Free Cybersecurity Templates

The Common Paper Cloud Service Agreement (CSA) is a clear, structured contract that defines the terms for delivering, accessing, and supporting cloud-based software between providers and customers. It is part of CommonPaper’s widely trusted library of open, lawyer-vetted standard agreements.

Basecamp's Terms of Service sets the rules for using products like Basecamp and HEY, covering account responsibilities, payments, cancellations, security, privacy, copyright, and liability. Users are responsible for account security and content, and agree not to misuse the services.

The Common Paper Service Level Agreement (SLA) is a structured, plain-language contract that defines uptime, response time, and service credit standards for cloud services, ensuring accountability and reliability between providers and customers. It is part of Common Paper’s widely trusted library of open, lawyer-vetted standard agreements.

The GitHub Cookies Policy explains how GitHub and its partners use cookies to provide core functionality, enhance security, analyse usage, and personalise user experiences across its services. It is part of GitHub’s official privacy policies, offering transparent and regularly updated details on cookie types, purposes, and retention, making it a fully trustworthy source for compliance and user awareness.

The Websites, Communications & Cookies Privacy Notice explains how Mozilla collects and uses personal data across its websites, apps, communications, campaigns, and payments, including the use of cookies, analytics, and third-party service providers. It applies broadly to Mozilla-operated domains and services and is grounded in Mozilla’s established privacy framework, clearly outlining user choices, data controls, and compliance with applicable data protection laws.

The GitHub Security Incident Response Team (SIRT) Description (RFC 2350) outlines GitHub’s official structure, mission, and procedures for handling security incidents, including vulnerability management, triage, coordination, and resolution. It is an authoritative security policy maintained by GitHub under industry-standard RFC 2350, providing trusted guidance on incident response practices for its users and constituents.

The Pocket Privacy Policy explains how Mozilla Corporation, through its Pocket business unit, collects, uses, stores, and protects personal data when users install or use the Pocket application, related services, or visit Pocket websites. It sets out the scope of data processing across supported devices and platforms, clarifies Mozilla’s role as owner and operator of the Pocket Technologies, and provides transparency on privacy practices in line with Mozilla’s broader privacy standards.

The Firefox Focus and Firefox Klar Privacy Notice explains how Mozilla processes data to provide, secure, and improve its privacy-focused mobile browsers, including what information is handled locally on users’ devices, what limited data may be shared, and the choices and rights available to users. Issued by Mozilla, a globally recognised and trusted organisation with a strong track record in privacy and open-source software, this notice is the authoritative source for understanding data practices specific to Firefox Focus and Klar.

The Firefox Private Network (Beta) Privacy Notice describes what account, technical, location, and interaction data is collected and shared when using Mozilla’s encrypted browsing extension, including details on how the service operates with a Firefox Account. It is issued by Mozilla and aligned with the Mozilla Privacy Policy, with clearly documented third-party roles (such as Cloudflare and Stripe) and contractual safeguards that define how data is handled and protected.

The Thunderbird Privacy Notice explains how data is collected, processed, and shared across Thunderbird desktop and mobile applications to support email, calendar, add-ons, updates, and security features while keeping message content and core personal data stored locally on the user’s device. It is issued by MZLA Technologies Corporation, a Mozilla subsidiary, and aligns with Mozilla’s broader privacy framework, making it suitable for assessing privacy practices in open-source, user-controlled communication software.