If yes - Please list the types of data collected and/or stored by the project:
- If yes - Does this project share this data with third parties?
- Please describe the circumstances with which this project shares data with third parties. Please add links as relevant
- If yes - Does the project ensure the privacy and security of this data and has it taken steps to prevent adverse impacts resulting from it's collection, storage and distribution
- - If yes - please describe, and include a link to the privacy policy and/or terms of service
+ - If yes - Please describe the steps, and include a link to the privacy policy and/or terms of service:
|
- | 9.c. Inappropriate & Illegal Content |
+ 9.b. Inappropriate & Illegal Content |
- Does this project collect, store or distribute content?
- - If yes - please describe the nature of the content (i.e. childrens books)
+ - If yes - what kinds of content does this project, collect, store or distribute? (i.e. childrens books, weather data)
- If yes - does this project have policies that describes what is considered innappropriate content i.e. child sexual abuse materials?
- If yes - does this project have mechanisms for detecting and moderating innappropriate/illegal content?
- - If yes - please describe the mechanism for detecting, reporting and removing innapropriate/illegal content (include average response time if known)?
+ - If yes - please describe the mechanism for detecting, reporting and removing innapropriate/illegal content (Please include the average response time for assessment and/or action. Link to any policies or descriptions of how inappropriate content is handled.):
|
- | 9.d. Protection from harassment |
+ 9.c. Protection from harassment |
- Does this project facilitate interactions with or between users or contributors?
- If yes - does the project take steps to address the safety and security of underage users?
- - If yes - please describe the steps this project takes to address risk or prevent access by underage users.
+ - If yes - please describe the steps this project takes to address risk or prevent access by underage users:
- If yes - does the project help users and contributors protect themselves against grief, abuse, and harassment.
- - If yes - please describe the steps taken to help users protect users and contributors.
+ - If yes - please describe the steps taken to help users protect themselves.
|
From 7332c70b14be079a7ceb99f2a7bbf5ccef9147a8 Mon Sep 17 00:00:00 2001
From: Victor
Date: Mon, 9 Nov 2020 12:08:08 -0700
Subject: [PATCH 2/6] MAINT: fixed minor typos in standard-questions
---
standard-questions.md | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/standard-questions.md b/standard-questions.md
index 0d4b6bc..a0b3387 100644
--- a/standard-questions.md
+++ b/standard-questions.md
@@ -109,7 +109,7 @@ This document contains the set of questions that are being asked to assess each
Does this project support standards? (i.e. Web Content Accessibility Guidelines (WCAG) 2.1 or other standards such as those listed on W3C.) |
- - Does this project support standards?Which standards does this project support (please list)
+ - Does this project support standards?
- Which standards does this project support (please list)
- Can you point to evidence of your support? (i.e. please link to your validator, open test suite, etc.)
@@ -119,7 +119,7 @@ This document contains the set of questions that are being asked to assess each
| Does this project adhere to best practices? |
- - Was this project built and developed according to or in adherence with any design, technical and/or sector best practices or principles? i.e. the Rrinciples for Digital Development?
+ - Was this project built and developed according to or in adherence with any design, technical and/or sector best practices or principles? i.e. the Principles for Digital Development?
- Which principles and best practices does this project support (please list)
|
@@ -155,7 +155,7 @@ This document contains the set of questions that are being asked to assess each
If yes - what kinds of content does this project, collect, store or distribute? (i.e. childrens books, weather data)
If yes - does this project have policies that describes what is considered innappropriate content i.e. child sexual abuse materials?
If yes - does this project have mechanisms for detecting and moderating innappropriate/illegal content?
