Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Interests
See all
Community resources
Top groups
Explore all groups
Community resources
Celebration

Earn badges and make progress

You're on your way to the next level! Join the Kudos program to earn points and save your progress.

Deleted user Avatar
Deleted user

Level 1: Seed

25 / 150 points

Next: Root

Avatar

1 badge earned

Collect

Participate in fun challenges

Challenges come and go, but your rewards stay with you. Do more to earn more!

Challenges
Coins

Gift kudos to your peers

What goes around comes around! Share the love by gifting kudos to your peers.

Recognition
Ribbon

Rise up in the ranks

Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!

Leaderboard

Join now to unlock these features and more

Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Get started Tell me more
Atlassian Community about banner
4,559,612
Community Members
 
Community Events
185
Community Groups

Missing functionality of partial/conditional removal/anonymization of PII data (GDPR)

Michael Mohr
Michael Mohr May 16, 2023

According to the GDPR principle to only store the PII data as long as it is absolutely needed our data privacy officers asks us to anonymize PII relevant data (like email address and full user name from closed issues after some amount of time, e.g. 1 year, as then it is not longer required for our company to have the information which exact user performed which changes to an issue.

Currently Jira only supports complete anonymization of user data for the complete instance and not only partly based on some parameters/conditions.

So question from us to Atlassian was, how Atlassian supports with their product the GDPR policy of data minimizing/reduction for users that are still active in a instance, so that their older activity could be anonymized while the technical content of such issues is still needed (problem solution, changes made etc.)?

Answer from Atlassian was, that they do not provide a partial/conditional removal/anonymization of PII data functionality. Therefore they created a new suggestion ticket JRASERVER-75714-Anonymize User details based on a Specific Conditions . But as we all now most likely to 100% suggestion tickets are never followed up again by Atlassian.

So our question to the community is, if any other customer have already faces the question of partial/conditional removal/anonymization of PII data? And if yes, how you solved this requirement?

Answer
Watch
Like Be the first to like this
207 views

2 answers

1 vote
Joseph Chung Yin
Joseph Chung Yin
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
May 16, 2023

@Michael Mohr -

From our end, our understanding are the same as what you described.  The only thing I can recommend is for more Jira clients to follow-up with Atlassian to request the functionality adjustment/enhancement.

The only drawback is that any solution that Atlassian offers are typically to be implemented against the CLOUD env first, then they will incorporated into the SERVER/Data Center env.

Best, Joseph Chung Yin

Jira/JSM Functional Lead, Global Technology Applications Team

Viasat Inc.

View More Comments
Michael Mohr
Michael Mohr May 19, 2023

Thank you for your support on this. Hope that others will also vote and watch our suggestion issue to raise attention for this GDPR topic at Atlassian.

Like
Reply
0 votes
Andreas Springer _Actonic_
Andreas Springer _Actonic_
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
May 19, 2023

Hi @Michael Mohr,

you are right, what you are describing is not currently possible with Jira out of the box, no matter the hosting platform.

If I may, let me recommend our app "Data Protection and Security Toolkit", which we developed for this exact use case: detaching personal information from the actual content stored in Jira so you will become compliant to regulations, but can keep the knowledge at the same time. It will solve your issue directly, and many more related scenarios. We offer it for Jira and Confluence on Server/DC and Cloud.

You can find it here: https://marketplace.atlassian.com/search?query=Data%20Protection%20and%20Security%20Toolkit

If you'd like to learn more about it, please book a free demo here: actonic.de/appdemo

Of course, if you have any questions or special requirements, let's hear them. :)

Reply

Suggest an answer

Log in or Sign up to answer
Jira Service Desk
Jira Service Management
DEPLOYMENT TYPE
SERVER
VERSION
8.20.13
TAGS
AUG Leaders

Atlassian Community Events

See all events