Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Lack of link anonimization when opening cards is a severe security risk

Christian Radwanski
Christian Radwanski
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 13, 2026

Question:
When opening a card in Trello, it shows the link with the card title, can you anonymize this data?.

Summary:
We consider this a severe security breach and the links are being monitored/browser data and in some cases to external parties. We have determined that this goes against our security policies and must block Trello if there is no way of resolving this issue.

Example:

Employee opens card named: increase wage for Anna to 5000$,.
Links shows: trello.com/c/xxxx/increase-wage-for-Anna-to-5000$
Or worse: connect-private-servername-to-private-connector

Allot of personal data and corporate data is being displayed to unauthorized users this way, e.g. network monitoring team. It is substantially worse for our customers who have outsourced this part to external parties. As of now, we are in a position where we must recommend blocking Trello.com entirely.

You can set your Trello board to private, but your link openly leeches information out to other teams and external parties.

 

Answer
Watch
Like marc -Collabello--Phase Locked- likes this
141 views

1 answer

0 votes
Rishabh S
Rishabh S
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
January 20, 2026

Hi Christian 🙂

Hope you’re doing well, and welcome to the community!

You can safely share Trello card links using just the card ID. For example, if you have a full card URL like: https://trello.com/c/xxxx/increase-wage-for-Anna-to-5000$

The actual shareable card link is just: https://trello.com/c/xxxx

A few key points to keep in mind:

  • You can share just the short card link (https://trello.com/c/xxxx) with any external user or team.

  • This short link is generated when you click on the three dots (…) on the card back and choose the “Share” option.

  • The full link with the card title (e.g. /increase-wage-for-Anna-to-5000$) will only fully resolve and show the card details for users who already have access to the board/card.

  • If a user does not have access, opening the short card link will not expose the card title or its contents — access permissions still apply.

Thanks

View More Comments
Christian Radwanski
Christian Radwanski
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 22, 2026

Hi Rishash, the problem is not sharing, the problem is just opening the card on your board. At that moment the link while you are working on your card, is now in your browser and shared on the network. Private data is effectively and immediately stored locally and sent to the network/monitoring team where it is stored again.

At that moment during audits, the private data is visible to others outside your board.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Trello
Trello
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
FREE
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2026 Atlassian
    Privacy Policy Notice at Collection Terms Security