GitHub defines customer data as all data provided by the customer to GitHub through their use of GitHub services. Some customer data is personal data as defined under GDPR.
The GitHub Subprocessor List identifies subprocessors authorized to process customer or personal data on behalf of GitHub to provide services to enterprise customers. This list is applicable for all GitHub services governed by the GitHub Data Protection Agreement.
GitHub publishes the names of any new subprocessors for its online services at least 30 days in advance of the subprocessor's authorization to perform services that may involve access to customer data or personal data.
To receive notifications of updates to this Subprocessor list, please follow the instructions provided in About notifications.
If you have questions about this list, please contact us at [email protected].
The document outlines the official privacy policy of GitHub, detailing how they handle "Personal Data". This information is linked directly to individuals and processed by GitHub and its Data Controller when interacting with GitHub websites, applications, and services collectively. Special clauses cover GitHub accounts, services provided through organizational accounts, third-party access, and data collection methods, including cookies and other similar technologies. The document emphasizes GitHub’s commitment to data protection, providing detailed information about their data collection, usage, and sharing practices, as well as user rights, including access, correction, and deletion of personal data. The policy is designed to comply with legal requirements such as the GDPR and CCPA. It also includes specifications for international data transfers and how disputes are addressed. The document serves as a comprehensive guide for GitHub users on how their personal data is managed, securing transparency and control over their information.
This legal document outlines the company's policy on protecting personal data. It emphasizes the significance of safeguarding personal data in accordance with various data protection laws and regulations, including but not limited to the General Data Protection Regulation (GDPR) in Europe, the California Consumer Privacy Act (CCPA) in the United States, and the Personal Data Protection Act (PDPA) in Singapore.
The document serves as a framework for collecting, processing, storing, and managing personal data responsibly and in compliance with these laws. It holds all employees responsible for ensuring proper handling of personal data in their day-to-day activities, mandates adherence to this policy, and requires reporting any data protection concerns to the Data Protection Officer (DPO).
Additionally, it defines the responsibilities of contractors and third parties who must comply with applicable data protection laws and regulations and report any concerns to the DPO. The policy also details the rights of data subjects to access, rectify, erase, restrict, transfer, object, or withdraw consent to the processing of their personal data and provides information on how they can do so by contacting the Data Protection Officer.
The document outlines the procedure and requirements for submitting content removal requests on GitHub. It details policies for DMCA Takedown requests, GitHub Trademark Policy, and guidelines for removing GitHub Private Information. This document can be used by individuals or organizations to request the removal of copyrighted, trademarked, or private information from GitHub. It also provides links to the official procedures and forms needed to file these requests.
This document is a legal policy governing the use of the GitHub platform, specifically detailing prohibitions around harassment and bullying. It outlines what constitutes harassment and bullying, such as personal attacks, disruptive behavior, offensive comments, and various forms of discrimination and intimidation. The document specifies the types of actions considered violations, including doxxing, sharing sensitive personal information, and engaging with the platform in ways that instigate conflicts or undermine user safety.
GitHub outlines penalties for violating these policies, which include removal of content and restrictions on accounts. The policy also emphasizes the importance of respecting other users' privacy, stating that personal information should not be shared without consent. This policy helps maintain a respectful, safe environment on the platform by prohibiting behaviors that negatively impact other users.
The document outlines the terms and conditions for using a cloud service, providing detailed guidelines on various aspects such as user responsibilities, data usage, confidentiality, liability, and termination conditions. It includes standard terms for cloud services, covering specifics like mandatory compliance with data protection and privacy regulations, security measures, service levels, support policies, payment terms, intellectual property rights, and the procedure for handling breaches or disputes. These terms can be used to define the legal relationship between the service provider and its customers, ensuring clarity and mutual understanding on rights, obligations, and expectations.