2/18/2026 at 5:51:29 PM
I think this submission should be re-titled. From the post, it seems that the author voluntarily declined funding from FLOSS/Fund because they "don't trust them, nor the India government, with processing and storing personal sensitive data"by murillians
2/18/2026 at 6:18:23 PM
I think it shouldn't.The funding source was dropped by Github, and the terms Pocketbase accepted for funding include being paid through Github by FLOSS Fund. FLOSS Fund refused to follow the regulatory requirements to continue funding projects through Github, and Github dropped them as a funding source.
What the Pocketbase maintainer decided was to drop FLOSS Fund after they tried to renegotiate the contract in dangerous and unethical ways. FLOSS Fund chose to not follow regulatory requirements that Github required.
by DiabloD3
2/18/2026 at 8:06:49 PM
Calling standard KYC paperwork for international wire transfers "dangerous and unethical" is a huge stretch. Every cross-border payment requires this stuff. The fund is literally trying to give away free money and the maintainer threw a fit because they had to fill out a tax form. I get being cautious about sharing personal info but framing compliance requirements as some kind of attack is drama for drama's sake.by fdefitte
2/19/2026 at 1:39:51 AM
Whoah, everyone here who has a bank account - which I assume is pretty much everyone -- has gone through "standard KYC paperwork", and I've never been asked to send personal financial documents to an email inbox.I've opened several bank accounts online and do online banking as well as brokerage and other accounts. Financial documents like this should be uploaded via secure portals and directly stored in encrypted databases with controlled access and network segmentation from the rest of the IT infrastructure.
I am editing this comment to say that I don't think what was being requested is malicious or unethical, but I hope you can understand why people would not feel comfortable doing this, even if they are fine with KYC processes in general.
by carefree-bob
2/19/2026 at 1:10:48 PM
> I've never been asked to send personal financial documents to an email inbox.Try going to a self-service short-term rental in the UK / EU. You'll find out 48 hours before the trip that you won't get the access code until you send a copy of your ID to weed+lower.6969@gmail.com, and there won't be time to argue.
by miki123211
2/19/2026 at 10:41:09 AM
Consumer banking: agree.Corporate banking, I’ve seen exactly this. Asked to send PII docs via email to open accounts and do background checks.
Big 4 Australian bank.
Or I could go into a branch… but all they were going to do was email the copies to the same email address.
by RileyJames
2/19/2026 at 3:08:14 AM
It'd be interesting to get a patio11 perspective on what is or is not "standard KYC paperwork" in a trans-national transaction.https://www.bitsaboutmoney.com/archive/kyc-and-aml-beyond-th...
by adolph
2/18/2026 at 10:56:12 PM
This is false. I just did an international wire transfer a few weeks ago with no KYC.by reenorap
2/18/2026 at 11:58:00 PM
Right, so you think.But: your bank knows who you are and the recipient's bank knows who they are. Your transfer may have been below the increased attention threshold ($10K to $50K depending on the jurisdictions of both recipients).
Both your accounts are most likely not recent and in good standing.
And so on. I routinely make international wiretransfers as well but I'm under no illusion whatsoever that if I tried to cross an anti-money-laundering or anti-terrorism-financing threshold somewhere that the transfer would be immediately stopped and an investigation would ensue.
by jacquesm
2/19/2026 at 1:06:30 AM
Right but presumably the OP had an existing bank account. You can't wire money into thin air. Assuming OP is a regular person with a regular bank account, then further KYC isn't necessary. KYC for every international wire transfer is in fact not true at all, only for the edge case where a person wants to receive money and he has no existing account to transfer it in.by reenorap
2/19/2026 at 1:18:18 AM
You can't just transfer money to a person that has no account. That's not an 'edge case' that just isn't how it works unless you want to use WU or something similar and even they have strict KYC requirements for larger sums.If you want to move large amounts of money outside of the regular financial networks and oversight it is possible but (1) it will cost you (2) you will be breaking the law and (3) you may cause others to be breaking the law. Bitcoin would be one way to do it but even that is not nearly as anonymous as most of its users believe.
Banking is a regulated industry for a reason. There was a period (roughly until 2001, guess why) when banks were willing and able to bend the rules depending on who the customer was and how much money was involved. Those banks that continued to do this post 2001 have - if they're located in the West at least - had their ears bent in ways that they did not like one bit and even the Swiss now play ball.
