Security policy

Version: 1.0

Last updated: 23.02.2024

Introduction

This security policy outlines the measures and practices implemented by Grandia Solutions to ensure the security and privacy of user data within this app. The objective is to maintain user information's confidentiality, integrity, and availability.

Authentication and Authorization

User Authentication:

Users are required to authenticate using their valid Atlassian account credentials to access the app.

Authorization Controls:
Role-based access controls are enforced to ensure that users have appropriate permissions to create, view, and manage dedicated spaces and reports.

Secure Practices

All data is stored on Atlassian servers, which means that the data we receive does not leave the Jira space on which the app was open.

Audit Logging

The app maintains detailed audit logs, capturing user activities, system events, and any security-related incidents. Access to audit logs is restricted to authorized personnel for monitoring and incident response purposes.

Patch and Update Management

The organization commits to releasing patches and updates promptly to address any identified security vulnerabilities in the app.

Incident Response Plan

Users are encouraged to report any security incidents or vulnerabilities promptly through support@grandiasolutions.com. Our team will promptly investigate reported incidents, take appropriate remedial actions, and communicate with affected users.