Compare data usage governance provisions between GitHub and Cursor. Provisions are extracted from monitored governance documents and classified by severity.
This provision clarifies the data governance structure within organizational deployments, allocating responsibility and control authority between GitHub and the organization, which affects compliance obligations and data handling authority within the enterprise context.
Consumer impact
Under this clause, members of organization or enterprise accounts are subject to data access and processing by their organization's administrator, as the organization retains data controller status and authority over member personal data while GitHub processes that data according to the organization's instructions.
Opt-out available
No opt-out available
Actual clause text
If you use GitHub as part of an organization or enterprise account, your organization's administrator may have access to your personal data. GitHub processes personal data on behalf of the organization in its capacity as a data processor, and the organization is the data controller responsible for the personal data of its members.
AI-extracted from source document. Verify against original for legal use.
This carve-out creates a distinct legal framework for commercial accounts, removing Privacy Policy protections in favor of negotiated customer agreements. This permits different data handling terms and governance structures depending on whether the account is provisioned through an employer relationship.
Consumer impact
Users with employer-provisioned accounts operate under customer agreements negotiated between their employer and Anysphere rather than under this Privacy Policy. The specific data handling practices, access rights, and protections applicable to such accounts are determined by those separate agreements rather than the terms stated in this policy document.
Opt-out available
No opt-out available
Actual clause text
Please note that this Privacy Policy does not apply where Anysphere acts as a data processor and processes personal data on behalf of commercial customers using our commercial services, for example, if your employer has provisioned a Cursor account for you to use at work. Our use of that data is governed by our customer agreements covering access to and use of those offerings.
AI-extracted from source document. Verify against original for legal use.
Stripe's arbitration clause is narrower than Amazon's in one key respect: it includes a small claims court carve-out that Amazon's clause does not. PayPal's clause is the most aggressive of the three, explicitly waiving jury trial rights in addition to class action rights. From a compliance perspective, Amazon presents the lowest risk for B2B contracts while PayPal creates the highest exposure for consumer-facing applications subject to CFPB oversight.