Revised enterprise DPA with new standard contractual clauses

GitHub has updated its privacy agreements to align with new legal requirements and its own data protection practices, following the European Union Court of Justice's invalidation of the EU-US Privacy Shield in July 2020 due to concerns over US government access to EU personal data. To ensure uninterrupted trans-Atlantic developer collaboration, GitHub has implemented standard contractual clauses (SCCs) and additional security measures, which are reflected in its updated customer data protection terms and Privacy Statement. The company has reviewed the new SCCs published by the European Commission in June 2021, which offer stronger protections and a modular approach to EU data transfers. GitHub's revised Data Protection Agreement (DPA) and Microsoft Addendum incorporate these new SCCs to enhance transparency and demonstrate compliance with privacy laws, reinforcing its commitment to safeguarding developer and customer data.