Application database backups for Atlassian Cloud occur on the following frequencies: On-site backups are performed daily and retained for seven days; Tape backups are taken weekly, which are then stored off-site and retained for four weeks. All backup data is encrypted.
I believe that data sent over public networks uses HTTPS and should have all of the security properties that HTTPS provides. Data at rest is not as simple as "it is all decrypted" or "it is all encrypted". Some data is and some data is not and I cannot give you a full breakdown of that information. Please raise a request at support.atlassian.com to get our excellent support team to gather that information for you.
I am also looking for the same data.
I need to know if the data at rest is encrypted or in any other way secured?
I also need to know if a 3rd party vendor can access/decrypt the data their facility is hosting?
Also, I need to know of any vendor has access to non-encrypted, non-public data in our instance?
I have not found a clear statement in your online documentation
We are an Atlassian Solution Partner and we've just released something that might help. It's called Team Secrets and it protects sensitive file attachments in JIRA with end-to-end encryption for attachment uploads and 2 factor verification for downloads.
Please try it and let us know if this helps!
Atlassian is compliant with SOC2, and their SOC2 report can be obtained here: https://www.atlassian.com/trust/compliance
Unfortunately the report clearly states on page 29 that "Data is not encrypted at rest. Data in transit is encrypted with the TLS cryptographic protocol."
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
We're bringing product updates and pro tips on teamwork to ten cities around the world.Save your spot