Atlassian’s Trust Portal: Your Self-Service Hub for Security and Compliance

Overview
Hey Atlassian Community! I’m @Alex Griswold , Head of Trust Engagement at Atlassian. I work closely with our CISO, @David Cross , to make sure we’re delivering secure, reliable products you can depend on.

Today, I’m excited to introduce the new Atlassian Customer Trust Portal — a self‑service, AI‑powered experience that brings security, compliance, and privacy information together in one place. It’s designed to put the answers you need right at your fingertips.

The Trust Portal builds on our Trust Center by going a level deeper: giving you practical, audit‑ready information about our trust posture, and helping you complete security reviews and due‑diligence with more speed and confidence.

Below is a quick tour of what’s inside, how to get access, and how to make the most of it for your organization.

---

1. Getting access to the Trust Portal

If it’s your first time, you’ll just need to complete a quick, one‑time access flow:

1. Click “Select request or regain access.”
2. Check your inbox for a one‑time access code from customertrust@atlassian.com.
3. Use that code to sign in to the portal.

You may also be asked to sign an NDA via DocuSign if we don’t already have one on record for your organization. Once someone in your organization has signed the NDA, you won’t need to repeat this step for future visits.

---

2. What you’ll find inside the Trust Portal

Think of the Trust Portal as a living knowledge hub for your security and compliance questions. The Atlassian Trust team continuously curates and expands this content so it stays relevant and useful as your needs evolve.

Today, the Trust Portal includes:

• Trust FAQs
  A curated library of clear, factual answers to the questions we hear most often across key security, privacy, and compliance domains.
• Compliance documentation
  Access independent certifications and reports — including frameworks like SOC 2 and ISO 27001 — along with third‑party letters of attestation that demonstrate the ongoing execution of Atlassian’s external penetration testing program.
• Trust white‑papers
  Deep‑dive documentation that explains Atlassian’s trust posture across emerging and topical themes, written to support your internal reviews, questionnaires, and stakeholder conversations.

Customers can also subscribe to receive email notifications whenever we publish important updates in the Trust Portal — such as new trust documentation or renewed compliance certifications:

---

3. Using the AI search feature to speed up your reviews

If you’ve ever wished you could get instant, contextualized answers to your security questions, the Trust Portal’s AI‑powered search is built for you.

Simply type your question into the search bar, and the AI feature will:

• Draw from the Trust Portal’s knowledge base
• Generate a tailored, conversational response
• Provide clear citations back to the underlying source documents, so you can validate and reuse the information with confidence

For larger assessments, you can also bulk‑upload multiple questions at once. The built‑in AI will automatically generate draft responses for each question, giving you a head start on security questionnaires and due‑diligence requests, while keeping you in control of final review and approval.

---

4. What’s coming next

We see the Trust Portal as a core resource for your ongoing assurance needs. The Atlassian Trust team is actively investing in expanding this knowledge base with new collateral aligned to the security and compliance topics that matter most to you.

A recent example is the Rovo security architecture white‑paper, available directly in the Trust Portal under the Trust Guidance Documents folder.

This paper outlines:

• Rovo’s secure‑by‑design architecture
• How we integrate large language models (LLMs)
• AI‑specific security measures, such as policy enforcement, access permissions, and transparent AI use

And this is just the beginning. Below is a preview of upcoming collateral we’re working on:

• Data access, protection, and isolation – Technical descriptions and diagrams explaining how we protect customer data, including tenant isolation, network security, encryption, and zero‑trust principles.
• Rovo security measures – Expands on the initial Rovo Secure AI Architecture white-paper with deeper insight into technical security measures, as well as an overview of Rovo’s MCP (Model Context Protocol) server security architecture.
• Secure Development Lifecycle – A closer look at Atlassian’s secure engineering practices, including policies, frameworks, as well as CI/CD tooling and security testing processes.

To stay on top of new publications like these, you can subscribe using the button at the top of the Trust Portal.

---

5. Share feedback, ask questions, and help shape what’s next

The Trust Engagement team is committed to addressing all your security questions, no matter how big or small.

There are a few ways you can get involved and help us improve the Trust Portal experience:

• Suggest new content directly in the Trust Portal
  Search for a question or document. If you don’t find what you need, use the link at the bottom of the page to suggest the content you’re looking for. This helps us prioritize the most relevant topics for future publications.

• Engage here in the Atlassian Community
  As always, you’re always welcome to leave comments and questions directly on this post. The Atlassian Trust team actively monitors and responds to feedback, and your insights play a key role in shaping the future of our services.

---

---