- If yes - please describe the mechanism for detecting, reporting and removing innapropriate/illegal content (Please include the average response time for assessment and/or action. Link to any policies or descriptions of how inappropriate content is handled.):
+ If yes - please describe the mechanism for detecting, reporting and removing innapropriate/illegal content (Please include the average response time for assessment and/or action. Link to any policies or descriptions of how inappropriate content is handled):
From 7e7156d7aa23bb716555aa458d7857dcb9c0039c Mon Sep 17 00:00:00 2001
From: Victor
Date: Mon, 9 Nov 2020 13:13:57 -0700
Subject: [PATCH 3/6] MAINT: small clarifying edits
---
standard-questions.md | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/standard-questions.md b/standard-questions.md
index a0b3387..4e584b1 100644
--- a/standard-questions.md
+++ b/standard-questions.md
@@ -70,13 +70,13 @@ This document contains the set of questions that are being asked to assess each
- | 6. Does this project collect or use non-personally identifiable information (PII) data? ? |
- Is there a mechanism for extracting or importing non PII data from the system in a non-proprietary format? |
+ 6. Does this project collect or use non-personally identifiable information (non-PII) data? ? |
+ Is there a mechanism for extracting or importing non-PII data from the system in a non-proprietary format? |
- Does this project collect or use non-personally identifiable information (PII) data?
- If yes - is there a mechanism for extracting or importing non PII data from the system in a non-proprietary format?
- - If yes - Describe the mechanism for extracting or importing non personally identifiable data from the system in a non-proprietary format:
+ - If yes - Describe the mechanism for extracting or importing non-personally identifiable information from the system in a non-proprietary format:
|
From 6f85ce277d314ea91ea36b74417dc34b7f61a2f7 Mon Sep 17 00:00:00 2001
From: Victor
Date: Thu, 12 Nov 2020 14:40:43 -0700
Subject: [PATCH 4/6] MAINT: consistency edits in questions
---
standard-questions.md | 44 ++++++++++++++++++++++---------------------
1 file changed, 23 insertions(+), 21 deletions(-)
diff --git a/standard-questions.md b/standard-questions.md
index 4e584b1..080051e 100644
--- a/standard-questions.md
+++ b/standard-questions.md
@@ -18,7 +18,8 @@ This document contains the set of questions that are being asked to assess each
- Please identify which of the Sustainable Development Goals this project is relevant to:
- - Please supply any relevant links or information to support this relevance.
+ - Please supply information to support this relevance.
+ - Please supply links to support this relevance.
|
@@ -33,7 +34,7 @@ This document contains the set of questions that are being asked to assess each
- - DPGs must use an open license. Please identify which of these approved open source license this project uses:
+ - DPGs must use an open license. Please identify which of these approved open licenses this project uses:
- Please link to where the license is indicated for this project:
|
@@ -53,30 +54,30 @@ This document contains the set of questions that are being asked to assess each
i.e. This can be through copyright, trademark, or other publicly available information. |
- - Does this open project have mandatory dependencies (i.e. hardware) that create more restrictions than the original license?
- - If yes - are the open source components able to demonstrate independence from the closed component and/or are there functional, open alternatives?
+ - Does this open project have mandatory dependencies (i.e. libraries, hardware) that create more restrictions than the original license?
+ - If yes - are the open source components able to demonstrate independence from the closed component(s) and/or are there functional, open alternatives?
- If yes - please describe how the open source components are independent and/or list the open alternatives for the closed component:
|
| 5. Is there documentation? |
- Does some documentation exist of the source code, use cases, and functional requirements. |
+ Does some documentation exist of the source code, use cases, and/or functional requirements for this project? |
- - Does some documentation exist of the source code, use cases, and/or functional requirements.
For software projects, this should be present as technical documentation that would allow a technical person unfamiliar with the project to launch and run the software. For data projects, this should be present as documentation that describes all the fields in the set, and provides context on how the data was collected and how it should be interpreted.For content, this should indicate any relevant compatible apps, software, hardware required to access the content and any instructions about how to use it.
+ - Does some documentation exist of the source code, use cases, and/or functional requirements.
