Protecting your data and privacy is very important to us. Narva Apps (officially Narva Solutions UG) adheres to a strict policy for ensuring the security and privacy of your data, in particular your personally identifiable information (such as full name, address, e-mail address, and/or other identifiable information, collectively such personally identifiable information “Personal Data”).
Cloud Apps (Forge)
Cloud Apps (Connect)
Narva Apps provides hosted services (“Cloud Apps”) for Atlassian Cloud Products. The Apps are delivered through the Atlassian Forge App Framework (“Atlassian Forge”) or Atlassian Connect App framework (“Atlassian Connect”). Cloud Apps can be identified by the “Cloud” category in the corresponding Atlassian Marketplace listing.
Narva Apps also provides a few downloadable products (“Server Apps”) for Atlassian Server Products, which are installed on the client’s IT-systems. Server Apps can be identified by the “Server” category in the corresponding Atlassian Marketplace listing.
This Data Security and Privacy Statement will provide you with an overview of the collection and processing of your data for both Cloud and Server Apps.
In the following, all data created by an Atlassian Cloud or Server Product end user and stored within the Atlassian Product are defined as “Customer Data”.
We maintain state-of-the-art technical and organizational measures in order to ensure data security, in particular for the protection of your Personal Data. These measures are updated from time to time in order to remain state-of-the-art. If you are interested in our data security concept, please contact us.
Cloud Apps (Forge)
Atlassian Forge is a new app framework with focus on security and privacy.
Apps created using Forge framework are hosted by Atlassian. It means all app data are stored on the Atlassian servers only. Atlassian Forge takes care of authentication and authorization, software execution, and data management. The region of the app’s data storage is the same as your Jira or Confluence Cloud region.
Apps built using Atlassian Forge:
Issue Template for Jira - Summary & Description Templates
Cloud Apps (Connect)
Unless otherwise stated below, our Cloud Apps do not store Customer Data locally, but store Customer Data in the corresponding Atlassian Cloud Product. The Atlassian Cloud Product Security Statement can be found here.
Exceptions applying to all Cloud Apps:
Account Data: Our Cloud Apps store data provided and generated by Atlassian, that are required for license validation, contract administration and communication with the customer instance. This includes for example AddOnKey, ProductType, ClientKey, BaseUrl, ServiceEntitlementNumber, SharedSecret, OauthClientId. Installation Metadata is deleted at the latest 180 days after the customer unsubscribed from the service (see below section “End of Subscription”). Please note that Narva Apps does not store this data out of ‘free choice’ but as a general technical requirement for any Atlassian Cloud App to function.
Real-time Error Tracking Data: Our Cloud Apps track errors of our Cloud Apps' resources executed in the end users' browsers in real-time. This includes for example AddOnKey, ClientKey, BaseUrl, anonymized TrackingID, error messages and information about the environment such as browser type, browser version and operating system. It is exclusively used in order to improve our service.
Access to Customer Data
Only authorized Narva Apps employees and subcontractors from our support and development teams have access to Customer Data. Such subcontractors are contractually bound to the same data security and privacy standards that apply to us.
Our subcontractors are:
End of subscription
If a customer unsubscribes from our Cloud App, we mark stored Customer Data, for deletion. The data is deleted after 180 days at the latest if the customer does not re-subscribe. However, the customer can contact us to ask for an earlier deletion.
Our Server Apps do not store Customer Data.