Users should only need to agree to terms of service and privacy policy once (not 4 different times)

Problem

Currently users agree to our company Terms of Service (ToS) in 4 different areas of the application:

When they signup for a GitLab account
When they signup for an account at customers.gitlab.com
When they purchase a paid package
When they renew their paid package

Asking them to agree to a ToS in so many places creates the idea that at each point the user is committing to a new agreement and creates an unnecessary barrier to accomplishing their goal. Additionally, users concerned about security and data collection may spend time reviewing the ToS to see if purchasing a license from GitLab changes the underlying behavior of the application.

Solution

Users should only need to agree to our Terms of Service once, when they create a GitLab user. If any changes to our terms of service are made, we can notify the user via email, but otherwise we and the user should consider their original terms unchanged and should therefore not need to continually agree to them.

As per Tim's comment: #14782 (comment 213540717)

we should remove the request...

When they purchase a paid package

When they renew their paid package

Edited Sep 19, 2019 by Luca Kisielius