For software projects, this should be present as technical documentation that would allow a technical person unfamiliar with the project to launch and run the software. For data projects, this should be present as documentation that describes all the fields in the set, and provides context on how the data was collected and how it should be interpreted. For content, this should indicate any relevant compatible apps, software, hardware required to access the content and any instructions about how to use it.
- If yes - please link to the relevant documentation:
|
- | 6. Does this project collect or use non-personally identifiable information (non-PII) data? ? |
+ 6. Does this project collect or use non-personally identifiable information (non-PII) data? |
Is there a mechanism for extracting or importing non-PII data from the system in a non-proprietary format? |
- Does this project collect or use non-personally identifiable information (PII) data?
- - If yes - is there a mechanism for extracting or importing non PII data from the system in a non-proprietary format?
- - If yes - Describe the mechanism for extracting or importing non-personally identifiable information from the system in a non-proprietary format:
+ - If yes - is there a mechanism for extracting or importing non-PII data from the system in a non-proprietary format?
+ - If yes - describe the mechanism for extracting or importing non-personally identifiable information from the system in a non-proprietary format:
|
@@ -86,11 +87,11 @@ This document contains the set of questions that are being asked to assess each
- | 7. Does the project adhere to privacy and other applicable international and domestic laws? |
+ 7. Does the project adhere to privacy and other applicable international and domestic laws? |
Does this project adhere to relevant privacy laws? |
- - To the best of your knowledge does this project complies with all relevant privacy laws?
+ - To the best of your knowledge does this project comply with all relevant privacy laws?
- If yes - please list the relevant privacy laws that the project complies with:
|
@@ -106,7 +107,7 @@ This document contains the set of questions that are being asked to assess each
| 8. Does the project adhere to standards and best practices? |
- Does this project support standards? (i.e. Web Content Accessibility Guidelines (WCAG) 2.1 or other standards such as those listed on W3C.) |
+ Does this project support standards? (i.e. Web Content Accessibility Guidelines (WCAG) 2.1 or other standards such as those listed on W3C) |
- Does this project support standards?
@@ -129,7 +130,7 @@ This document contains the set of questions that are being asked to assess each
Has this project taken steps to anticipate, prevent and do no harm? |
- - On the whole, does this project take steps to ensure that it anticipates, prevents and does no harm?
+ - On the whole, does this project take steps to ensure that it anticipates, prevents and does no harm?
- Please describe any additional risks and mitigation steps that this project uses to prevent harm.
|
@@ -138,12 +139,12 @@ This document contains the set of questions that are being asked to assess each
9.a. Data Privacy & Security |
- - Does this project collect or store personally identifiable data?
- - If yes - Please list the types of data collected and/or stored by the project:
- - If yes - Does this project share this data with third parties?
- - Please describe the circumstances with which this project shares data with third parties. Please add links as relevant
- - If yes - Does the project ensure the privacy and security of this data and has it taken steps to prevent adverse impacts resulting from it's collection, storage and distribution
- - If yes - Please describe the steps, and include a link to the privacy policy and/or terms of service:
+ - Does this project collect or store personally identifiable informatin (PII) data?
+ - If yes - please list the types of data collected and/or stored by the project:
+ - If yes - does this project share this data with third parties?
+ - Please describe the circumstances with which this project shares data with third parties. Please add links as relevant.
+ - If yes - does the project ensure the privacy and security of this data and has it taken steps to prevent adverse impacts resulting from its collection, storage and distribution.
+ - If yes - please describe the steps, and include a link to the privacy policy and/or terms of service:
|
|
@@ -152,8 +153,9 @@ This document contains the set of questions that are being asked to assess each
- Does this project collect, store or distribute content?
- - If yes - what kinds of content does this project, collect, store or distribute? (i.e. childrens books, weather data)
- - If yes - does this project have policies that describes what is considered innappropriate content i.e. child sexual abuse materials?
+ - If yes - what kinds of content does this project, collect, store or distribute? (i.e. childrens books)
+ - If yes - does this project have policies that describe what is considered innappropriate content? (i.e. child sexual abuse materials)
+ - If yes - please link to the relevant policy/guidelines/documentation.
