GitHub has SOC 1 and SOC 2 Type 2 reports
GitHub Enterprise Cloud recently finished a security audit with the release of SOC 1 and 2 Type 2 reports.

GitHub continues to invest in security best practices to make sure your data stays safe, your developers are productive, and your team can focus on solving problems. Today we’re excited to share that GitHub has achieved both the AICPA Service Organization Controls (SOC) 1 and SOC 2 Type 2 compliance for GitHub Enterprise Cloud.
For our international customers, we’ve maintained compliance with two IAASB International Standards on Assurance Engagements: the ISAE 3000 and 3402.
If you are currently using GitHub Enterprise Cloud, you may request copies of the Type 2 audit reports through your support team. The audits do not apply to GitHub Enterprise Server.
Learn more about Service Organization Controls reporting at GitHub
Our focus on your security
We’re proud of this milestone, but security is an ongoing effort. GitHub’s information security program is continually focused on providing the best software development platform for engineers around the world. We’re committed to providing GitHub Enterprise Cloud customers and their auditors with appropriate levels of assurance that their data is safe and secure on GitHub.com. The SOC and ISAE reports, our FedRAMP Tailored LiSaaS ATO, and the Cloud Security Alliance CAIQ are just a few ways we assure our safeguarding of your data.
Tags:
Written by
Related posts

Explore the best of GitHub Universe: 9 spaces built to spark creativity, connection, and joy
See what’s happening at Universe 2025, from experimental dev tools and career coaching to community-powered spaces. Save $400 on your pass with Early Bird pricing.

Agents panel: Launch Copilot coding agent tasks anywhere on GitHub
Delegate coding tasks to Copilot and track progress wherever you are on GitHub. Copilot works in the background, creates a pull request, and tags you for review when finished.

Q1 2025 Innovation Graph update: Bar chart races, data visualization on the rise, and key research
Discover the latest trends and insights on public software development activity on GitHub with the quarterly release of data for the Innovation Graph, updated through March 2025.