There is no need for the project or Apache to do anything with this request.
If you want to be polite, I'd say it's ok to respond and let them know that we're not going to take any action whatsoever. Just to avoid them "reminding" us... Craig > On Nov 17, 2020, at 6:08 AM, David Smiley <dsmi...@apache.org> wrote: > > I'm not sure what to make of this document. On occasion, organizations doing > some sort of audit of their software sometimes send forms to open-source > projects, expecting the maintainers of the project to fill it out. It's rare > for such forms to be filled out; I think it's up to your organization to try > and discover what you need to know. > > ~ David Smiley > Apache Lucene/Solr Search Developer > http://www.linkedin.com/in/davidwsmiley > <http://www.linkedin.com/in/davidwsmiley> > > On Tue, Nov 17, 2020 at 3:10 AM Elisabeth Overlund Andersen <e...@impact.dk > <mailto:e...@impact.dk>> wrote: > Hi there, > > > > We are currently conducting our yearly audit of sub-processors, and we > continuously use SOLR Apache in our software developing department. > > > > Therefore we would like you to answer the attached document before 24th of > November 2020. > > > > If you have other relevant documentation or a SOC report you can send me this > instead. > > > > I look forward to hearing from you. > > > > > > Med venlig hilsen / Best Regards > > ELISABETH OVERLUND ANDERSEN > > HR Legal Consultant > > e...@impact.dk > <mailto:e...@impact.dk> > M > T > > +45 6039 4919 > +45 7020 1619 > > <http://www.impact.dk/> > DIGITAL COMMERCE / PEOPLE / RESULTS > AARHUS: Søren Frichs Vej 44D - DK-8230 Åbyhøj > KBH: Laplandsgade 4A, 2. sal - DK-2300 København S > > > Craig L Russell c...@apache.org
