This document outlines the terms and conditions of a Business Associate Agreement (BAA) between a Provider and a Company, covering the compliance obligations under HIPAA. It defines responsibilities around data usage, security, breach notification, and access. Key uses include:
The document should be incorporated into agreements where a business associate relationship exists to ensure all parties meet their legal and regulatory obligations regarding PHI.
This document outlines a Data Protection Policy for a company referred to as "the Company." It primarily focuses on safeguarding personal data in compliance with various data protection laws and regulations such as the General Data Protection Regulation (GDPR) and other specific acts in regions like California, Singapore, and Australia. The policy sets the framework for the collection, processing, and handling of personal data, ensuring responsibilities are clearly outlined for employees, contractors, and third parties engaged by the Company.
The document can be used to:
This document serves as a legal disclaimer for a website, outlining the terms and conditions under which the website and its associated services, products, information, and content are provided. It specifies that users must agree to these terms before using the site, and it disclaims liability for the accuracy, reliability, and completeness of the information provided. The document also addresses issues of privacy, intellectual property, and limitations of liability, highlighting that the website and its owners are not responsible for any direct or indirect damages arising from the use of the site. It further states that any changes to the website or its policies will be communicated through updates, and continued use of the site constitutes acceptance of these changes. Users are also informed about the handling of external links, professional advice disclaimers, and the importance of reading this document thoroughly before using the website.
This document serves as a Computer Service Agreement including detailed terms and conditions, service descriptions, and respective responsibilities for parties involved. It can be used to:
This legal document describes the process for requesting the removal of private information from GitHub repositories. This process can be used for high-risk content that violates GitHub's Terms of Service by following the outlined steps:
Content in violation includes identifying information, access tokens, and sensitive credentials which pose a risk if publicly available. Users may request removal if they spot such violations, ensuring GitHub takes appropriate action based on their policy guidelines.
This document is a legal policy governing the use of the GitHub platform, specifically detailing prohibitions around harassment and bullying. It outlines what constitutes harassment and bullying, such as personal attacks, disruptive behavior, offensive comments, and various forms of discrimination and intimidation. The document specifies the types of actions considered violations, including doxxing, sharing sensitive personal information, and engaging with the platform in ways that instigate conflicts or undermine user safety.
GitHub outlines penalties for violating these policies, which include removal of content and restrictions on accounts. The policy also emphasizes the importance of respecting other users' privacy, stating that personal information should not be shared without consent. This policy helps maintain a respectful, safe environment on the platform by prohibiting behaviors that negatively impact other users.
The document outlines the official privacy policy of GitHub, detailing how they handle "Personal Data". This information is linked directly to individuals and processed by GitHub and its Data Controller when interacting with GitHub websites, applications, and services collectively. Special clauses cover GitHub accounts, services provided through organizational accounts, third-party access, and data collection methods, including cookies and other similar technologies. The document emphasizes GitHub’s commitment to data protection, providing detailed information about their data collection, usage, and sharing practices, as well as user rights, including access, correction, and deletion of personal data. The policy is designed to comply with legal requirements such as the GDPR and CCPA. It also includes specifications for international data transfers and how disputes are addressed. The document serves as a comprehensive guide for GitHub users on how their personal data is managed, securing transparency and control over their information.
GitHub defines customer data as all data provided by the customer to GitHub through their use of GitHub services. Some customer data is personal data as defined under GDPR.
The GitHub Subprocessor List identifies subprocessors authorized to process customer or personal data on behalf of GitHub to provide services to enterprise customers. This list is applicable for all GitHub services governed by the GitHub Data Protection Agreement.
GitHub publishes the names of any new subprocessors for its online services at least 30 days in advance of the subprocessor's authorization to perform services that may involve access to customer data or personal data.
To receive notifications of updates to this Subprocessor list, please follow the instructions provided in About notifications.
If you have questions about this list, please contact us at privacy@github.com.
This document serves as a privacy policy for users of a website named "Website." It details the types of personal data collected, the purposes for which the data is used, and the terms and conditions under which users agree to the policy. The document informs users about how their data, such as user profiles, contact information, usage data, and technical details, will be handled, including who may access it and under what circumstances. It also covers users' rights to access, rectify, or delete their personal data and the procedure for lodging complaints regarding data processing practices. This policy ensures compliance with legal standards while transparently managing user data and protecting their privacy.