Shadow AI · Risicoprofiel

GitHub Copilot.

door GitHub · coding · Geverifieerd April 19, 2026

Leverancierssite

Base risk

2.8/ 5

LowMediumHighCritical

GitHub Copilot Individual and Pro tiers may use prompts and suggestions to improve the model; Copilot Business and Enterprise contractually exclude training and add IP indemnification, audit logs, and content filtering. Risk concentrates on copyright (suggestions occasionally reproduce GPL code verbatim) and on accidental disclosure of secrets in source files; both are reduced by Business+ tier filters.

Tier comparison

Same logo. Very different risks.

  • Free

    medium
    Trains on inputs
    Yes
    Retention
    0 days
    SSO
    No
    Admin controls
    No

  • Paid · consumer

    medium
    Trains on inputs
    Yes
    Retention
    0 days
    SSO
    No
    Admin controls
    No

  • Enterprise · team

    low
    Trains on inputs
    No
    Retention
    0 days
    SSO
    Yes
    Admin controls
    Yes

Veelgestelde vragen

Vragen over GitHub Copilot.

Does Copilot leak secrets to GitHub?

Telemetry is disabled on Business+ tiers. On Individual, prompts are processed by Microsoft/OpenAI but suggestions are not retained. Use a secrets scanner to be sure.

What about the IP indemnity?

Copilot Business and Enterprise include indemnification against third-party copyright claims when the duplicate-code filter is enabled.

Audit uw shadow AI

Draait GitHub Copilot in uw organisatie
naast tools die IT niet kent?

Voer een gratis audit van 12 minuten uit en vertrek met een blokkeerlijst die uw IT kan importeren.

Start de gratis auditMethodologie

Buzzi.ai publiceert profielen alleen ter informatie. Valideer voorwaarden altijd met de leverancier.