Data Security & Privacy Statement

Overview

Tryble apps for Jira have been designed to minimise additional considerations beyond existing Atlassian's Cloud Security Practices & Privacy Policy. This has been achieved through using an approach to storing your application data 'without a database', resulting in the information you save whilst using tryble apps staying within Atlassian's Cloud data centres.

Data

We collect and store only the mandatory bare-minimum Atlassian App Registration data during installation of a tryble app. An example of this data is replicated below from Atlassian's guides:

"key": "installed-addon-key", "clientKey": "unique-client-identifier", "sharedSecret": "a-secret-key-not-to-be-lost", "serverVersion": "server-version", "pluginsVersion": "version-of-connect", "baseUrl": "http://example.atlassian.net", "productType": "jira", "description": "Atlassian Jira at https://example.atlassian.net", "eventType": "installed"

Whilst tryble app reads and processes your data stored against Jira problems, possibilities and application entities, it is not stored anywhere by us. You retain all rights to your innovation data.

Storage

The mandatory installation data is stored and used to secure communication between your Jira instance and our application servers. Our application servers and data stores are managed on Heroku Cloud Platform, which have independently validated security best practices (e.g. ISO 27001, SOC Type 1 Attestation, etc.).

Access

The tryble support team may access this data stored on our Heroku instances for the purposes of monitoring service health, performing application maintenance or upon customer request for support. Only authorised employees and company officers have access to tryble application and data servers through two-factor authentication.

Privacy

We may collect other general contact information (e.g. name, email, phone numbers) from those who communicate with tryble directly (e.g. contact us form, customer support portal, etc.). This information is used to assist you as required and is not shared with or sold to other organisations for commercial purposes.

Exceptions to this include when we have your permission or if necessary to share in order to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of Terms of Service, or as otherwise required by law.