All GitLab team-members sign a code of business conduct acknowledgement at the time of hire and annually thereafter.
The aim of this control is help ensure that all GitLab team-members are aligned on the values of the organization. The purpose of this alignment is to demonstrate to any external auditors that we hold all GitLab team-members to this same standard of conduct.
This control applies to all GitLab team-members and contractors.
People Ops are responsible for deploying the process to ensure every GitLab team member has provided their signed acknowledgement of the code of conduct in the current year. All GitLab team members are responsible for reviewing and signing the GitLab Business Ethics and Code of Conduct.
Team members are required to review the GitLab Business Ethics and Code of Conduct and upload their signed acknowledgment upon completion at the time of hire and annually thereafter. The Code of Conduct is linked from the onboarding issue template as part of the new hire tasks. The 2020 Code of Conduct Training has been rolled out. Legal and Security is consulted for the content.
For audit evidence of compliance, we need to be able to demonstrate that all team members have signed the Business Ethics and Code of Conduct acknowledgement.
Non-public information relating to this security control as well as links to the work associated with various phases of project work can be found in the Code of Conduct Training control issue.