Versions Compared

Version Old Version 1 New Version 2
Changes made by

Yuliia Borivets

Yuliia Borivets

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Certifications

...

Fortified.png

Cloud Fortified

The Cloud Fortified Apps Program aims to serve our largest customers and those with more business-critical operating requirements for apps.

BugBounty.png

Marketplace Security Bug Bounty Program

A bug bounty program is one of the most powerful post-production tools to help detect vulnerabilities in applications and services.

Frame-98.svg

Security Assessments

The term “security assessment” refers to any activity intended to determine, evaluate or test the security features and controls of Atlassian’s products and services.

Premium-partner.svg

SaaSJet is a Platinum Marketplace Partner

What does “Platinum partner” mean? According to annual gross sales ("Purchase Price" in Marketplace reports), a minimum $1M annual gross sales comprised a minimum of 35% from the cloud.

Security

...

image-20240410-182718.png

System and Organization Controls (SOC) 2 (in progress)

SOC 2 reports are independent third-party examination reports demonstrating how an organization achieves key compliance controls and objectives.

  • What Atlassian says about Trust Service Criteria (TSC) - read more

  • We are working on SOC 2 certification - read the document -

    View file
    nameSaasJet-T2-Confirmation-Letter.pdf

  • More info about SOC 2 by SaaSJet - read more

image-20240410-184007.png

CAIQ-Lite

CAIQ Lite is a simplified version of the Consensus Assessments Initiative Questionnaire (CAIQ), which is designed to assess the security posture of cloud service providers.

Atlassian requires all Platinum, Gold, and Silver Marketplace Partners to complete the CAIQ-Lite questionnaire, which it then reviews.

  • What Atlassian says about the security of the cloud ecosystem - read more

security-contact.png

Security Contact

If at any time you have concerns or are uncertain whether your security research is consistent with this policy, please contact us at security@saasjet.com

Support

...

help.png

Working hours: Mon-Fri 24hrs GMT+3

Phone: +1 888 396 0501

Book a demo session: click to schedule an online free demo

Support portal: click to create a ticket

Help: Read the documentation

FAQ

...

Data storage questions:

Expand
titleQ: What data does the add-on store?

A: Issue History for Jira does not store all customers' personal data in its databases; it only reads all changes "on the fly" in task logs and displays them in a convenient format. We only store the current add-on settings configuration, which specifies a set of rules on how to display changes.

...

Expand
titleQ: Can Issue History for Jira be used to ensure CFR 21 Part 11 compliance?

A: Issue History for Jira helps to meet such Part 11 FDA requirements:

  • get an audit trail (log of all changes made to a file or data) to prevent falsified records

  • track and keep deleted Jira issues to be sure nothing is lost forever

  • export data from the system into a clear document (XLSX or CSV) to present it to FDA inspection

*There is no option for an electronic signature in the plugin.

Read more - How to get audit trail of changes to comply with 21 CFR Part 11?

Restore deleted issues questions:

Expand
titleQ: How does the "Restore deleted issues" option work?

A: You need to activate the option, so our add-on can receive information about the task deletion. We store information about a deleted task in Project properties AFTER it is deleted. What are Properties - see here https://developer.atlassian.com/cloud/jira/software/jira-entity-properties/

Read more - https://saasjet.atlassian.net/wiki/spaces/SAASJET/pages/1950449665/Keep+Deleted+Issues)

Expand
titleQ: Where the deleted issue data is stored ????

A: The “Issue History” add-on has the option to keep deleted issues - which will help you to be held accountable for every deleted record. That would be extremely helpful when preparing for controls and audits. Here is detailed information on the current feature - https://saasjet.atlassian.net/wiki/spaces/SAASJET/pages/1950449665/Keep+Deleted+Issues

Common security questions:

Expand
titleQ: Do you have security officer in your company?

A: Yes, we have a security officer in the company. Contact at security@saasjet.com

...

Expand
titleQ: Do developers have access to update the code in production?

A: Only the Lead responsible for the product and the DevOps engineer have access to production for quick response in case of an incident. All code is deployed automatically, and several specialists check each change.

Data Residency

Expand
titleQ: Does Issue History for Jira Cloud support data residency?

A: Right now, we are working on data residency (Q2 2024). We provide data residency for EU clients (location: Ireland, Dublin)

More info - https://support.atlassian.com/security-and-access-policies/docs/understand-data-residency/

App questions

Expand
titleQ: Is it possibility to provide permission to selected users and groups?

A: Yes, it is possible. According to the permissions section, you can add permissions at the group level to view changes, restore deleted issues, etc. For more information about this option, read here - Access Management for Issue History

If you want to make access at the user level, you can create separate groups for the corresponding users.

...