What are the institutional and regulatory implications of this document?

1) REGULATORY LANDSCAPE: The AUP engages the Digital Millennium Copyright Act (DMCA) through its intellectual property and copyright provisions, the Computer Fraud and Abuse Act (CFAA) through its prohibitions on unauthorized system access and malware distribution, and the CAN-SPAM Act and analogous international anti-spam frameworks through its bulk communications restrictions. EU-based users and GitHub's obligations toward them may engage the Digital Services Act and GDPR, particularly regard…

How does GitHub's GitHub Acceptable Use Policies affect users?

The agreement establishes a broad set of content and conduct prohibitions that apply to all GitHub users across every GitHub product and service, including restrictions on malware distribution, phishing, spam, cryptomining, intellectual property infringement, and unlawful or threatening content. Under these terms, GitHub reserves the right to remove content, restrict access, or suspend accounts at its discretion when it determines a violation has occurred, without specifying a mandatory prior-n…

How often is GitHub's GitHub Acceptable Use Policies updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when GitHub updates this document?

Yes. Monitor subscribers ($19/month) can add GitHub to their watchlist and receive same-day email alerts whenever this document or any other GitHub document changes.

CA-D-000790

GitHub Acceptable Use Policies

GitHub

Last change detected May 12, 2026 Acceptable use policy

SHA-256: 53c31545af933ab935d… 1 version captured 0 changes documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at GitHub ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

8 Total

0 High severity

7 Medium severity

1 Low severity

Summary

GitHub's Acceptable Use Policies define the conduct rules all GitHub users must follow when using any GitHub product or service, covering prohibited content types, restricted activities, and platform behavior standards. The agreement prohibits users from posting content that violates laws, infringes intellectual property, transmits malicious code, conducts phishing, generates spam, or facilitates unauthorized cryptomining, and reserves to GitHub the right to remove content or suspend accounts for violations. The policy operates as a parent document to a suite of subsidiary acceptable use sub-policies, each addressing a specific prohibited conduct category in detail.

Technical / Legal Breakdown

The GitHub Acceptable Use Policies (AUP) govern permissible conduct on GitHub's platforms and services, operating as a binding supplement to GitHub's Terms of Service and Corporate Terms of Service. The agreement states that users must not post content or engage in activity that violates applicable laws, infringes intellectual property rights, transmits malware, conducts phishing, generates unsolicited bulk communications, or uses GitHub infrastructure for cryptomining without permission; the terms also prohibit content that is sexually obscene, unlawfully discriminatory, or constitutes threats of violence. The policy asserts broad content moderation authority, including the right to remove content, restrict access, and suspend accounts for violations, with GitHub retaining sole discretion over enforcement determinations, which is a standard but operationally significant reservation of rights for developer-dependent users. The document engages frameworks including the Digital Millennium Copyright Act, the Computer Fraud and Abuse Act, and, where applicable to EU-based users, the Digital Services Act and GDPR; the FTC Act is also potentially relevant to deceptive or unfair practices claims. Compliance teams should note that the AUP's broad prohibition categories are implemented through sub-policies linked within the document, meaning full compliance assessment requires review of each subsidiary policy document alongside the master AUP.

Institutional Analysis

Institutional analysis available with Compliance

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.

Start Compliance free trial

Medium — 7 provisions

Unilateral Content Removal and Account Suspension Compare →

GitHub reserves the right to remove content or suspend account access for any violation of the Acceptable Use Policies, with no stated prior-notice requirement or mandatory appeal procedure specified in this document.

Added May 20, 2026 Standard Seen across 179 platforms
Cryptomining and Unauthorized Compute Resource Use Prohibition Compare →

The agreement prohibits using GitHub's servers for cryptocurrency mining, excessive automated bulk activity, or any form of unsolicited advertising relay, characterizing these as placing undue burden on GitHub's infrastructure.

Added May 20, 2026 Common Seen across 173 platforms
Intellectual Property Infringement Prohibition Compare →

The agreement prohibits posting content that infringes patents, trademarks, trade secrets, copyrights, rights of publicity, or other proprietary rights, covering the full range of intellectual property categories.

Added May 20, 2026 Standard Seen across 242 platforms
Malware, Exploits, and Attack Infrastructure Prohibition Compare →

The agreement prohibits uploading, hosting, or transmitting malicious code, and also prohibits using GitHub infrastructure as part of any system designed to deliver or amplify cyberattacks, including command-and-control infrastructure.

Added May 20, 2026 Common Seen across 173 platforms
Privacy, Doxxing, and Personal Information Prohibition Compare →

The agreement prohibits posting another person's personal information without their consent, characterizing such conduct as a privacy violation subject to enforcement under the AUP.

Added May 20, 2026 Standard Seen across 284 platforms
Age Restriction and Minor Protection Compare →

The agreement prohibits users under 13 from using GitHub's services and states that GitHub will terminate accounts of users determined to be under 13 immediately upon discovery.

Added May 20, 2026 Standard Seen across 284 platforms
Unlawful and Regulated Content Prohibition Compare →

The agreement prohibits posting information that is unlawful or that facilitates illegal activities, applying this restriction broadly across all content types and user contexts on the platform.

Added May 20, 2026 Common Seen across 173 platforms

Low — 1 provision

Spam, Bulk Activity, and Inauthentic Engagement Prohibition Compare →

The agreement prohibits using GitHub's systems to send spam, conduct excessive automated bulk activity, relay unsolicited advertising, or operate get-rich-quick solicitation schemes.

Added May 20, 2026 Common Seen across 173 platforms

Monitoring

GitHub has updated this document before.

Monitor includes same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →

Compliance Governance Intelligence

Need provision-level monitoring and regulatory mapping?

Compliance includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.

Start Compliance free trial

Cross-platform context

See how other platforms handle Age Restriction and Minor Protection and similar clauses.

Compare across platforms →