Security policy
Version: 1.0
Last updated: 23.02.2024
Introduction
This security policy outlines the measures and practices implemented by Grandia Solutions to ensure the security and privacy of user data within this app. The objective is to maintain user information's confidentiality, integrity, and availability.
Authentication and Authorization
User Authentication:
Users are required to authenticate using their valid Atlassian account credentials to access the app.
Authorization Controls:
Role-based access controls are enforced to ensure that users have appropriate permissions to create, view, and manage dedicated spaces and reports.
Secure Practices
All data is stored on Atlassian servers, which means that the data we receive does not leave the Jira space on which the app was open.
Audit Logging
The app maintains detailed audit logs, capturing user activities, system events, and any security-related incidents. Access to audit logs is restricted to authorized personnel for monitoring and incident response purposes.
Patch and Update Management
The organization commits to releasing patches and updates promptly to address any identified security vulnerabilities in the app.
Incident Response Plan
Users are encouraged to report any security incidents or vulnerabilities promptly through support@grandiasolutions.com. Our team will promptly investigate reported incidents, take appropriate remedial actions, and communicate with affected users.