Cash is becoming harder to use and harder to get. Money will most likely go digital in the West soon, the various governments don't like the unauditable and untaxable money streams that cash provides.
by jacquesm
2/19/2026 at 2:27:33 AM
> You can't just transfer money to a person that has no account. That's not an 'edge case' that just isn't how it works unless you want to use WU or something similarPreeetty sure this is something explicitly supported via standard SWIFT messaging.
by walletdrainer
2/19/2026 at 9:07:27 AM
That the protocol (which predates a lot of legislation) supports it does not mean that your bank supports it. Give it a try though, I'd love to hear about it.by jacquesm
2/19/2026 at 9:34:32 AM
Surely that just depends on how important of a customer you are.I have no need for this, but have witnessed some pretty exotic swift messaging in my life and I wouldn’t be surprised if e.g. some banks in Africa have to regularly deal with this exact kind of situation.
by walletdrainer
2/19/2026 at 8:19:30 PM
I think that's enough goalpost moving for one discussion, we've gone from 'this is easy' to 'VIPs can have the rules bent, sometimes'. I've worked for a bank and I have seen some 'exotic Swift messaging' as well but I also know how rare it is. Joe average does not have access to this kind of feature through their telebanking interface, or any other means.by jacquesm
2/19/2026 at 9:38:52 AM
That means either you did KYC paperwork in the past that is still covering new transactions, or that you haven't crossed the line that triggers KYC (in my experience, usually somewhere > $10-20k in cumulative transfers).by swiftcoder
2/19/2026 at 12:24:21 AM
The War on Terror Financing(tm) made KYC-less transfers using formal banking systems well nigh impossible. Your transaction was covered by past KYC (by your financial institution).by overfeed
2/18/2026 at 6:43:05 PM
Are you saying sending money via Wire transfer is unethical? Its a standard way to send money in cross boarder transactions. Please do note that India is highly regulated for financial transaction that go outside the country so, please don't spread something like they are doing it illegally. Zerodha is a well known firm they are open about this funding. 1 Million every year just because they used many oss project. That is not un ethical.by sreekanth850
2/18/2026 at 6:58:24 PM
From what I can tell, no, they weren't just asking for wire details. They were were asking for multiple forms of identification.If I was in his place, I don't think I'd send everything required to steal my identity to some company in a foreign country that I have no legal recourse in.
by DiabloD3
2/18/2026 at 7:07:04 PM
The irony is that a lot of the KYC checks are actually done in India: Jumio, Onfido, LexisNexis, Refinitiv, HyperVerge, IDfy, Signzy (a lot of major banks)So his ID is probably there already
by rvnx
2/18/2026 at 10:21:07 PM
Sure, but this would have changed that from "probably" to "definitely". :(by justinclift
2/18/2026 at 11:23:07 PM
The e-mail posted somewhere in the comments, assuming it is legit, makes it clear that FLOSS Fund requires certain paperwork for tax reasons to the benefit of the receiver. Apparently the Pocketbase developer is receiving the money personally, which means it is income and will be taxed. Apparently, again, it would also be taxed in India (the seat of FLOSS Fund) and the paperwork would allow to avoid double taxation.This appears much more reasonable to me than the hoops I have to jump through to declare my taxes as an US expatriate and avoid double taxation with my country of residence.
by Propelloni
2/19/2026 at 1:46:46 AM
*border. Late night typos.by sreekanth850
2/18/2026 at 6:36:38 PM
Its a contract where they give money in exchange for basically nothing.It may be reasonable for pocketbase to refuse, but i have trouble seeing floss fund being unethical or in the wrong when we're talking about giving away money for nothing. Especially when the ask is just fill out the paperwork for a wire transfer, the world standard for sending money internationally.
by bawolff
2/18/2026 at 6:40:35 PM
Don't think escrow is possible because of KYC requirements, then again the regulations in India might be different.by Onavo
2/18/2026 at 11:59:16 PM
Escrow is the wrong tool for the job anyway.by jacquesm
2/18/2026 at 6:58:20 PM
Unethical ? "they want to issue a wire transfer, but I don't feel comfortable giving my IBAN"If the IBAM is the concern you can create a separate IBAN with Wise / Revolut for example quite easily (and for free, and for sure cheaper than refusing the money).
by rvnx
2/18/2026 at 9:43:54 PM
> FLOSS Fund refused to follow the regulatory requirements to continue funding projects through Github, and Github dropped them as a funding source.The email they sent to Pocketbase (posted elsewhere in the thread) makes it sound like the regulatory issue with GitHub funding is still being worked on. The email also doesn't sound like it ruled out the option to wait until the GitHub situation potentially gets sorted out in the future and simply recommended that they use a wire transfer to get things moving.
by protimewaster
2/19/2026 at 12:00:44 AM
That's not 'dangerous and unethical' by the normal standards of funding application. Sure, it's not a huge amount of money. But almost every fund has some paperwork requirements and most of them are a lot more onerous than this one.Funds don't operate outside the legal framework, they are well within it and are expected to show their paperwork at the drop of a hat to any auditor that comes knocking. If they just wired sums that are at or near the reporting requirement to any callers they'd be in pretty hot water.
