Accessing compliance reports for your enterprise

In this article

You can access GitHub's compliance reports, such as our SOC reports and Cloud Security Alliance CAIQ self-assessment (CSA CAIQ), for your enterprise.

Who can use this feature

Enterprise owners can access compliance reports for the enterprise.

About GitHub's compliance reports

You can access GitHub's compliance reports in your enterprise settings.

  • SOC 1, Type 2
  • SOC 2, Type 2
  • Cloud Security Alliance CAIQ self-assessment (CSA CAIQ - Level 1)
  • ISO/IEC 27001:2013 certification
  • ISO/IEC 27701:2019 (Processor) certification
  • ISO/IEC 27018:2019 certification
  • Cloud Security Alliance STAR certification (CSA STAR - Level 2)
  • GitHub.com Services Continuity and Incident Management Plan

Accessing compliance reports for your enterprise

  1. In the top-right corner of GitHub.com, click your profile photo, then click Your enterprises.

  2. In the list of enterprises, click the enterprise you want to view.

  3. In the enterprise account sidebar, click Compliance.

  4. Under "Resources", to the right of the report you want to access, click Download or View.

    Screenshot of the "Resources" section of the "Compliance" page. Next to a report, a button, labeled "Download," is outlined in orange.

Further reading