Effective date: October 2, 2020
O GitHub fornece um grande acordo de transparência em relação à forma como usamos seus dados, como os coletamos e com quem compartilhamos. Para tanto, nós fornecemos esta página, que detalha nossos subprocessadores, como usamos cookies, e onde e como executamos qualquer rastreamento no GitHub.
Subprocessadores GitHub
Quando compartilhamos suas informações com terceiros subprocessadores, tais como nossos fornecedores e provedores de serviços, permanecemos responsáveis por elas. Trabalhamos muito duro para manter sua confiança quando trazemos novos fornecedores, e exigimos que todos os fornecedores se submetam a contratos de proteção de dados conosco que restringem seu processamento de Informações Pessoais dos Usuários (conforme definido na Declaração de Privacidade).
| Nome do subprocessador | Descrição do processamento | Local do Processamento | Localização corporativa |
|---|---|---|---|
| Automattic | Serviço de blogs | Estados Unidos | Estados Unidos |
| AWS Amazon | Hospedagem de dados | Estados Unidos | Estados Unidos |
| Braintree (PayPal) | Processador de pagamento de assinatura com cartão de crédito | Estados Unidos | Estados Unidos |
| Clearbit | Serviço de enriquecimento de dados de marketing | Estados Unidos | Estados Unidos |
| Discourse | Provedor de software do fórum comunitário | Estados Unidos | Estados Unidos |
| DiscoverOrg | Serviço de enriquecimento de dados de marketing | Estados Unidos | Estados Unidos |
| Eloqua | Automatização da campanha marketing | Estados Unidos | Estados Unidos |
| Google Apps | Infraestrutura interna da empresa | Estados Unidos | Estados Unidos |
| Google Analytics | Analytics and performance | Estados Unidos | Estados Unidos |
| LinkedIn Navigator | Serviço de enriquecimento de dados de marketing | Estados Unidos | Estados Unidos |
| Magic Robot | Relatórios de campanha (Complemento para Vendas) | Estados Unidos | Estados Unidos |
| MailChimp | Fornecedor de serviços de correio para emissão de bilhetes a clientes | Estados Unidos | Estados Unidos |
| Mailgun | Provedor de serviços de correio transacional | Estados Unidos | Estados Unidos |
| Microsoft | Microsoft Services | Estados Unidos | Estados Unidos |
| Monday.com | Colaboração da equipe e plataforma de gerenciamento de projetos | Estados Unidos | Israel |
| Nexmo | Provedor de notificação de SMS | Estados Unidos | Estados Unidos |
| Oracle | Sistema financeiro corporativo | Estados Unidos | Estados Unidos |
| Salesforce.com | Gerenciamento de relacionamento com clientes | Estados Unidos | Estados Unidos |
| Sendgrid | Provedor de serviços de correio transacional | Estados Unidos | Estados Unidos |
| Sentry.io | Provedor de monitoramento de aplicativo | Estados Unidos | Estados Unidos |
| Stripe | Provedor de pagamentos | Estados Unidos | Estados Unidos |
| Twilio | Provedor de notificação de SMS | Estados Unidos | Estados Unidos |
| Zendesk | Sistema de bilhetagem de suporte ao cliente | Estados Unidos | Estados Unidos |
| Zuora | Sistema de faturamento corporativo | Estados Unidos | Estados Unidos |
Quando trouxermos um novo subprocessador que lida com as Informações Pessoais de nossos Usuários, ou removermos um subprocessador, ou mudarmos a forma como usamos um subprocessador, atualizaremos esta página. Se você tiver dúvidas ou preocupações sobre um novo subprocessador, ficaremos felizes em ajudar. Entre em contato conosco via Formulário de contato com a equipe de privacidade.
Cookies no GitHub
GitHub uses cookies and similar technologies (collectively, “cookies”) to provide and secure our websites, as well as to analyze the usage of our websites, in order to offer you a great user experience. Please take a look at our Privacy Statement if you’d like more information about cookies, and on how and why we use them.