I've had an AML check for the grand sum of 900 euros once.
by jacquesm
2/19/2026 at 4:04:39 AM
Isn't this what monero is for?by seany
2/18/2026 at 7:21:49 PM
Here's the actual e-mail the fund sent:Hey ******, I hope you're doing well. I apologise for the long delay on this disbursal from our end, and for not reaching out to you sooner.
I am writing to you with an update on GitHub Sponsors, your preferred mode of payment. Unfortunately, we're currently unable to process payments through GitHub Sponsors, Liberapay, OpenCollective, or similar platforms due to regulatory constraints. We still have no clarity on when this will become possible. We shared some context on this earlier here: https://floss.fund/blog/second-tranche-2025-anniversary/
We recommend that we move ahead with a wire transfer (although it involves some paperwork!). This involves:
1) Tax Residency Certificate (TRC) from your country of residence/incorporation for the current year.
2) Signed copy of the "No Permanent Establishment in India Declaration" (Template attached)
3) Form 10F to avoid double taxation for non-Indian entities and individuals. This is an online form that has to be filled out on the Indian Tax Department website. Instructions on how to fill it out are attached to this email. Please refer to this FAQ for more details.
4) Service Agreement – Please fill in the sections marked in yellow and send it back to us (Attached)
5) Invoice for the grant amount (sample attached with required fields highlighted, feel free to use your own invoice template if needed. Please mention "project development support" in the invoice description).
Once you have these, please send them over so that we can begin processing the payment.
Please note that these documents are required in our jurisdiction (India) for processing foreign payments. A percentage of the payment will be withheld as per the DTAA (Double-Taxation Avoidance Agreement) between India and your country, which the recipient can claim back while filing tax returns in their country. The specific withholding rate depends on the DTAA regulations between your country and India.
If you have any questions, please feel free to write to us.
Thank you once again for your patience
by fossmaintainer
2/18/2026 at 9:00:27 PM
These are perfectly normal requests .These are needed to reduce withholding taxes and claim treaty benefits .
by ExpertAdvisor01
2/19/2026 at 1:23:03 AM
I'm not giving this kind of information over email ever. You better have some secure and compliant platform for me to submit these forms over or you can f off.by dakolli
2/19/2026 at 2:31:04 AM
If you’re turning down meaningful amounts of money because you consider this information too sensitive to share, you are a crazy person.by walletdrainer
2/19/2026 at 2:44:40 AM
I imagine they're willing to accept them a different way. That email doesn't even specifically ask for the forms to be emailed. It just says to "send them over".Also, I'd argue there are ways to make it reasonably secure over email. An encrypted attachment with a securely pre-shared key doesn't seem too risky IMO.
by protimewaster
2/18/2026 at 7:44:06 PM
Looking at the required paperwork, I agree with Pocketbase to refuse funding.by 8cvor6j844qw_d6
2/18/2026 at 7:56:40 PM
If you were already setup as a non-profit entity with 501c3 US taxes (or similar in other locales), this would be straightforward. Or, even if you were a for-profit company taking part with an LLC or other corporate structure. In those cases, you probably already have an accountant or tax advisor to help handle this stuff. For smaller individual level contributors, I can see how the extra paperwork and overhead could create enough of a hassle to make it not worthwhile. Which is sad.It looks like the author here is from Bulgaria, so who knows what other hassles they would have on their side.
by mbreese
2/18/2026 at 8:15:56 PM
Why? I don't see it as particularly onerous. They are simply complying with their country's KYC requirements. I've gone through worse to accept payments from US citizens with a US corporation. KYC/AML is annoying but its pretty unavoidable unless you want to do crypto.by choilive
2/18/2026 at 9:02:04 PM
It's not really kyc . It's just standard procedure to claim Double tax treaty benefits.You can look at the us W8-BEN
by ExpertAdvisor01
2/18/2026 at 9:34:22 PM
That seems reasonable. It mostly looks necessary to comply with tax and banking laws.by graemep
2/18/2026 at 7:30:18 PM
Where did you get that email from?by yorwba
2/18/2026 at 7:45:36 PM
invoice for fund disbursement? are they trying to donate as expenses?by iririririr
2/18/2026 at 8:17:38 PM
Most US companies take a tax deduction for charitable donations, I don't see why that wouldn't be the same for an Indian firm.by swiftcoder
2/18/2026 at 9:01:06 PM
No it's just that the Indian company is required to withhold taxes . But they want to use the double taxation treaty to claim benefits to reduce itby ExpertAdvisor01
2/18/2026 at 9:14:23 PM
Paying individual OSS contributors without a service agreement is not a charitable donation with regard to taxes. It's not a deductible business expense and typically leads to double taxation.by nwellnhof
2/18/2026 at 6:17:19 PM
It's a wire transfer not your medical records. Use escrow if you are paranoid.by BoredPositron