[Alupis]

Just curious, why not have just a single account?

Your private repo's and contributions are not made public, so there's no "risk" involved.

[shampine]

I think a lot of companies forced this because for a while the api permissions weren't granular enough when dealing with private repos on organizations. They added the "Third-party application access policy" sometime in the last year or two. I might be wrong though.