Free Data Governance Templates

The Common Paper Service Level Agreement (SLA) is a structured, plain-language contract that defines uptime, response time, and service credit standards for cloud services, ensuring accountability and reliability between providers and customers. It is part of Common Paper’s widely trusted library of open, lawyer-vetted standard agreements.

The Common Paper Data Processing Agreement (DPA) is a standard agreement that explains how personal data should be handled between controllers and processors and makes sure it follows GDPR, CCPA, and other privacy laws. It is part of Common Paper’s trusted library of open, lawyer-checked standard agreements.

The BVCA Entity Tax Information Form is used to declare an entity’s tax residency details in compliance with the OECD Common Reporting Standard (CRS) and Foreign Account Tax Compliance Act (FATCA) regulations. It is part of BVCA’s widely trusted library of open, lawyer-vetted compliance forms.

This letter template allows an employer or organization to formally request medical information from a worker's doctor. It is used to gather details for managing sick pay, planning work, or providing necessary support to the worker. The template ensures that all requests are made with the worker's explicit permission.

The BVCA Controlling Person Form is used to declare a Controlling Person's tax residency status and provide Taxpayer Identification Numbers (TINs) to financial institutions, supporting compliance with international tax reporting standards like the OECD Common Reporting Standard (CRS) and FATCA. It is part of BVCA’s widely trusted library of open, lawyer-vetted compliance forms.

This document is an Equality and Diversity Monitoring Form template designed to help an organization collect anonymous data on the diversity of its job applicants or existing workforce. Its main purpose is to ensure the organization meets the aims of its equality policy and complies with the Equality Act 2010. The information provided is voluntary, confidential, and used solely for monitoring purposes.

The Seedsummit Privacy Policy explains how a company collects, uses, shares, and stores personal data in compliance with UK data protection laws. It is useful for informing customers of their data rights and ensuring the company meets its legal obligations under the UK GDPR.

The GitHub Cookies Policy explains how GitHub and its partners use cookies to provide core functionality, enhance security, analyse usage, and personalise user experiences across its services. It is part of GitHub’s official privacy policies, offering transparent and regularly updated details on cookie types, purposes, and retention, making it a fully trustworthy source for compliance and user awareness.

The Thunderbird “About Your Rights” document outlines the permissions granted to users under the Mozilla Public License, including the ability to use, modify, and redistribute Mozilla Thunderbird and its source code. It is issued by Mozilla and is directly grounded in the Mozilla Public License, with a reference to Mozilla’s official Thunderbird Privacy Policy.

The Websites, Communications & Cookies Privacy Notice explains how Mozilla collects and uses personal data across its websites, apps, communications, campaigns, and payments, including the use of cookies, analytics, and third-party service providers. It applies broadly to Mozilla-operated domains and services and is grounded in Mozilla’s established privacy framework, clearly outlining user choices, data controls, and compliance with applicable data protection laws.