The best way to avoid audits
Is of course to replace proprietary software with open-source alternatives wherever possible. Anyone still choosing Oracle for greenfield deployments in 2020 needs to have their head examined (and be fired).
Representatives from Toyota, Danske Bank and Procter & Gamble are among members of a new professional body that aims to help IT user groups negotiate cloud service deals and software licensing with vendors. The ITAM Forum aims to encourage more companies to practise effective IT asset management (ITAM) and to bring new people …
Simply untrue, I'm afraid. There are still many vendors who audit and some who are even more aggressive then SAP and Oracle. Micro Focus, in particular, are quite active at the moment. Whilst there are many alternative options to software from some of the big vendors (and I, like you, advocate that companies get off SAP and Oracle if they can), in enterprise estates, it's never that easy. There are still not that many large organisations willing to take the plunge with open source software. That said, open source software is still subject to license. The chances of you being punished for misusing it though are minimal.
I'm sorry, where's the problem ? I thought audits were a consensual kind of thing. It's a "I'm here to chek on your licensing landscape", "Please come in" type of thing.
Because if some guy thinks he can barge in and check my kit without my consent, I'll have him know that he needs cops and a warrant to do so.
And if he thinks he can just send me an invoice if I do not comply, well that does not mean I'll pay it.
It's not really that simple. You buy a license to use some kind of enterprise software, there is a good chance that you agree to be audited to demonstrate your compliance with that license. If you don't agree to allow that, you aren't in compliance with the license and should stop using it. Fine if it's just me not liking the license clause for Office or something similar, a little harder when you are a large enterprise that depends on a particular piece of software and cannot quickly or easily replace it.
Sure they can't barge their way in, but they can send you a cease and desist letter telling you to either comply or stop using the software. And ultimately they have legal recourse then to get you to prove you have stopped using the software and have removed it from your business.
The bigger issue is that way that many large companies make the licensing deliberately vague so it's hard to know if you are using it in a compliant manner or not. I think that is what this new forum is trying to help with.
Audits are very much not consensual. If you have agreed to a software contract and it contains a clause that grants the vendor the right to check your compliance with its terms, then it's not really optional. Obviously they can't just kick your door down and there has to be a degree of reasonable behaviour, but ignoring a vendor who wants to audit your usage when you've legally agreed to them having the right to do so, is a very slippery slope indeed. There are certain software vendors who don't worry about auditing anymore but there are still a lot of enterprise scale publishers who do and most of them will use an audit outcome as leverage to get you into their cloud platforms. The best way to avoid an audit is to manage your software licences and consumption properly.
Biting the hand that feeds IT © 1998–2020