A web-based platform that provides version control and collaboration tools for software development, allowing developers to store, manage, and track changes to code repositories. The service hosts millions of open source and private software projects, making it a critical infrastructure for the global software development community. Its terms of service and privacy policies directly impact how developers can use the platform, share code, and control access to their intellectual property.
High — provisions that significantly limit your legal rights, authorize broad data collection, or create material financial exposure. Medium — provisions worth knowing about but with partial protections or limited scope. Low — standard terms with minimal consumer impact.
The policy states GitHub relies on Standard Contractual Clauses for international transfers, which is the standard legal mechanism post-Schrems II; however, adequacy of these transfers depends on sup…
The policy authorizes use of user data for AI product development, which may include training or improving machine learning models; the full scope of this use is not entirely defined within this docu…
The policy authorizes transfer of personal data to Microsoft's broader corporate family, meaning data collected by GitHub may be processed under Microsoft's separate privacy terms and for Microsoft's…
This provision clarifies the data governance structure within organizational deployments, allocating responsibility and control authority between GitHub and the organization, which affects compliance…
The clause establishes the operational scope of GitHub's content handling authority when repositories are set to public visibility, defining what technical and display functions GitHub may perform wi…
GitHub's Acceptable Use Policies define the conduct rules all GitHub users must follow when using any GitHub product or service, covering prohibited content types, restricted activities, and platform behavior standards. …
This is the GitHub Copilot Trust Center, a public-facing compliance disclosure portal that lists GitHub Copilot's security certifications and makes selected audit reports available on request. The most operationally significant …
This document establishes GitHub's data collection, processing, and sharing practices for users of its platform. GitHub collects personal identifiers (name, email address), payment information, device identifiers, IP addresses, browsing activity, …
This document establishes the terms governing user accounts and content hosted on GitHub.com, including rights to publicly posted content and service obligations. The agreement authorizes GitHub to exercise a license …
GitHub updated its Privacy Statement on April 28, 2026 to explicitly authorize collection and use of AI outputs from user-provided content, and to broaden the scope of personal data sharing …
View change record →GitHub added a new section titled 'AI Features, Training, and Your Data' to its Terms of Service on April 28, 2026, establishing specific terms governing GitHub Copilot and other AI …
View change record →GitHub substantially revised its Terms of Service on April 19, 2026, with 54 sentences modified, 40 removed, and 4 added across the 332-sentence document. The scale of revision suggests comprehensive …
View change record →ConductAtlas tracks 5 GitHub documents including terms of service, privacy policy, and other governance documents. Every document is captured daily with cryptographic verification.
GitHub has made 4 policy changes in the past 12 months across the documents ConductAtlas tracks, including 1 classified as high severity.
ConductAtlas has classified 68 provisions across GitHub's tracked documents. 9 are rated high severity, 42 medium, and 17 low.
Yes. Monitor subscribers ($19/month) can add GitHub to their watchlist and receive same-day email alerts whenever any tracked document changes.