I am not just saying this because I working in privacy compliance, but i am worried at the lack of privacy regulation compliance by many open source and FOSS project websites and the applications. Do we understand that FOSS is not exempt?