Missed Team ’24? Catch up on announcements here.

×
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Do you have to store your jira data on Code Barrel servers?

Aaron Ponder
Aaron Ponder July 26, 2017

When installing the addon you get this message:

Automation Lite for JIRA Cloud may store your data on Code Barrel Pty Ltd's server so it can integrate with your JIRA instance. As needed for integration, this add-on can:

Is this a requirement?

Answer
Watch
Like Sebastián Delmastro likes this
528 views

2 answers

2 votes
Nick Menere
Nick Menere
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
July 26, 2017

Hey Aaron,

 

A longish answer but I want it to be complete.

 

What data do we have access to?

When you install a JIRA Cloud add-on the add-on can request certain 'scopes' of access. In Automation for JIRA's case, we require READ, WRITE and ADMIN scopes. This means the add-on is granted access to all JIRA REST APIs marked with these permissions on this page: jira rest scopes. We require this access to do things like adding comments to issues, edit issues etc.

Now when a cloud add-on is installed, we store a public and secret key in our database. We store this so that our add-on can make authenticated requests to your JIRA instance as well as receive authenticated requests from your JIRA instance. This is pretty standard for any Atlassian connect add-on for JIRA Cloud.

Full disclosure here - we can use the public key and secret to make authenticated REST calls to any of the REST APIs mentioned on the page linked above manually. However we have only done this in rare circumstances when we need extra information to debug a tricky support problem. We will also ask for your permission first before performing these requests. You can revoke these rights at any time simply by disabling/uninstalling our add-on in your JIRA instance.

 

What data do we store in our database?

First up - we try to store as little identifying information about your data (issues, projects etc) as possible in our database. Things we do store:

  • Rule config information:
    • Rule name and description
    • Rule component config information (e.g. JQL strings used in triggers could contain project keys etc)
  • Audit log entries
    • We store what you see in the audit log UI basically. Issue keys & ids as well as any changes made to the issue shown on the left hand side in the audit log
    • We don't store full issue details. (This may change in the future to enable us to make our rule execution queue more fault tolerant, but this data would only exist for the lifetime of the rule execution).
  • Contact information for users that setup a rule
    • We store username, name and e-mail address. This is so we can send these users an e-mail in case a rule doesn't execute due to add-on licensing issues

We also collect Google analytics to better help us understand how our users use the front-end, so that we can build better features. We do not include identifying information however in these analytics (such as issue data, config data etc).

Myself and my co-founder have both worked at Atlassian for 10 years previously and we treat customer privacy and security seriously. We believe in full transparancy around these issues. As far as we are concerned, your data is yours and we do not share your data with any third parties (unless we are legally obligated to do so - however this case has not arisen yet).

For more details please also see the data privacy policy - https://codebarrel.io/privacy-policy/

Sorry for the slightly long winded answer, but I wanted to give you as much detail as possible. If you have any further questions please don't hesitate to ask!

 

Cheers,

Nick

View More Comments
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
July 26, 2017

Nick, that's the clearest and best description of "how data is handled on Atlassian Cloud" and then "How we do it" I have ever seen.

Thank you!

Like
Reply
0 votes
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
July 26, 2017

Yes.  Cloud add-ons cannot store some of their data on the Cloud JIRA they are being added to, they have to store it on the add-on vendor's systems.

View More Comments
Aaron Ponder
Aaron Ponder July 26, 2017

Ok.  Are there any specifics as to what data will or will not be stored by the Cloud add-on vendor's systems?  Just need more clarification of "some of their data" if possible.

Like
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
July 26, 2017

Depends on what the add-on does.

I think you'd need to ask Code Barrel for more information on it.

Like
Aaron Ponder
Aaron Ponder July 26, 2017

Is there a support email for Code Barrel readily available?  Thanks for your help.

Like
Aaron Ponder
Aaron Ponder July 26, 2017

I found it thanks

Like
Reply

Suggest an answer

Log in or Sign up to answer
Product apps
Apps & Integrations
TAGS
AUG Leaders

Atlassian Community Events

    See all events