Privacy Policy
- 1 Overview
- 2 Covered Applications
- 3 Our Commitment
- 4 Data Collection and Storage
- 5 Platform Integration
- 6 Security
- 7 Third-Party Services
- 8 Open Source Components
- 9 Data Security
- 10 International Data Transfers
- 11 GDPR Compliance (European Union)
- 11.1 Data Controller and Processor
- 11.2 Your Rights
- 11.3 Legal Basis
- 12 CCPA Compliance (California)
- 12.1 Our Practices
- 12.2 Your Rights
- 13 Other Privacy Laws
- 14 Changes to This Privacy Policy
- 15 Contact Us
- 16 Data Protection Officer
- 17 Summary
- 18 Transparency Report
- 19 App-Specific Notes
Overview
This Privacy Policy applies to all applications ("Apps") developed and published by Aptify Tech on the Atlassian Marketplace.
Covered Applications
This policy covers all current and future Apps published by Aptify Tech.
Our Commitment
We do NOT collect, store, or transmit any personal data from any of our Apps.
Data Collection and Storage
What We Do NOT Collect
Across all our Apps:
❌ No personal information (names, emails, etc.)
❌ No user account data
❌ No behavioral tracking
❌ No usage analytics
❌ No cookies or tracking technologies
❌ No IP addresses
❌ No device information
How Our Apps Work
All our Apps operate using the same privacy-first principles:
Client-Side Processing: All data processing happens in your browser or within your Atlassian environment
Local Storage Only: App configurations are stored in your Atlassian instance (managed by Atlassian)
No External Services: No data is sent to external servers or third-party services
No Backend Storage: We do not operate any backend servers that store your data
Data You Control
The only data associated with our Apps:
App Configuration: Settings and content you configure within the App
Storage Location: Stored by Atlassian in your Confluence/Jira instance via Atlassian Forge Storage APIs
You have complete control through Atlassian's standard data management features.
Platform Integration
Our Apps operate within the Atlassian Forge platform:
Forge Platform: Built on Atlassian's secure Forge infrastructure
Platform Security: Inherits Atlassian's enterprise-grade security
Permissions Model: Follows Atlassian's permission system — our Apps only request the minimum permissions necessary
Data Residency: Respects Atlassian's data residency options
For Atlassian's data practices: Atlassian Privacy Policy
Security
We take the security of our Apps and your data seriously. Our security measures include:
No data transmission: No user data is ever sent outside your Atlassian environment
Secure Forge infrastructure: All app logic runs within Atlassian's security-hardened Forge platform
Responsible development: We follow secure coding practices, conduct code reviews, and keep dependencies up to date
Vulnerability management: We actively monitor for security vulnerabilities and remediate them promptly
Incident response: We have a defined process for detecting, responding to, and communicating security incidents
For full details on how we secure our Apps and handle security incidents, please refer to our dedicated Security Policy.
Third-Party Services
None of our Apps use third-party services, including:
❌ No analytics platforms (e.g., Google Analytics, Mixpanel)
❌ No error tracking services (e.g., Sentry, Bugsnag)
❌ No advertising networks
❌ No social media integrations
❌ No external APIs or webhooks
❌ No payment processors (handled by Atlassian)
Open Source Components
Our Apps may use open-source libraries for functionality. These libraries:
✅ Process data entirely within your browser
✅ Do not send data to external servers
✅ Are listed in each App's documentation
Common libraries we use:
React (UI framework)
Atlassian Design System components
Various utility libraries
All open-source components are carefully vetted for security and privacy.
Data Security
Our Approach
✅ No data transmission means no transmission risks
✅ All processing within Atlassian's secure environment
✅ Regular security updates via Forge platform
✅ Code reviewed for security best practices
✅ Dependencies monitored and updated regularly
✅ Minimum necessary permissions requested
Your Responsibilities
Ensure appropriate Atlassian permissions for sensitive content
Follow your organization's data handling policies
Review Atlassian's security documentation
Keep your Atlassian instance updated
International Data Transfers
Since we don't collect or store any data:
✅ No data transfers occur from our side
✅ No cross-border data movement by Aptify Tech
✅ Data remains in your Atlassian environment
Your data's location is determined by your Atlassian instance's data residency settings.
GDPR Compliance (European Union)
For users in the European Economic Area (EEA):
Data Controller and Processor
Data Controller: Your organization (Atlassian site administrator)
Data Processor: Atlassian Corporation
Our Role: We do not process personal data as defined by GDPR
Your Rights
Under GDPR, you have rights including:
Right to access
Right to rectification
Right to erasure ("right to be forgotten")
Right to data portability
Right to object to processing
To exercise these rights: Contact your Atlassian administrator or Atlassian support.
Legal Basis
Since we don't process personal data, no legal basis is required for our Apps' operation.
CCPA Compliance (California)
For California residents:
Our Practices
✅ We do not sell personal information
✅ We do not collect personal information as defined by CCPA
✅ We do not share personal information with third parties
Your Rights
California residents have rights under CCPA, but since we don't collect personal information, these rights don't apply to our Apps directly. For data held by Atlassian, contact your administrator.
Other Privacy Laws
We comply with privacy laws worldwide by following these principles:
✅ Privacy by design and default
✅ Data minimization (we collect nothing)
✅ Transparency (this policy)
✅ User control (via Atlassian features)
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Changes will be reflected in:
Atlassian Marketplace app listings
In-app notifications for major changes (if applicable)
Continued use of our Apps after changes constitutes acceptance of the updated policy.
Contact Us
If you have questions about this Privacy Policy or our Apps' data practices:
Developer: Aptify Tech
Email: support@aptify.com
Data Protection Officer
If required by applicable law, data protection inquiries can be sent to:
Email: support@aptify.com
Subject: Data Protection Inquiry
Summary
Key Points:
✅ We collect NO personal data
✅ All processing happens in your Atlassian environment
✅ No external services or tracking
✅ Full compliance with GDPR, CCPA, and other laws
✅ You control all data via Atlassian
✅ Security is our top priority — see our Security Policy for details
Questions? Contact support@aptify.com
Transparency Report
Data breaches: 0 (we store no data)
Government data requests: 0 (we have no data to provide)
Third-party disclosures: 0 (we have no data to disclose)
App-Specific Notes
For Each App We Develop:
Same privacy-first approach
No data collection or storage by aptify
Local processing only within Atlassian environment
Built on Atlassian Forge
This policy will be updated as we release new Apps, but our core commitment to privacy remains unchanged.