roadmap icon indicating copy to clipboard operation
roadmap copied to clipboard
verified publisher icon github

TISAX Compliance for Dotcom and GHEC

Open github-product-roadmap opened this issue 2 years ago • 0 comments

Summary

With ISO 27001 as a foundation, GitHub is able to register as a participant in the Trusted Information Security Assessment Exchange (TISAX).

Intended Outcome

GitHub will achieve TISAX Assessment Level 2 for the assessment objectives and resulting TISAX labels of "Handling of information with high protection needs" and "Data protection". The outcome of this work is that GitHub Enterprise Cloud customers will be able to use GitHub to develop software while meeting TISAX compliance obligations.

How will it work?

GitHub GRC has already begun the registration process by registering as a TISAX Participant and we have defined an assessment scope. Next up, GRC is working with to identify a TISAX audit provider and will then undergo a TISAX assessment. The results of GitHub's assessment will then be made available to TISAX partners. Once certified, GitHub will add TISAX to customer facing documentation portals.

github-product-roadmap avatar Jul 10 '23 18:07 github-product-roadmap