Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to...
-
Upload
nguyenmien -
Category
Documents
-
view
218 -
download
0
Transcript of Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to...
![Page 1: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/1.jpg)
Legal Audit before Source Code Disclosure Denis Dorotenko
![Page 2: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/2.jpg)
Legal Audit before Source Code Disclosure
![Page 3: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/3.jpg)
// Yandex open source projects
• ClickHouse• CatBoost• Yandex-Tank
many others available at github.com/yandex
![Page 4: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/4.jpg)
// Four steps of legal audit
» Answering special questionnaire
First
» Check on lack of trade secrets
» Patentability check
» Choosing appropriate license
Second Third Fourth
![Page 5: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/5.jpg)
// Four steps of legal audit
– minimize possible risks (related to third party copyright, trademarks, names, etc.)
– avoid leaks of trade secrets
– timely file patent applications
– provide software licenses compliance
– provide the most appropriate license
Purposes
![Page 6: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/6.jpg)
// Four steps of legal audit
– Legal Counsel
– Product Team Representative
– Patent Specialist
– Head of corresponding division
Persons
![Page 7: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/7.jpg)
// Answering special questionnaire
Purposes Examples
» narrow possible licenses to determine one as final choice
» identify potential risks on the first stage of preparation to disclose the code
» software product name and logo
» users duty to specify made modifications
» third-party software components licensing dependencies
![Page 8: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/8.jpg)
// Lack of trade secrets
Purposes
Means
» detect traces of the company's trade secrets within the code to be disclosed
» prevent inadvertent disclosure of our trade secrets
» review by senior developers or team leads
» receiving relevant confirmation on lack
![Page 9: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/9.jpg)
// Patentability check
1
2
timely communicate with product team to avoid patent infringements
3
not to miss bar dates for filing patent applications
file applications for obtaining European patents prior to disclosure
![Page 10: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/10.jpg)
// Appropriate license
Factors Rules
» third-party components licensing dependencies
» our product team requirements to further use of disclosed code
» not to create yet another open source license
» not license all our open source projects under unified license
![Page 11: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/11.jpg)
// Authors
– Help authors to refer on disclosed products in their portfolios
– Detect cases when a co-author has already become former Yandex employee
– Detect cases when a co-author is external person (i.e. not Yandex employee and not former one)
![Page 12: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/12.jpg)
// Authors
As example:
A list of Yandex employees who are ClickHouse authors(AUTHORS file)
![Page 13: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/13.jpg)
// Conclusion
– Legal audit source code disclosure is necessary to a company, which often makes open source releases.
– It allows to reduce risks (related to copyright, trademarks, patents, trade secrets), that can affect open source disclosure and use.
![Page 14: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/14.jpg)
Thank you for attentionAny questions are welcome.
Denis DorotenkoLegal Counsel at YANDEX LLClinkedin.com/in/[email protected]@zakon.ru
![Page 15: Legal Audit before Source Code Disclosure · –Legal audit source code disclosure is necessary to a company, which often makes open source releases. –It allows to reduce risks](https://reader030.fdocuments.us/reader030/viewer/2022040311/5d54341988c993de068ba0a9/html5/thumbnails/15.jpg)