This document provides a list of subprocessors authorized by GitHub to process customer and personal data on behalf of GitHub for its Enterprise services. The list, governed by the GitHub Data Protection Agreement, helps Enterprise customers understand which subprocessors may have access to their data, along with their processing descriptions and locations. GitHub updates the list with new subprocessors 30 days prior to authorization and offers a way to subscribe for notifications of such updates. The document can be used by Enterprise customers to assess data privacy and compliance with GDPR standards.