Get product advice from experts

Ask a question →

Join a community group

Find a group →

Advance your career with learning paths

Take a free class →

Earn badges and rewards

Connect and share ideas at events

See the calendar →

Community
Products
Jira Service Management
Questions
GDPR delete personal data

GDPR delete personal data

We are evaluating the use of JIRA Service Management, in combination with Atlassian Access, for enquiries in our university library.

For GDPR purposes a requirement is that personal data, and enquiries, be deleted after a predefined period. For example, enquiries more than 2 years old are deleted. Users registered for more than 4 years are deleted (most students are on 3 year degrees).

I've looked through the documentation and I can't find how to do this, i.e. automatically delete enquiries or users after a predefined period. Any advice will be gratefully received.

1 answer

1 accepted

2 votes

Answer accepted

You could leverage Automation for the issue piece. A rule could run daily and search for issues and then they could be removed. The users is more of a manual action, at least OOTB. However, I don’t use Access so maybe there is something there that would allow you to achieve your goal. If not there are addons that might be able to assist with managing your users and would suggest looking at the Marketplace.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Thanks I've looked into your two suggestions and found solutions. I can create an automation rule that runs periodically using JQL to search for issues more than 730 days old, then delete them. In case anyone else comes across this the JQL is

created <= -730d

I found the BulkOps app in the market place which should deal with bulk user deletion.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

Would you not want to only delete issues that were closed by adding ...AND statuscategory != done? TBH I don’t understand how this addresses GDPR and IMO deleting issues is a bad idea altogether but then I don’t live in your world 😜

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

We need to satisfy Principle (e): Storage limitation.

Basically the principle is don't store personal data longer than you need it. In practice library enquiries are closed within a few weeks anyway.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

thanks for sharing Robert. That is interesting. Given Atlassian is GDPR compliant I would like to get their perspective on this. If this is a requirement I would think they would build in easy methods (configuration) to take care of this.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like • Ricardo Araújo likes this

Reply

Suggest an answer

Log in or Sign up to answer

Was this helpful?

Thanks!

Jira Service Management

DEPLOYMENT TYPE

CLOUD

PRODUCT PLAN

STANDARD

PERMISSIONS LEVEL

Site Admin

TAGS