Privacy Policy for Assets
...
Owner for Jira
This privacy policy applies to the Assets Importer for Microsoft Azure AD/Entra ID (“Importer“) provided by LovebyteOwner for Jira application (“App“) provided by lovebyte.codes GmbH (“lovebyte.codes”, “we”, “us”), and outlines the collection, processing, and storage of user data. By using the ImporterWe will only use data to support features, improve products or help us troubleshoot bugs and problems. By using our App, you consent to the practices described in this policy.
Services covered by this Policy
"Assets Owner for Jira” on Atlassian Marketplace
Definitions
“Customer” refers to the entity that purchases our service or product.
“Customer Data” or “Your Data” refers to the electronic data uploaded into the service by or for the Customer or its users.
“User” refers to an individual authorized by the Customer to access and use the service or subscription.
Data Collection and Storage
The Importer operates Our App operate within the Atlassian Cloud environment. The app stores the tenant id, client Id, client Secret as well as the Graph API Key of the Microsoft Entra ID Enviourment within the Atlassian Cloud instance, for the purpose of fetching the data to import them into the Jira Assets.
Data Usage
We do not collect or store any user-specific data. The Importer does not Any access and/or data collection only occurs with user consent. Data is stored exclusively within encrypted Jira entities and a database by lovebyte.codes to protect sensitive information.
For this App, we additionally save a reference to the Atlassian instance where the App is installed. This is necessary for handling installation and deinstallation processes and can only be accessed by authorized lovebyte.codes personnel.
Types of Data Collected
We do not collect personal or sensitive user information unless explicitly required for functionality. Data collected includes:
Data provided by our Customer:
Email: Double encrypted Mail Address by an Jira Servicemanagement administrator.
API Token: Double encrypted Token by the same administrator, to access the Jira Servicemanagement Assets.
Encryption String: An encrypted String with which the other data gets encrypted.
Visibility Settings: Double encrypted settings of who has access to the 'My Assets' Page, and what will be displayed.
Data provided by our products:
User data: Anonymized for individual users, with the exception of the environment (Atlassian instance) where our app will be used for.
Installation information: Atlassian instance references.
Usage data: Basic anonymized metrics to improve app performance.
Server logs: When using our infrastructure our app will generate server logs that may contain customer data including environment (Atlassian instance) names.
Service & support: All information provided during the support process are saved for later reference, product enhancements and training matters.
We do not access, log, or share personal information with third parties unless required by law. More details about our data processing practices can be found in our [Data Processing Addendum (DPA)].
Personal Data Usage
The App does not specifically access, collect, or store any personal or sensitive information from usersuser data unless necessary for the app's core functions. Any data collected is anonymized, and user data is never logged, shared, or forwarded to any internal or external party.
More information about data processing can be found in our DPA (Data Processing Addendum).
Data Security
We take prioritize the security of user data seriously. All data , including tenant id, client id, client secret and the Graph API Key, are stored securely within the Atlassian Cloud infrastructure, utilizing is encrypted and handled using secure connections, and industry-standard security measures to protect against are applied to safeguard data from unauthorized access, disclosure, or alteration.
Access to Data
No one from our company has Only authorized personnel at lovebyte.codes GmbH have access to the tenant id, client Id, client Secret and Graph API Key stored within the Atlassian Cloud. We data (e.g., Atlassian instance references). Data is securely stored in AWS DynamoDB, and we do not share user data with any third parties unless required by law.
Data Sharing
We do not share any of your personal information with any third-parties for marketing, sales or legal process.
Changes to Privacy Policy
We reserve the right to ad-related purposes.
We may disclose personal information that our customers, partners and users provide to the following categories of recipients:
To our contractors, business partners and service providers we use to support our service. Some of the services we provide require the involvement of our third-party service providers, such as web hosting providers, virtual infrastructure (including storage and backup), error analysis tools, customer relationship management providers and software providers. We have carefully selected these third-parties and have taken steps to ensure that your personal information is adequately protected.
To any competent law enforcement body, regulatory, government agency, court or other third party to:
comply with any court order, a request from any competent law enforcement agency, or any other legal obligation;
enforce or apply the terms of the customer agreement;
enforce or apply the terms of the agreement for partnership with our partners; and
protect the rights, property, or safety of lovebyte.codes, our customers, users, or others.
In accordance with customer instructions.
Data Retention
We retain data only for as long as it is necessary for business purposes, such as maintaining and improving our services. Once there is no legitimate need for the data, it will be securely deleted after a maximum of 60 days.
Log anonymization: All user data included in logs will always be anonymized, meaning no personally identifiable information (PII) will be stored in these logs. Logs are used solely for performance monitoring, troubleshooting, and improving the functionality of our App.
Log deletion: All logs will be automatically deleted after a maximum of 60 days, ensuring minimal retention of data for performance and troubleshooting purposes.
Targeted support cases: We only identify specific users for support purposes when direct contact is initiated by the user or Customer. Any data targeted for support will be processed in accordance with this privacy policy and only handled by authorized personnel.
User Rights
Users have the right to request access to, correction of, or deletion of their data. For inquiries regarding your data or exercising your rights, contact us at privacy@lovebyte.codes.
International Data Transfers
In cases where data may be transferred outside of the European Economic Area (EEA), we ensure that appropriate safeguards are in place to comply with data protection regulations.
Cookies and Tracking Technologies
Our App does not use cookies or other tracking technologies.
Changes to the Privacy Policy
We may update or modify this privacy policy at any time. Any , and changes will be effective take effect immediately upon posting the revised policy on the Importer listing page in the Atlassian Marketplace. We encourage users to review this policy periodically for any updates.
Contact Us
If you have any questions or concerns about this privacy policy or the practices of the Importer, please contact us at office@lovebyte.codes.
Conclusion
We are committed to protecting the privacy and security of user data while providing a valuable service through the ImporterApp. Your trust is important to us, and we are dedicated to maintaining the confidentiality and integrity of your information.
Contact Us
For questions or concerns about this privacy policy or our data practices, please contact us at privacy@lovebyte.codes.
Contact
lovebyte.codes GmbH
Osterbrooksweg 35-41
22869 Schenefeld
Germany