Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Certifications

Fortified.png

Cloud Fortified

The Cloud Fortified Apps Program aims to serve our largest customers and those with more business-critical operating requirements for apps.

BugBounty.png

Marketplace Security Bug Bounty Program

A bug bounty program is one of the most powerful post-production tools to help detect vulnerabilities in applications and services.

Frame-98.svg

Security Assessments

The term “security assessment” refers to any activity intended to determine, evaluate or test the security features and controls of Atlassian’s products and services.

Premium-partner.svg

SaaSJet is a Platinum Marketplace Partner

What does “Platinum partner” mean? According to annual gross sales ("Purchase Price" in Marketplace reports), a minimum $1M annual gross sales comprised a minimum of 35% from the cloud.

Security

image-20240410-182718.png

System and Organization Controls (SOC) 2 (in progress)

SOC 2 reports are independent third-party examination reports demonstrating how an organization achieves key compliance controls and objectives.

  • What Atlassian says about Trust Service Criteria (TSC) - read more

  • We are working on SOC 2 certification - read the document -

  • More info about SOC 2 by SaaSJet - read more

image-20240410-184007.png

CAIQ-Lite

CAIQ Lite is a simplified version of the Consensus Assessments Initiative Questionnaire (CAIQ), which is designed to assess the security posture of cloud service providers.

Atlassian requires all Platinum, Gold, and Silver Marketplace Partners to complete the CAIQ-Lite questionnaire, which it then reviews.

  • What Atlassian says about the security of the cloud ecosystem - read more

security-contact.png

Security Contact

If at any time you have concerns or are uncertain whether your security research is consistent with this policy, please contact us at security@saasjet.com

Support

help.png

Working hours: Mon-Fri 24hrs GMT+3

Phone: +1 888 396 0501

Book a demo session: click to schedule an online free demo

Support portal: click to create a ticket

Help: Read the documentation

FAQ

Data storage questions:

 Q: What data does the add-on store?

A: Issue History for Jira does not store all customers' personal data in its databases; it only reads all changes "on the fly" in task logs and displays them in a convenient format. We only store the current add-on settings configuration, which specifies a set of rules on how to display changes.

 Q: What kind of data do you store?

A: The add-on stores:

  • configuration of users' settings

  • quick start template formats

  • names of saved templates

 Q: Where do you store information?

A: We store service information in properties based on the Atlassian platform. What are properties? - https://developer.atlassian.com/cloud/jira/software/jira-entity-properties/

 Q: Do you encrypt the data you store?

A: We do not store personal information about our customers (names, addresses, emails, accounts). The rest of the service information is encrypted and transmitted using the TLS/SSL protocol and Encryption at rest.

 Q: Is it safe to use the Issue History add-on?

A: Yes, the Issue History add-on does not save all changes in client tasks, it only reads the change log "on the fly" and shows the results of filtering in the add-on. Only the settings for working with the add-on can be saved.

Read our Privacy and Security Policy - https://saasjet.com/privacy-policy/

 Q: Can Issue History for Jira be used to ensure CFR 21 Part 11 compliance?

A: Issue History for Jira helps to meet such Part 11 FDA requirements:

  • get an audit trail (log of all changes made to a file or data) to prevent falsified records

  • track and keep deleted Jira issues to be sure nothing is lost forever

  • export data from the system into a clear document (XLSX or CSV) to present it to FDA inspection

*There is no option for an electronic signature in the plugin.

Read more - How to get audit trail of changes to comply with 21 CFR Part 11?

Restore deleted issues questions:

 Q: How does the "Restore deleted issues" option work?

A: You need to activate the option, so our add-on can receive information about the task deletion. We store information about a deleted task in Project properties AFTER it is deleted. What are Properties - see here https://developer.atlassian.com/cloud/jira/software/jira-entity-properties/

Read more - https://saasjet.atlassian.net/wiki/spaces/SAASJET/pages/1950449665/Keep+Deleted+Issues)

 Q: Where the deleted issue data is stored ????

A: The “Issue History” add-on has the option to keep deleted issues - which will help you to be held accountable for every deleted record. That would be extremely helpful when preparing for controls and audits. Here is detailed information on the current feature - https://saasjet.atlassian.net/wiki/spaces/SAASJET/pages/1950449665/Keep+Deleted+Issues

Common security questions:

 Q: Do you have security officer in your company?

A: Yes, we have a security officer in the company. Contact at security@saasjet.com

 Q: What security policy is followed in your company?

A: You can read the full list of our company's Policy by following this link - Documents are available upon the user's request.

 Q: What is the security monitoring strategy for the servers in AWS?

  • Amazon Cloudwatch

  • Datadog

 Q: What's your business continuity in times of disruption (COVID, etc.)

A: We work remotely according to the work schedule. Support center available (email and Jira requests) - 24/7, chat service from 12 pm to 8 pm (GMT+3), and phone service from 9 am to 12 am from Monday to Friday.

Our mission is to ensure information system uptime, data integrity, availability, and business continuity. We have process-level plans for recovering critical technology platforms and the telecommunications infrastructure in case of disaster. /wiki/spaces/~208704361/pages/2040791041

 Q: Do developers have access to update the code in production?

A: Only the Lead responsible for the product and the DevOps engineer have access to production for quick response in case of an incident. All code is deployed automatically, and several specialists check each change.

Data Residency

 Q: Does Issue History for Jira Cloud support data residency?

A: Right now, we are working on data residency (Q2 2024). We provide data residency for EU clients (location: Ireland, Dublin)

More info - https://support.atlassian.com/security-and-access-policies/docs/understand-data-residency/

App questions

 Q: Is it possibility to provide permission to selected users and groups?

A: Yes, it is possible. According to the permissions section, you can add permissions at the group level to view changes, restore deleted issues, etc. For more information about this option, read here - Access Management for Issue History

If you want to make access at the user level, you can create separate groups for the corresponding users.

 Q: Do you have backup and restore of data?

A: Yes, we have backup / restore policy - Documents are available upon the user's request.

 Q: Do you have disaster recovery plans?

A: Yes, you can read more here - Documents are available upon the user's request.

  • No labels