There is a thread on [email protected] with the subject "ASF hosted binaries collecting user data without an explicit opt-in" we may need to pay attention to regarding Apache binaries uploading user data etc. Apparently there was also some discussion on legal, which I don't think I am a member, and will see if I can find.
Anyways, it seems we should make sure we have a plan along with sign off on things like the UI gesture collector, exception reporting, auto update, and any others, as well as a mechanism for that data to be uploaded once at Apache. Thanks Wade
