Franke, LucasLiang, HuayuBrantly, Aaron F.Davis, James C.Brown, Chris2024-06-042024-06-042024-04-14https://hdl.handle.net/10919/119256This poster describes work on the General Data Protection Regulation (GDPR) in open-source software. Although open-source software is commonly integrated into regulated software, and thus must be engineered or adapted for compliance, we do not know how such laws impact open-source software development. We surveyed open-source developers (N=47) to understand their experiences and perceptions of GDPR. We learned many engineering challenges, primarily regarding the management of users’ data and assessments of compliance. We call for improved policy-related resources, especially tools to support data privacy regulation implementation and compliance in open-source software.application/pdfenCreative Commons Attribution-NoDerivatives 4.0 InternationalArticle - Refereed2024-06-01The author(s)https://doi.org/10.1145/3639478.3643077