Compliance

Compliance at UiPath

At UiPath, compliance is treated seriously. We make efforts every day to make sure compliance is integrated into our processes and behaviours.

We strongly encourage our employees and our partners (customers, resellers, agents, suppliers, etc.) to act in compliance with the applicable legislation and with the UiPath Code of Conduct.

  • UiPath Global Code of Conduct

    The Internal Code of Conduct is applicable to all employees, freelancers, those employed by carriers or other contingent workers acting on behalf of UiPath or having access to UiPath systems including its subsidiaries and affiliates to ensure they act in good faith, with integrity and consistent with the Company’s values in order to maintain effective trust and credibility with our employees, customers, business partners and communities in which we operate.

    The UiPath Internal Code of Conduct is available here.

  • Report Ethics & Compliance Concerns

    Any breach of the UiPath Code of Conduct, UiPath policies or the law is taken seriously. Any such concerns should be reported at legal.compliance@uipath.com.

    If you wish to report anonymously you can use the following means:

  • Global Partner Code of Conduct

    This Global Partner Code of Conduct (the “Code”) sets out our expectations and defines the minimum standards of business conduct and business practices applicable to all UiPath clients, resellers, consulting partners, vendors, OEMs, suppliers, agents, entities and/or individuals who do business with or on behalf of UiPath (the “Partners”).

    All Partners are expected to comply with this Code of Conduct.

    The Global Partner Code of Conduct is available here.

  • Privacy & Security Compliance

    UiPath maintains industry standard security measures as further detailed in the Security section of the Trust Portal.

  • Anti-Bribery and Anti-Corruption Statement

    UiPath adheres to a Zero Tolerance approach towards corruption and bribery. We do not bribe and cannot be bribed, and we do not engage in situations that might leave the impression of corrupt practices.

    To make sure that these standards reach all our personnel, we created an Anti-Bribery program which consists of an Anti-Bribery Policy that is published and disseminated internally; an annual training for all personnel, making sure that Anti-Bribery provisions are always included in the agreements we undertake.

    Our policy specifically references that all Gifts and Hospitalities must be modest, transparent, of low value and in accordance with the laws. UiPath prohibits the offering of anything, regardless of the value, with the corrupt intention to obtain an unfair advantage for UiPath.

  • Anti-Slavery and Anti-Human Trafficking Statement

    UiPath recognises the seriousness and importance of combatting modern slavery and human trafficking. With respect to its employees and the operations of its business, UiPath is committed to ensuring the highest standards of welfare, safety and business practice, in accordance with all relevant legislation.

    The Anti-Slavery and Anti-Human Trafficking Statement is available here.

  • Export Control

    UiPath is keen on complying with export control regulations and therefore we expect every 3rd party we do business with to abide by all export control regulations as set forth by (i) the U.S. Department of Commerce Export Administration Regulations (EAR), U.S. Department of State International Traffic in Arms Regulations (ITAR) or other requirements of the U.S. Government; (ii) European Commission regulations; (iii) United Nations Security Council resolutions (the “Export Control Regulations”) regulating the export and reexport of the UiPath RPA Platform. We also expect our business partners not to be named on any Export Control Regulations list of restricted parties and not to be involved in dealings with entities and individuals that are sanctioned or that are located in countries subject to trade embargoes or economic sanctions.

  • Equal Opportunity Employer

    UiPath is an equal opportunity employer and prohibits discrimination and harassment of any kind. We are committed and expect our Partners (i) to offer equal employment opportunity for all job applicants and employees, (ii) to provide all employees a work environment free of discrimination and harassment of any kind and (iii) to take all employment related decisions without regard to race, color, religion or belief, national, social or ethnic origin, sex, pregnancy, age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by any and all similar laws.

  • Exclusion of Anti-Social Forces

    We maintain an adequate policy for exclusion of anti-social forces in Japan. The latest version is available here.