- If yes - does this project have mechanisms for detecting and moderating innappropriate/illegal content?
- If yes - please describe the mechanism for detecting, reporting and removing innapropriate/illegal content (Please include the average response time for assessment and/or action. Link to any policies or descriptions of how inappropriate content is handled):
From b9adb23f7b3e69702cf8a4715a1036d5b5776259 Mon Sep 17 00:00:00 2001
From: Victor
Date: Thu, 12 Nov 2020 14:45:33 -0700
Subject: [PATCH 5/6] MAINT: corrected typo
---
standard-questions.md | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/standard-questions.md b/standard-questions.md
index 080051e..1babfd4 100644
--- a/standard-questions.md
+++ b/standard-questions.md
@@ -139,7 +139,7 @@ This document contains the set of questions that are being asked to assess each
9.a. Data Privacy & Security |
- - Does this project collect or store personally identifiable informatin (PII) data?
+ - Does this project collect or store personally identifiable information (PII) data?
- If yes - please list the types of data collected and/or stored by the project:
- If yes - does this project share this data with third parties?
- Please describe the circumstances with which this project shares data with third parties. Please add links as relevant.
From e41549b20d0b2cbe804cb9c2f87c7c518cfc701d Mon Sep 17 00:00:00 2001
From: Victor Grau Serrat
Date: Thu, 12 Nov 2020 15:57:29 -0700
Subject: [PATCH 6/6] MAINT: bump to version 1.1.1
---
CHANGELOG.md | 7 +++++++
README.md | 2 +-
standard.md | 4 ++--
3 files changed, 10 insertions(+), 3 deletions(-)
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 14794a2..283a5bc 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -4,6 +4,12 @@ All notable changes to this project will be documented in this file.
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+## [1.1.1] 2020-11-12
+
+### Changed
+
+- Rewording of [standard-questions.md](https://github.com/DPGAlliance/DPG-Standard/blob/master/standard-questions.md) to align with the current submission form, and bring consistency. All very minor changes
+
## [1.1.0] 2020-11-09
## Removed
@@ -51,6 +57,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
### Added
- Released first version of the Digital Public Good Standard in consultation with a number of key stakeholders at the intersection of open source and social good.
+[1.1.1]: https://github.com/DPGAlliance/DPG-Standard/compare/v1.1.0...v1.1.1
[1.1.0]: https://github.com/DPGAlliance/DPG-Standard/compare/v1.0.5...v1.1.0
[1.0.5]: https://github.com/DPGAlliance/DPG-Standard/compare/v1.0.4...v1.0.5
[1.0.4]: https://github.com/DPGAlliance/DPG-Standard/compare/v1.0.3...v1.0.4
diff --git a/README.md b/README.md
index 80d5d11..cb66238 100644
--- a/README.md
+++ b/README.md
@@ -12,7 +12,7 @@ This standard establishes a baseline of quality that must be met in order to ear
## 🔎 Current Version
-[The Standard](standard.md) is currently at version 1.1.0, published on Nov. 9, 2020; view the [changelog](https://github.com/DPGAlliance/DPG-Standard/blob/master/CHANGELOG.md).
+[The Standard](standard.md) is currently at version 1.1.1, published on Nov. 12, 2020; view the [changelog](https://github.com/DPGAlliance/DPG-Standard/blob/master/CHANGELOG.md).
## ✅ Application of the Standard
diff --git a/standard.md b/standard.md
index 7bbebba..e8ac258 100644
--- a/standard.md
+++ b/standard.md
@@ -1,7 +1,7 @@
# Digital Public Goods Standard
-* **Version**: 1.1.0
-* **Last Update**: 2020-11-09
+* **Version**: 1.1.1
+* **Last Update**: 2020-11-12
* [View Changelog](https://github.com/DPGAlliance/DPG-Standard/blob/master/CHANGELOG.md)
Indicator | Requirement
| |