We've moved!
You can find our new documentation site and support forum for posting questions here.

FireCloud Terms of Service

FireCloud_TeamFireCloud_Team Moderator
edited July 2018 in Quick Start Guide

Your access to and use of FireCloud is subject to the following terms and conditions, as well as all Federal laws, including, but not limited to, the Privacy Act, 5 U.S.C. 552a. By accessing and using FireCloud, you accept, without limitation or qualification, these Terms of Service.

Modification of the Agreement

The Broad Institute maintains the right to modify the Terms of Service, and may do so by posting notice of such modifications on this page. Any modification made is effective immediately upon posting the modification (unless otherwise stated). You should visit this page periodically to review the current Terms of Service.


You agree to access and use FireCloud for lawful purposes only. You are solely responsible for the knowledge of and adherence to any and all laws, statutes, rules, and regulations pertaining to your use of FireCloud.

By accessing and using FireCloud, you agree that you will:

  • Conduct only authorized business on the system.

  • Notify the Broad Institute if you believe you are being granted access that you should not have.

  • Access FireCloud using only your own individual account. Group or shared accounts are NOT permitted.

  • Maintain the confidentiality of your authentication credentials such as your password; a Broad Institute employee should never ask you to reveal your password.

  • Report any security incidents relating to lost passwords to the Broad Institute.

  • Follow proper logon/logoff procedures. You must manually logon to your session and promptly close your browser when your session is no longer active.

  • Ensure that Web browsers use Secure Socket Layer (SSL) version 3.0 (or higher) and Transport Layer Security (TLS) 1.0 (or higher). SSL and TLS must use a minimum of 256-bit, encryption.

By accessing and using FireCloud, you agree that you will NOT:

  • Use FireCloud to commit a criminal offense, or to encourage others to conduct acts that would constitute a criminal offense or give rise to civil liability.

  • Browse, search or reveal any protected data except in accordance with that which is required to perform your legitimate tasks or assigned duties.

  • Retrieve protected data, or in any other way disclose information, for someone who does not have authority to access that information.

  • Establish any unauthorized interfaces with FireCloud between systems, networks, and applications.

  • Upload any content that contains a software virus, such as a Trojan Horse or any other computer codes, files, or programs that may alter, damage, or interrupt the daily function of FireCloud and its users.

  • Post any material that infringes or violates the academic/intellectual rights of others.

  • View or use TCGA controlled access data hosted on FireCloud unless you are authorized through dbGaP.

  • Share or distribute TCGA controlled access data hosted on FireCloud with other users unless they have dbGaP authorization.


You must sign up to FireCloud under a Google-managed identity. Both private Gmail accounts and institutional Google Apps accounts are allowed. For increased security when using FireCloud, we recommend enabling 2-Step verification for your Google-managed identity.

Restrictions on the Use of Shared and Group Accounts

You cannot access FireCloud using group or shared accounts. The credentials used for authenticating to FireCloud must belong to a single individual.

Restrictions on the Use of Tutorial Workspaces

FireCloud provides tutorial workspaces preloaded with best practice analysis pipelines and example data from TCGA. These workspaces are intended for tutorial purposes only, not for computing on personal data.

You must not upload your own data sets to these workspaces, nor should you add tools (Method Configs). If you do not follow these guidelines, your Firecloud account may be deactivated.

Accessing a Government Website

Upon logging on to FireCloud, a notification message informs you that you are entering a U.S. Government website. Please review and adhere to the content in this message.

FireCloud usage may be monitored, recorded, and subject to audit, and use of FireCloud indicates consent to monitoring and recording.

Unauthorized use of FireCloud is prohibited and subject to criminal and civil penalties.

Access Levels

Your level of access to FireCloud is limited to ensure your access is no more than necessary to perform your legitimate tasks or assigned duties. If you believe you are being granted access that you should not have, you must immediately notify the Broad Institute.

Restricted Use of TCGA Controlled-Access Data

To access TCGA controlled access data, you must first request to link your FireCloud account to the eRA Commons or NIH identity under which you are granted dbGaP authorized access. If you have dbGaP authorized access, FireCloud permits read access to the TCGA controlled-access data files.

If the NIH or eRA commons identity authentication fails or the authenticated identity no longer appears in the NIH-provided whitelist, you can no longer access TCGA controlled access data files. It is your responsibility to delete any TCGA controlled-access data in your personal workspaces if you lose dbGaP authorized access. You must also refrain from distributing TCGA controlled access data to users unless they have dbGaP authorized access.

Termination of Use

We may in our sole discretion suspend/terminate your access to FireCloud without notification for violation of the Terms of Service, or for other conduct that we deem harmful/unlawful to others. We may also periodically review accounts for which a user has not logged on.

External Links

FireCloud may provide links that are maintained or controlled by external organizations. The listing of links are not an endorsement of information, products, or services, and do not imply a direct association between the Broad Institute and the operators of the outside resource links.


By accessing FireCloud, you expressly consent to monitoring of your actions and all content or data transiting or stored therein. We reserve the right to delete, move, or edit any data, which we consider to be unacceptable or inappropriate whether for legal or other reasons.

Disclaimer of Warranty

You expressly understand and agree that your use of FireCloud, or any material available through it, is at your own risk. Neither the Broad Institute nor its employees warrant that FireCloud will be uninterrupted, problem-free, free of omissions, or error-free; nor do they make any warranty as to the results that may be obtained from FireCloud.

Limitation of Liability

In no event will the Broad Institute or its employees be liable for the incidental, indirect, special, punitive, exemplary, or consequential damages, arising out of your use of or inability to use FireCloud, including without limitation, loss of revenue or anticipated profits, loss of goodwill, loss of data, computer failure or malfunction, or any and all other damages.

Broad Institute, revised 6/29/2018

Post edited by Geraldine_VdAuwera on
Sign In or Register to comment.