  • Safe Harbor Statement

    Some UiPath materials may contain forward-looking statements. Forward-looking statements include all statements that are not historical facts, and in some cases, can be identified by terms such as “anticipate,” “believe,” “estimate,” “expect,” “intend,” “may,” “might,” “plan,” “project,” “will,” “would,” “should,” “could,” “can,” “predict,” “potential,” “continue,” or the negative of these terms, and similar expressions that concern our expectations, strategy, plans or intentions. By their nature, these statements are subject to numerous risks and uncertainties, including factors beyond our control, that could cause actual results, performance or achievement to differ materially and adversely from those anticipated or implied in the statements. Although our management believes that the expectations reflected in our statements are reasonable, we cannot guarantee that the future results, levels of activity, performance or events and circumstances described in the forward-looking statements will be achieved or occur. Recipients are cautioned not to place undue reliance on these forward-looking statements, which speak only as of the date such statements are made and should not be construed as statements of fact.

    This information is subject to change at any time without prior notice. Actual results and future plans may differ significantly as a result of, among other things, changes in product strategy. This presentation is not a commitment to deliver any material, or functionality. Any purchase of software by customers should neither be contingent on the delivery of any future functionality or features, nor dependent on any oral or written public comments made by UiPath regarding future functionality or features.

AI compliance

UiPath is committed to delivering trustworthy, responsible AI and to meeting the requirements of relevant AI regulatory frameworks, including the EU Artificial Intelligence Act (EU AI Act).

To support this commitment, UiPath has implemented a comprehensive AI governance framework grounded in international best practices. This framework includes:

  • Internal AI policies and guidelines

  • Responsible AI processes

  • Risk management and evaluation procedures

  • AI-specific training programs

Our approach is aligned with ISO/IEC 42001, the OECD AI Principles, and with EU legislation such as the EU AI Act.

UiPath also maintains dedicated privacy, security, and AI governance teams to ensure that our AI systems are designed, deployed, and operated responsibly throughout their lifecycle.

UiPath is also part of the EU AI Pact initiative, which enables the sharing of best practices and know how to support compliance with the EU AI Act.

  • Is UiPath compliant with the EU AI Act?

    UiPath has developed internal policies, processes, and controls designed to support compliance with the EU AI Act. We continuously monitor regulatory developments and adapt our practices to ensure that our AI systems meet applicable legal obligations.

  • How does UiPath qualify under the EU AI Act?

    UiPath is a provider of AI systems, which integrate both proprietary models and third-party LLMs models. However, not all UiPath products qualify as AI systems under the EU AI Act.

    • UiPath is not a provider of general-purpose AI models (GPAI).

    • When integrating third-party large language models (LLMs) or GPAIs, UiPath is considered a downstream provider.

    • UiPath proprietary models are task-specific and do not meet the definition of general-purpose AI.

    We are transparent about the availability and configuration of our AI features. For more information, see Customer Data Usage with Cloud Products

  • Does UiPath fine-tune third-party LLMs?

    No. UiPath does not fine-tune third-party large language models (LLMs).

  • What is UiPath stance on prohibited AI practices?

    UiPath does not place on the market AI systems that engage in prohibited practices as defined in Article 5 of the EU AI Act.

    • Our products are configurable and can be deployed in a way that supports customer-specific compliance requirements.

    • We expect customers to use UiPath AI systems in accordance with applicable laws and UiPath acceptable use policies.

  • Do UiPath products make automated decisions?

    UiPath automations are highly configurable and support human validation and oversight.

    • UiPath products do not make out-of-the-box automated decisions that directly impact individuals

    • Customers retain control over how and when decisions are made or escalated.

    • Customers are advised to implement human-in-the-loop controls when designing their automations.

  • Can customers govern AI usage in UiPath products?

    Yes. Most UiPath products can be used without their generative AI integrations, and some products allow customers to bring their own model subscriptions. Customers can govern the use of Ai features through UiPath AI Trust Layer. More information can be accessed here: Customer Data Usage with Cloud Products

Explore other topics

Subscribe to UiPath Trust Center updates

Receive announcements regarding security advisories, and legal or policy updates.