This Code of Conduct outlines the expectations for handling confidential information within the GitHub repositories of Código Conciso Lda. Adherence to these guidelines is essential to maintain trust, safeguard proprietary information, and comply with legal obligations.
By contributing to each project, you accept the Code of Conduct.
This policy applies to all employees, contractors, collaborators, and external contributors who have access to Código Conciso Lda's GitHub repositories.
- Confidentiality First: All non-public information, including but not limited to code, documentation, designs, and discussions, must be treated as confidential and proprietary to Código Conciso Lda.
- Need-to-Know Basis: Access to confidential information should only be granted to individuals who need it to perform their roles.
- Use GitHub accounts only for authorized purposes.
- Ensure your GitHub credentials are secure and not shared.
- Avoid posting sensitive information, such as passwords, API keys, or personally identifiable information (PII), in public or private repositories.
- Use encrypted environment variables or secure vaults for storing secrets.
- All repositories must be correctly configured according to their privacy requirements (e.g., private repositories for internal projects).
- Public repositories must undergo approval and review to ensure no sensitive information is inadvertently disclosed.
- Do not share repository access, clone links, or confidential content with unauthorized individuals or organizations.
- Obtain written permission from the management before sharing any repository content with third parties.
- Use private GitHub discussions or approved secure communication channels for discussing sensitive matters.
- Avoid including sensitive details in commit messages.
- Sharing login credentials with others.
- Posting sensitive information, such as proprietary algorithms, source code, or business strategies, without authorization.
- Downloading or replicating repositories for personal use without explicit approval.
- Using company repositories for non-company-related projects or activities.
- Report any suspected breaches of confidentiality to the management or the designated security team immediately.
- Use GitHub issues or other approved channels only for technical or operational concerns, avoiding the disclosure of sensitive information.
Violations of this Code of Conduct may result in disciplinary action, including but not limited to:
- Revocation of repository access.
- Termination of contracts.
- Legal action, depending on the severity of the breach.
This Code of Conduct will be reviewed periodically to ensure its relevance and effectiveness. Updates will be communicated to all contributors.
By accessing Código Conciso Lda's GitHub repositories, you acknowledge that you have read, understood, and agree to abide by this Code of Conduct.
Código Conciso Lda
NIF: 517140217
Address: Praça do Marquês de Pombal 14, office 201
Lisbon, Lisboa, 1050-162
Portugal
Tel: +351 21 123 4008