Cloud compliance and trust: what customers expect from apps today

When Atlassian announced the move from Server and Data Center to Cloud, many customers had one main concern: trust. Could Cloud apps meet the same security and compliance standards that enterprises expect?

In the last years, that trust has grown a lot — and one of the main reasons is the way Atlassian and vendors have raised the bar for Cloud apps.

Runs on Atlassian (ROA)

With Forge, Atlassian introduced a model where apps can run directly on Atlassian infrastructure. This gives customers peace of mind: data doesn’t leave their instance, and sensitive information doesn’t travel through unknown servers. Zero data egress is a strong message of security.

Cloud Fortified

Another step has been the Cloud Fortified program. It highlights apps that meet higher standards in reliability, security, and support. For customers, this is a simple but powerful signal: they can see at a glance which apps are ready for enterprise use.

Why this matters

For many teams, compliance is not an option — it’s a requirement. The fact that Atlassian now provides clear programs and signals makes it easier for customers to trust new apps, including ones they might not have considered before.

It also helps vendors: instead of every customer asking the same questions about security, we can point to shared standards. That saves time and builds confidence on both sides.

Today, Cloud apps are not just about adding features. They also carry the responsibility to protect data and meet compliance needs. Programs like ROA and Cloud Fortified show that the Atlassian ecosystem takes this seriously.

That trust is what makes it possible for customers to explore new apps and for vendors to keep innovating with confidence.

Enjoy!

— Mia Tamm