All apps

Is GitHub Copilot safe with your data?

A
GitHub Copilot icon

GitHub Copilot

GitHub (Microsoft)

78/100

Strong disclosure · medium confidence

GitHub Copilot earns an A (78/100) because it discloses its data practices clearly.

#3

of 211 apps ranked

78

score · Coding avg 47

+31

vs category average

Grade scaleA · 70–100B · 60–69C · 48–59D · 35–47F · 0–34

GitHub Copilot trains user inputs by default with opt-out available; Business/Enterprise tiers exclude inputs from training; users own outputs; limited third-party sharing (ads/analytics with opt-out); data deletion within 90 days post-cancellation; minimal security controls disclosed.

What GitHub Copilot's privacy policy and terms of service say about your data

Training Use

Inputs train models by default unless user opts out through account settings; Business/Enterprise tier excluded from foundation-model training entirely

User Rights

Full deletion right (90 days post-cancellation), data portability, access, correction, and objection rights all explicitly listed

Output Ownership

Users own outputs; GitHub does not share with third-party AI providers for their independent training

Transparency Gaps

Security controls described only as 'appropriate' without naming specific measures; no breach notification timeline; AI-log transient retention only disclosed for paid tiers

What the policy is silent or vague on

  • Not stated: shorter retention for AI conversation logs
  • Not stated: its security safeguards
  • Not stated: breach notification
  • Only partial: keeping user inputs out of model training

GitHub Copilot privacy rating

Training-data use3 of 4 disclosed
Keeps user inputs out of model training, or makes training opt-inPartial
Names a way to opt out of or into trainingDisclosed
Says whether training use differs by plan or tierDisclosed
Lets the user keep ownership of generated outputsDisclosed
Data-subject rights5 of 5 disclosed
Grants a right to access your dataDisclosed
Grants a right to delete your dataDisclosed
Offers data portability in a usable formatDisclosed
Grants a right to correct your dataDisclosed
Grants a way to object to or opt out of processingDisclosed
Retention and deletion1 of 4 disclosed
States a retention period for your dataPartial
States a deletion timeline after closure or requestDisclosed
Sets a shorter retention for AI conversation logsSilent
Commits to collecting only the data it needsPartial
Third-party sharing3 of 5 disclosed
Lists the categories of third parties it shares withDisclosed
References a sub-processor list or data processing agreementDisclosed
Does not sell or share data for advertising, or offers opt-outPartial
Names a safeguard for international data transfersDisclosed
States a standard for government and law-enforcement accessPartial
Transparency4 of 4 disclosed
Discloses that you are interacting with AIDisclosed
Marks AI-generated or synthetic outputNot applicable
Enumerates the categories of data it collectsDisclosed
Maps processing purposes to legal basesDisclosed
Is versioned and dated, with change noticeDisclosed
Sensitive data and children0 of 2 disclosed
Discloses automated decisions and a human-review pathNot applicable
Limits the use of special-category dataPartial
Governs biometric data specificallyNot applicable
States protections for children's dataPartial
Security and accountability1 of 3 disclosed
Describes its security safeguardsSilent
Commits to breach notificationSilent
Names a certification or a privacy contactDisclosed
DisclosedPartialSilentAdverseNot applicable

Details

Category
Coding
Modalities
text
Processes biometrics
No
Policy last updated
2026-04-27
Region scored
Global / US-default
Last assessed
2026-07-08

Documents examined

Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.

Is GitHub Copilot safe with your data? Grade A | AI App Trust & Transparency Index