Table of contents:
Jira Server (Core, Software, Service Desk)
Jira Data Center (Core, Software, Service Desk)
Jira Cloud, but with limited functionality
Confluence Server
Confluence Data Center
Confluence Cloud, but with limited functionality
Server and Data Center versions are the same. Cloud version, however, has only a few modules implemented because of Cloud API limitations.
Jira and Confluence versions are similar, all the modules are the same, however, new features appear first in the Jira version and then in the Confluence version.
No. The app allows you to automate the general data protection tasks like getting consent, anonymizing personal data, security breach investigation, etc. We advise you to consult your legal team regarding the GDPR requirements in your specific situation, refine the processes and then configure the app to automate most of your activities and cover all your needs.
Assign a Data Protection Officer (DPO)
Review all the data protection processes you have, take care of personal data
Notify users about your policies and get their consent
Make sure you have a process in place to erase personal data upon users' requests
Notify users in case of security breaches
For more information, check out our articles:
Be GDPR compliant, Part 1: everything you need to know about getting consent in Jira and Confluence https://www.actonic.de/en/be-gdpr-compliant-part-1-everything-you-need-to-know-about-getting-consent-in-jira-and-confluence/
Be GDPR compliant, Part 2: ensure the right to erasure, find and anonymize PII in Jira https://www.actonic.de/en/be-gdpr-compliant-part-2-ensure-the-right-to-erasure-find-and-anonymize-pii-in-jira/
4 easy questions to check if you are fully GDPR compliant https://www.actonic.de/en/4-easy-questions-to-check-if-you-are-fully-gdpr-compliant/
CCPA vs. GDPR: data privacy laws in Europe and the USA https://www.actonic.de/en/ccpa-vs-gdpr-data-privacy-laws-in-europe-and-the-usa/
7 popular myths about GDPR https://www.actonic.de/en/7-popular-myths-about-gdpr/
New model of calculating GDPR fines is to increase possible penalties https://www.actonic.de/en/new-model-of-calculating-gdpr-fines-is-to-increase-possible-penalties/
Yes, but we strongly advise you to consult your legal team regarding the specific requirements in your situation and define all the necessary processes (erasing data upon users' requests, processing personal data, etc). After that, you can configure the app to automate most of your activities and cover all your needs.
Yes, but since it is not possible to select deactivated (or deleted) users, you will have to create a Data Cleaner template with rules to search for the user name, display name and email of the deactivated user.
There are no limitations, but the search/anonymization speed depends on a lot of parameters, like server CPU count, available RAM, other installed apps.
It depends on a lot of parameters, like the total number of tickets, user activity, server parameters (e.g. server CPU count), available RAM, other installed apps. In general, it can take from a few minutes to a few hours.
Our app is an all-in-one suite of the most effective and useful modules that companies require to cover all their GDPR needs. You can find some parts of Actonic GDPR in 3rd party apps, but there isn't a single app out there that covers all the GDPR aspects.
Option | Jira built-in anonymization | Actonic GDPR app | Notes |
---|---|---|---|
User anonymization method | Changes into an anonymous, unique alias, like jirauser80900 | Replaces references from a person to some special Service User | Anonymization should be a one-way process, without any options to link aliases like jirauser80900 and a real person. Our app provides a not revertable anonymization process and the way to change content ownership to other users. |
Predefined rules for searching and anonymization of Personal Identifiable Information | None | 50+ built-in rules for various SSN, phone numbers, national ID, etc. | Read more: |
Ability to configure custom anonymization patterns | No | Yes | Read more: |
It is possible to anonymize the name of the user, however, this operation doesn't affect user mentions, simple text usage with user names, or other personally identifiable information (PII). Our Data Cleaner module allows you to find any types of PII, anonymize previously deactivated users, etc.
If a user belongs to an external user directory (Microsoft Active Directory or other LDAP directory servers) we still can anonymize his/her content using the "User Anonymizer Template" of Data Cleaner module, and switch all the references from a user to be anonymized to a service user. Using the "Data Cleaner" module you can find any other Personal Identifiable Data related to a user and cleanup or anonymize it. What is not possible and not recommended to do with users from external user directories - cleanup Display Name, Email, and User Name. It should be done manually or after deleting the data from an external user management system.
Only Jira/Confluence administrators can do it using the Data Cleaner and a User anonymization template. This template allows searching for all the tickets that belong to a specific user.
Feel free to contact us and request a demo session or support via Support Portal.
Yes, but it requires a lot of customization and scripting. The app provides the easiest and complete solution with the most useful modules for getting consent, data cleanup, anonymization and many more.
Yes, our app does store personal data. However, it can be cleaned at any time. Read more App configuration.
Please email us at licenses@actonic.de.