Table of contents:
Jira Server (Core, Software, Service Desk)
Jira Data Center (Core, Software, Service Desk)
Jira Cloud, but with limited functionality
Purchase the license tier that matches the number of users you have licensed for your host product. For Jira, you must purchase the app license that matches the highest Jira application tier. For example, if you have a 500-User Jira Software license, and a 20-Agent Jira Service Management license, your Jira apps must be at the 500-User level.
No. The app allows you to automate common data protection tasks, such as obtaining consent, anonymizing personal data, or investigating security breaches.
We advise you to consult your legal team about the data security requirements in your specific situation, refine the processes and then configure the app to automate most of your activities and cover all your needs.
We are happy to help you with the configuration, just contact us!
Server and Data Center versions are the same. Cloud version, however, has only a few modules implemented because of Cloud API limitations.
Jira and Confluence versions are similar, all the modules are the same. However, new features appear first in the Jira version and then in the Confluence version.
Sure! Just take a look at our Data Protection and Security Toolkit for Confluence.
Assign a Data Protection Officer (DPO)
Review all the data protection processes you have, take care of personal data
Notify users about your policies and get their consent
Make sure you have a process in place to erase personal data upon users' requests
Notify users in case of security breaches
For more information, check out our articles:
Be GDPR compliant, Part 1: everything you need to know about getting consent in Jira and Confluence https://www.actonic.de/en/be-gdpr-compliant-part-1-everything-you-need-to-know-about-getting-consent-in-jira-and-confluence/
Be GDPR compliant, Part 2: ensure the right to erasure, find and anonymize PII in Jira https://www.actonic.de/en/be-gdpr-compliant-part-2-ensure-the-right-to-erasure-find-and-anonymize-pii-in-jira/
4 easy questions to check if you are fully GDPR compliant https://www.actonic.de/en/4-easy-questions-to-check-if-you-are-fully-gdpr-compliant/
CCPA vs. GDPR: data privacy laws in Europe and the USA https://www.actonic.de/en/ccpa-vs-gdpr-data-privacy-laws-in-europe-and-the-usa/
7 popular myths about GDPR https://www.actonic.de/en/7-popular-myths-about-gdpr/
New model of calculating GDPR fines is to increase possible penalties https://www.actonic.de/en/new-model-of-calculating-gdpr-fines-is-to-increase-possible-penalties/
Yes, inactive (deactivated) users could be anonymized as same as normal users.
Yes, but since it is not possible to select deleted users, you will have to create manually a Data Cleaner template with rules to search for the user name, display name and email of the deleted user.
There are no limitations, but the search/anonymization speed depends on a lot of parameters, like server CPU count, available RAM, other installed apps.
It depends on a lot of parameters, like the total number of tickets, user activity, server parameters (e.g. server CPU count), available RAM, other installed apps. In general, it can take from a few minutes to a few hours.
Our app is an all-in-one suite of the most effective and useful modules that companies require to cover all their data security needs. You can find some parts of Actonic Data Protection and Security Toolkit in 3rd party apps, but there isn't a single app out there that covers all the data protection policies' aspects.
Option | Jira built-in anonymization | Actonic Data Protection and Security Toolkit | Notes |
---|---|---|---|
User anonymization method | Changes into an anonymous, unique alias, like jirauser80900 | Replace references from a person to some special Service User | Anonymization should be a one-way process, without any options to link aliases like jirauser80900 and a real person. Our app provides a not revertible anonymization process and the way to change content ownership to other users. |
Predefined rules for searching and anonymization of Personal Identifiable Information | None | 50+ built-in rules for various SSN, phone numbers, national ID, etc. | Read more: |
Ability to configure custom anonymization patterns | No | Yes | Read more: |
If a user belongs to an external user directory (Microsoft Active Directory or other LDAP directory servers) we сan still anonymize his/her content using the "User Anonymizer Template" of the Data Cleaner module, and switch all the references from a user to be anonymized to a service user. Using the "Data Cleaner" module, you can find any other Personal Identifiable Data related to a user and cleanup or anonymize it. What is not possible and not recommended to do with users from external user directories - cleanup Display Name, Email, and User Name. It should be done manually or after deleting the data from an external user management system.
Only Jira/Confluence administrators can do it using the Data Cleaner and a User anonymization template. This template allows searching for all the tickets that belong to a specific user.
Feel free to contact us and request a demo session or support via Support Portal.
Yes, our app does store personal data. However, it can be cleaned at any time. Read more App configuration.
Please email us at licenses@actonic.de.