ChipTuner's avatar
ChipTuner ChipTuner@gitcitadel.com 7 months ago
As someone who's had "experience with government compliance" all I can say is, developers, especially those with an significantly sized operation should have a longer term plan. Government compliance and regulation is not new, this act is, but this type of enforcement and checking is not exactly new. For example state sales tax in the US and website accessibility compliance forced us to do IP-based geo-location of customers in the past. We were left with the choice, track users to the best of our ability, or risk getting sued into bankruptcy. We had other state-based compliance issues that added to this as well. Specifically compliance we simply couldn't do because the tools we used didn't support it. Nostr is going to break a lot of rules in a lot of countries. As, an operator, as a developer, as a business, you absolutely MUST be prepared for government activity like this. These types of compliance acts should not take you by surprise. It does the community no good for you to say "oh damn that's crazy" then do nothing about it. I know it's not easy, trust me I get it, please let this be encouragement to keep your eyes on the end goal and keep your ears to the ground. I don't want to see people get caught up in legal issues because they simply didn't take the time to pay attention. There are 1000 compliance issues you're probably already in violation of, but that's just the job. Be ready, have some funds saved to pay for legal council for your business, and for you and your family. Don't forget that they will often cease bank funds during investigations even for civil one sometimes. Be prepared for that as well.
rabble's avatar rabble
What are other nostr app developers and relay operators doing with regard to the UK Online Services Act? Apparently there is no legal exception for open source or apps that are not connecting to servers you control or apps that are entirely encrypted and peer to peer. Basically they want us to KYC anyone they think might be based in the UK, and implement content filters. There seems to be no way to be in compliance in Nostr without limiting all connections to a single gateway relay the way Primal does, and with geo location, including blocking tor and vpn connections, and content analysis of all text and media. Basically insanity which is completely counter to the entire Nostr project. I knew there was some of OSA coming but I hadn’t paid attention to it. None of us want to KYC our users or build a content filtering system. I mean how do we know if a post is about a knife? Yes we can’t have content about knives! Or how do we determine who considers content hateful? https://www.ofcom.org.uk/siteassets/resources/documents/online-safety/information-for-industry/illegal-harms/illegal-content-codes-of-practice-for-user-to-user-services.pdf?v=391681 What are Nostr devs based in the UK doing? Users? Relay operators?
View quoted note →

Replies (2)

ChipTuner's avatar
ChipTuner ChipTuner@gitcitadel.com 7 months ago
I'll be honest, I'm pretty backed pilled when it comes to government. I've spent quite a bit of time doing the old hand email to get a GFY in return. Even with the direct attention and interest with a US senator, they're only in it for themselves. The owners got to meet them in person, and later their staff would come to our offices to keep up. The instant your story doesn't benefit them they move on. They want the tik tok views and insta likes. I don't share their name because I do genuinely think they took a moment, but the problem is so deep and systemic in DC that even if they wanted to help, there is no motivation to help, it only hurts their reputation and campaign. It's a very nuanced situation.
1 replies ↓
Vyram Kraven's avatar
Vyram Kraven vyramk@nostrcheck.me 7 months ago
Right which is why the public need to rally together. Your one person alone who sent an email. Legally speaking according to the procedures of ballot you need 64% of the state's population to show up in person at the state congressmen's office for it to have to be considered & put to ballot. The odds & law are stacked against the public & something like the public internet privacy act would take extreme coordination, communication, & research to present it in a form that gets it to the next step. If colorado can beat the odds with cannabis everyone else has a chance. Rally people is not easy people have this idea it's just show up scream & rage no that's an angry mob. To rally is to gather individuals who want the same thing & develop the cause for the effect. This would take a lot more then just you & me to accomplish but in order to get started somewhere we need to stick together & get more people together. You should come in the simplex chat I got talk with everyone about what you want & what can happen.