diff --git a/.github/workflows/cla.yml b/.github/workflows/cla.yml
new file mode 100644
index 000000000..ae6bec012
--- /dev/null
+++ b/.github/workflows/cla.yml
@@ -0,0 +1,41 @@
+name: "CLA Assistant"
+on:
+  issue_comment:
+    types: [created]
+  pull_request_target:
+    types: [opened, closed, synchronize, ready_for_review]
+
+# Explicit write permissions so the action can commit signatures and set statuses
+permissions:
+  actions: write
+  contents: write
+  pull-requests: write
+  statuses: write
+
+jobs:
+  CLAAssistant:
+    runs-on: ubuntu-latest
+    steps:
+      - name: "CLA Assistant"
+        if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the CLA Document and I hereby sign the CLA') || github.event_name == 'pull_request_target'
+        uses: contributor-assistant/github-action@v2.6.1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          # JSON file committed by the action; do not pre-create this file
+          path-to-signatures: 'signatures/version1/cla.json'
+          # Full GitHub blob URL to CLA.md committed in this repository (required)
+          path-to-document: 'https://github.com/safeinsights/management-app/blob/main/CLA.md'
+          # Branch that stores the signatures file; MUST NOT be protected
+          branch: 'main'
+          # Exempt known users/bots from signing (optional)
+          allowlist: 'dependabot[bot],bot*'
+          # Optional customizations (uncomment to use)
+          # create-file-commit-message: 'Create CLA signatures file'
+          # signed-commit-message: '$contributorName has signed the CLA in $owner/$repo#$pullRequestNo'
+          # custom-notsigned-prcomment: 'Please read and sign our CLA by replying with the signature phrase.'
+          # custom-pr-sign-comment: 'I have read the CLA Document and I hereby sign the CLA'
+          # custom-allsigned-prcomment: 'All contributors have signed the CLA.'
+          # lock-pullrequest-aftermerge: true
+          # suggest-recheck: true
+          # use-dco-flag: false
diff --git a/CLA.md b/CLA.md
new file mode 100644
index 000000000..6f6fe420c
--- /dev/null
+++ b/CLA.md
@@ -0,0 +1,14 @@
+# Contributor license agreement
+
+## Assignment of Rights
+
+By submitting any contribution to this project, you hereby irrevocably assign,
+transfer, and convey to SafeInsights all right, title, and interest in and to
+such contribution, including all copyright, patent rights, and other
+intellectual property rights therein. You represent and warrant that you have
+the legal right and authority to make this assignment, that your contribution is
+your original work or properly licensed to you, and that your contribution does
+not violate any third-party rights. This assignment covers all contributions you
+make to the project, including but not limited to source code, documentation,
+bug fixes, enhancements, and any other materials, whether submitted via pull
+request, patch, email, or any other method.