Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

is JIRA Software Data Center HIPAA compliant?

rameshnagul
rameshnagul January 26, 2018

We are currently on JIRA Server and Service Desk, we need HIPAA compliance.

Are the Data Center version HIPAA compliant?

 

Answer
Watch
Like Andy Heinzer likes this
2945 views

1 answer

1 accepted

Suggest an answer

Log in or Sign up to answer
4 votes
Answer accepted
Dave Theodore [Coyote Creek Consulting]
Dave Theodore [Coyote Creek Consulting]
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
January 26, 2018

Atlassian doesn't make products that state they meet any specific regulations.  That doesn't mean that their products can't be made to meet the compliance you need, however.  We work with many clients that need to be HIPAA compliant and we have been successful at implementing Atlassian tools to pass audits. 

In short, they can be HIPAA compliant, but you need to configure them to be compliant (or work with a Solutions Partner that knows what to do.)

View More Comments
Reply
Deepak Joshi
Deepak Joshi
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 3, 2018

Could you please suggest possible ways to implement HIPAA compliance in JIRA?

Like
Ron Chan
Ron Chan July 24, 2020

Any suggestions, @Dave Theodore [Coyote Creek Consulting] ?

Like
Dave Theodore [Coyote Creek Consulting]
Dave Theodore [Coyote Creek Consulting]
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
July 24, 2020

I think your only option currently is to be on a self-hosted version of Jira.  Cloud doesn't have the capability currently.  You should use SSL on the front-end.  The supported databases all have the ability to encrypt data in the database as long as you use a driver that can support it. This is not something that Atlassian supports, but it's possible.  There is an App from Marketplace that helps obfuscate personal information that may be inadvertently entered in to Jira as well. Permissions in Jira are very granular, but you may need to lock your Projects down more than you are currently doing.  You can also make use of Issue Security to limit access to individual issues.  You may need to increase log verbosity and perform some audits to ensure compliance.  I hope that helps.

Like Petter Gonçalves likes this
groups-icon
Data Center
TAGS
AUG Leaders

Atlassian Community Events

    See all events