Hello,
We are an open source contributor and use the open source Jira license. According to the agreement (https://www.atlassian.com/ru/software/views/open-source-license-request\) ,our open source project has to have a publicly accessible website. Which means that our Jira instance has to be outside of the firewall. We are worried that this makes us vulnerable. We must be HIPAA compliant as we work with patient information a lot.
Is anyone else in the same situation? How do you guys protect your data?
Thank you!
Dina
Hi Dina!
From what I understand about HIPAA, HIPAA compliance is possible within a Jira system - just ensure you are protecting patient info wherever that patient info will be stored.
Once you understand how permissions work on every level of your Jira system, communicate that with your stakeholders, and get sign-off that this is an acceptable solution. Good luck!
Your question has been asked before, but even the other responders agree the answer is not clear cut.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.