Policy and Legal Repository

Internet Security Research Group (ISRG) is the non-profit entity that operates the Let’s Encrypt certificate authority. Some policies that apply to Let’s Encrypt are ISRG policies, some are specific to Let’s Encrypt.

Let’s Encrypt Subscriber Agreement

ISRG Certificate Policy

ISRG Certification Practice Statement

Let’s Encrypt Privacy Policy

Let’s Encrypt Trademark Policy

ISRG Code of Conduct

ISRG Non-Discrimination Statement and Policy

ISRG Legal Transparency Reports

WebTrust Audits

Operational Audits

Readiness Audits

Certificate Problem Reports

To report private key compromise, certificate misuse, or other types of fraud, compromise, misuse, inappropriate conduct, or any other matter related to certificates, please email cert-prob-reports@letsencrypt.org.