Since the number and names of cookies may change,the table below may be updated from time to time.
| Service Provider | Cookie Name | Descrição | Expiration* |
|---|---|---|---|
| GitHub | app_manifest_token | This cookie is used during the App Manifest flow to maintain the state of the flow during the redirect to fetch a user session. | five minutes |
| GitHub | cookie-preferences | This cookie is used to track user cookie preferences. | one year |
| GitHub | _device_id | This cookie is used to track recognized devices. | one year |
| GitHub | dotcom_user | This cookie is used to signal to us that the user is already logged in. | one year |
| GitHub | _gh_ent | This cookie is used for temporary application and framework state between pages like what step the customer is on in a multiple step form. | two weeks |
| GitHub | _gh_sess | This cookie is used for temporary application and framework state between pages like what step the user is on in a multiple step form. | sessão |
| GitHub | gist_oauth_csrf | This cookie is set by Gist to ensure the user that started the oauth flow is the same user that completes it. | deleted when oauth state is validated |
| GitHub | gist_user_session | This cookie is used by Gist when running on a separate host. | two weeks |
| GitHub | has_recent_activity | This cookie is used to prevent showing the security interstitial to users that have visited the app recently. | one hour |
| GitHub | __Host-gist_user_session_same_site | This cookie is set to ensure that browsers that support SameSite cookies can check to see if a request originates from GitHub. | two weeks |
| GitHub | __Host-user_session_same_site | This cookie is set to ensure that browsers that support SameSite cookies can check to see if a request originates from GitHub. | two weeks |
| GitHub | logged_in | This cookie is used to signal to us that the user is already logged in. | one year |
| GitHub | marketplace_repository_ids | This cookie is used for the marketplace installation flow. | one hour |
| GitHub | marketplace_suggested_target_id | This cookie is used for the marketplace installation flow. | one hour |
| GitHub | _octo | This cookie is used by our internal analytics service to distinguish unique users and clients. | one year |
| GitHub | org_transform_notice | This cookie is used to provide notice during organization transforms. | one hour |
| GitHub | private_mode_user_session | This cookie is used for Enterprise authentication requests. | two weeks |
| GitHub | saml_csrf_token | This cookie is set by SAML auth path method to associate a token with the client. | until user closes browser or completes authentication request |
| GitHub | saml_csrf_token_legacy | This cookie is set by SAML auth path method to associate a token with the client. | until user closes browser or completes authentication request |
| GitHub | saml_return_to | This cookie is set by the SAML auth path method to maintain state during the SAML authentication loop. | until user closes browser or completes authentication request |
| GitHub | saml_return_to_legacy | This cookie is set by the SAML auth path method to maintain state during the SAML authentication loop. | until user closes browser or completes authentication request |
| GitHub | tz | This cookie allows your browser to tell us what time zone you're in. | sessão |
| GitHub | user_session | This cookie is used to log you in. | two weeks |
| Google Analytics** | _ga | This cookie is used by Google Analytics. | two years |
| Google Analytics** | _gat | This cookie is used by Google Analytics. | one minute |
| Google Analytics** | _gid | This cookie is used by Google Analytics. | one day |
* The expiration dates for the cookies listed below generally apply on a rolling basis.
** We use Google Analytics as a third party analytics service to collect information about how our website performs and how our users, in general, navigate through and use GitHub. This helps us evaluate our users' use of GitHub, compile statistical reports on activity, and improve our content and website performance.
You can control your Google Analytics cookie preferences through our cookie preference link located at the footer of our website. In addition, Google provides further information about its own privacy practices and offers a browser add-on to opt out of Google Analytics tracking.
(!) Please note certain pages on our website may set other third party cookies. For example, we may embed content, such as videos, from another site that sets a cookie. While we try to minimize these third party cookies, we can’t always control what cookies this third party content sets.
Rastreamento no GitHub
"Do Not Track" (DNT) is a privacy preference you can set in your browser if you do not want online services to collect and share certain kinds of information about your online activity from third party tracking services. O GitHub responde aos sinais de DNT dos navegadores e segue o padrão do W3C de resposta aos sinais de DNT. If you would like to set your browser to signal that you would not like to be tracked, please check your browser's documentation for how to enable that signal. There are also good applications that block online tracking, such as Privacy Badger.
If you have not enabled DNT on a browser that supports it, cookies on some parts of our website will track your online browsing activity on other online services over time, though we do not permit third parties other than our analytics and service providers to track GitHub users' activity over time on GitHub. We have agreements with certain vendors, such as analytics providers, who help us track visitors' movements on certain pages on our website. Only our vendors, who are collecting personal information on our behalf, may collect data on our pages, and we have signed data protection agreements with every vendor who collects this data on our behalf. We use the data we receive from these vendors to better understand our visitors' interests, to understand our website's performance, and to improve our content. Any analytics vendor will be listed in our subprocessor list, and you may see a list of every page where we collect this kind of data below.