This part of the documentation relates to Cloud Native Synchronizer.
If you use Jira Server and Azure DevOps Server / TFS go to Data Policy for On premises Synchronizer
We take data security very seriously so we use only trusted service providers with the highest security standards. On this page, you will find details on how we secure our clients' data. If you think something is missing or you have any security related questions please let us know at Spartez Software Support Portal or firstname.lastname@example.org.
PROCESSOR - providers with this label are our data processors as defined by European General Data Protection Regulation (GDPR).
Spartez Software is the data controller, as defined in GDPR.
Spartez Software as the data controller and data processors guarantee that all servers used for data processing are located in the European Union.
Cloud SQL stores configuration data for synchronization profiles:
One of the strategies to synchronize fields between Jira and Azure is to create a value mapping.
A value mapping, is, essentially, a dictionary that maps specific field values in one system to specific field values in another system.
Value mappings are configured by the user and are stored as a part of the synchronization profile in the Cloud SQL database, separately for each customer.
Synchronizer will not prevent the user from putting PII and UGC into value mappings.
This is essential to achieve useful and meaningful mappings for fields like Assignee / Assigned To (that contains users), components, area path, etc.
Datastore stores operational data, that is generated once a synchronization profile is enabled:
We store application and platform logs to troubleshoot and analyze incidents.
Logs might contain:
Retention period is 30 days.
Synchronizer does not add any UGC to logs during normal operation, however, we reserve the right to log such data when errors occur and to temporarily extend logging with such data when it is necessary to troubleshoot an incident.
For a better understanding of our clients, we collect various statistics. These statistics tell us how we should develop our product to make our clients happy.
What is collected
The following table is intended to give you a complete understanding of the policy that we use to collect analytics data.
This table is not intended to list all the possible events collected by the add-on. It is however intended to list all rules and exceptions from those rules so that you are able to assess whether something can be collected or not.
Operational metrics are not anonymized and are correlated with the customer's tenant key in Jira.
This is required for operational purposes, so that we can identify and attribute a portion of cloud hosting and processing costs to a specific customer.
These metrics do not contain any personally identifiable information, nor any user generated content.
We track the usage of certain features in Jira plugin page, as well as in Synchronizer user interface. For example:
These events do not contain any personally identifiable information, nor any user generated content.
Cloud storage stores backups of data held in Datastore and Cloud SQL.
Retention period is 7 days.
S3 stores backups of data stored in Google Cloud storage.
Retention period is 30 days.
RDS stores data provided during the installation handshake. Stored keys authenticate us to clients' Jira instances.