‘Rixter AB’, ‘we’ and ‘us’ refers to Rixter AB (VAT number SE559109825501)
2.1 The terms below shall have the following meanings:
"Personal Data Breach," "Controller," "Processor", "Data Subject", "Personal Data", "Processing," "Special Category Data", and "appropriate technical and organisational measures” as used in this Policy shall have the meanings given in the GDPR irrespective of whether GDPR, UK GDPR, or U.S. Data Protection Law applies.
"Data Protection Law" means European Data Protection Law including UK GDPR and U.S. Data Protection Law that are applicable to the processing of Personal Data under this Policy.
"European Data Protection Law" means any data protection and privacy laws of Europe applicable to the Personal Data in question, including where applicable
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation)("GDPR"); (ii) Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector; (iii) any applicable national implementations of (i) and (ii); (iv) the Swiss Federal Data Protection Act of 19 June 1992 and its Ordinance; and (v) in respect of the United Kingdom, the Data Protection Act 2018, UK GDPR and any applicable national legislation that replaces or converts in domestic law the GDPR or any other law relating to data and privacy as a consequence of the United Kingdom leaving the European Union; in each case as may be amended, superseded or replaced from time to time;
“U.S. Data Protection Law” means data protection or privacy laws applicable to Personal Data in force within the United States, including the CCPA.
3 Regulatory registration
Any information will be collected, stored and processed within countries that comply with the GDPR. Primarily data is stored within EU data centers.
Rixter AB is committed to working with you to ensure compliance with all applicable laws and regulations concerning the protection of Personal Data. Should you wish to exercise any of the rights outlined in this Policy, or have further queries with regards to this Policy, please contact us at email@example.com or via the webform.
You also have the right to issue a complaint with the Swedish Data Protection Authority. Contact details to the Swedish Data Protection Authority are telephone: +46 (0) 8-657 61 00 or e-mail: firstname.lastname@example.org
5 Rixter AB Third Parties
We use third parties that help us operate, provide, improve, integrate, customise, and support our Services.
There are various forms of data that are generated and collected from your use of products. Reasonable efforts are made to encrypt or encode Personal Data data where we know it is present in Product Data.
6.1 Apps build for Atlassian Server or Datacenter made by Rixter AB
Any data stored in Inbox for Jira and Integrations Hub for Jira is locally stored on the clients data centers where Rixter AB has no access to.
6.2 Atlassian Forge Apps made by Rixter AB
Any data stored in our apps build on the Atlassian Forge framework is stored on Atlassians cloud instance for the clients where Rixter AB has no access to.
6.3 Atlassian Connect Apps made by Rixter AB
Any data stored in Integrations Hub for Jira is stored on Rixter ABs cloud instance, where credentials are encrypted at rest. Logs captured is store for 30 days by default based on the purpose that the client needs it to perform configurations and troubleshooting. The customer can optionally change this on the instance from 1 day to 3 years. Rixter AB may have access to data available to an administrator based on the specific applications scopes granted (please see https://confluence.atlassian.com/upm/atlassian-connect-app-scopes-445186491.html for more information on application scopes).
The whole application and its data is backed up for 6 month in an encrypted store at AWS.