FAQ
Table of contents:
- 1 Which applications is the app compatible with?
- 2 Which license do I choose when purchasing an app?
- 3 Is it enough to install your app to ensure compliance with data protection laws?
- 4 What is the difference between app versions for Server, Data Center and Cloud?
- 5 Do you offer such an app also for Confluence?
- 6 What are the basic steps I have to take to become GDPR compliant?
- 7 Is it possible to anonymize the data of inactive (deactivated) users?
- 8 Is it possible to anonymize the data of deleted users?
- 9 How many tickets can the app handle?
- 10 How long does it take to anonymize 1 user?
- 11 What process flow does Actonic Data Protection and Security Toolkit have?
- 12 What is the difference between Actonic Data Protection and Security Toolkit and other apps?
- 13 What is the difference between the built-in Jira anonymization function and Actonic Data Protection and Security Toolkit?
- 14 Is it possible to anonymize a user from an external user directory?
- 15 Could I get all my data from Jira/Confluence using the app? This is one of the major requirements of the GDPR.
- 16 I cannot configure the app, what should I do?
- 17 Does your app store any personal data, and how does the app deal with it?
- 18 Do you offer any discounts?
Which applications is the app compatible with?
Jira Server (Core, Software, Service Desk)
Jira Data Center (Core, Software, Service Desk)
Jira Cloud, but with limited functionality
Which license do I choose when purchasing an app?
Purchase the license tier that matches the number of users you have licensed for your host product. For Jira, you must purchase the app license that matches the highest Jira application tier. For example, if you have a 500-User Jira Software license, and a 20-Agent Jira Service Management license, your Jira apps must be at the 500-User level.
Is it enough to install your app to ensure compliance with data protection laws?
No. The app allows you to automate common data protection tasks, such as obtaining consent, anonymizing personal data, or investigating security breaches.
We advise you to consult your legal team about the data security requirements in your specific situation, refine the processes and then configure the app to automate most of your activities and cover all your needs.
We are happy to help you with the configuration, just contact us!
What is the difference between app versions for Server, Data Center and Cloud?
Server and Data Center versions are the same. Cloud version, however, has only a few modules implemented because of Cloud API limitations.
Jira and Confluence versions are similar, all the modules are the same. However, new features appear first in the Jira version and then in the Confluence version.
Do you offer such an app also for Confluence?
Sure! Just take a look at our Data Protection and Security Toolkit for Confluence.
What are the basic steps I have to take to become GDPR compliant?
Assign a Data Protection Officer (DPO)
Review all the data protection processes you have, take care of personal data
Notify users about your policies and get their consent
Make sure you have a process in place to erase personal data upon users' requests
Notify users in case of security breaches
For more information, check out our articles:
Be GDPR compliant, Part 1: everything you need to know about getting consent in Jira and Confluence https://www.actonic.de/en/be-gdpr-compliant-part-1-everything-you-need-to-know-about-getting-consent-in-jira-and-confluence/
Be GDPR compliant, Part 2: ensure the right to erasure, find and anonymize PII in Jira https://www.actonic.de/en/be-gdpr-compliant-part-2-ensure-the-right-to-erasure-find-and-anonymize-pii-in-jira/
4 easy questions to check if you are fully GDPR compliant https://www.actonic.de/en/4-easy-questions-to-check-if-you-are-fully-gdpr-compliant/
CCPA vs. GDPR: data privacy laws in Europe and the USA https://www.actonic.de/en/ccpa-vs-gdpr-data-privacy-laws-in-europe-and-the-usa/
7 popular myths about GDPR https://www.actonic.de/en/7-popular-myths-about-gdpr/
New model of calculating GDPR fines is to increase possible penalties https://www.actonic.de/en/new-model-of-calculating-gdpr-fines-is-to-increase-possible-penalties/
Is it possible to anonymize the data of inactive (deactivated) users?
Yes, inactive (deactivated) users could be anonymized as same as normal users.
Is it possible to anonymize the data of deleted users?
Yes, but since it is not possible to select deleted users, you will have to create manually a Data Cleaner template with rules to search for the user name, display name and email of the deleted user.
How many tickets can the app handle?
There are no limitations, but the search/anonymization speed depends on a lot of parameters, like server CPU count, available RAM, other installed apps.
How long does it take to anonymize 1 user?
It depends on a lot of parameters, like the total number of tickets, user activity, server parameters (e.g. server CPU count), available RAM, other installed apps. In general, it can take from a few minutes to a few hours.
What process flow does Actonic Data Protection and Security Toolkit have?
What is the difference between Actonic Data Protection and Security Toolkit and other apps?
Our app is an all-in-one suite of the most effective and useful modules that companies require to cover all their data security needs. You can find some parts of Actonic Data Protection and Security Toolkit in 3rd party apps, but there isn't a single app out there that covers all the data protection policies' aspects.
What is the difference between the built-in Jira anonymization function and Actonic Data Protection and Security Toolkit?
Option | Jira built-in anonymization | Actonic Data Protection and Security Toolkit | Notes |
|---|---|---|---|
User anonymization method | Changes into an anonymous, unique alias, like jirauser80900 | Replace references from a person to some special Service User | Anonymization should be a one-way process, without any options to link aliases like jirauser80900 and a real person. Our app provides a not revertible anonymization process and the way to change content ownership to other users. |
Predefined rules for searching and anonymization of Personal Identifiable Information | None | 50+ built-in rules for various SSN, phone numbers, national ID, etc. | Read more: |
Ability to configure custom anonymization patterns | No | Yes | Read more: |
Is it possible to anonymize a user from an external user directory?
If a user belongs to an external user directory (Microsoft Active Directory or other LDAP directory servers) we сan still anonymize his/her content using the "User Anonymizer Template" of the Data Cleaner module, and switch all the references from a user to be anonymized to a service user. Using the "Data Cleaner" module, you can find any other Personal Identifiable Data related to a user and cleanup or anonymize it. What is not possible and not recommended to do with users from external user directories - cleanup Display Name, Email, and User Name. It should be done manually or after deleting the data from an external user management system.
Could I get all my data from Jira/Confluence using the app? This is one of the major requirements of the GDPR.
Only Jira/Confluence administrators can do it using the Data Cleaner and a User anonymization template. This template allows searching for all the tickets that belong to a specific user.
I cannot configure the app, what should I do?
Feel free to contact us and request a demo session or support via Support Portal.
Does your app store any personal data, and how does the app deal with it?
Yes, our app does store personal data. However, it can be cleaned at any time. Read more App configuration.
Do you offer any discounts?
Please email us at licenses@actonic.de.