Privacy Policy

1 Introduction

Rixter AB is committed to keep the privacy of people with whom we come into contact. Please read the following privacy policy to understand how we collect, use, share, control and protect the information that you provide to us, including Personal Data. If you do not agree with this privacy policy, do not access or use our websites, products and services or interact with any other aspect of our business. By submitting information to us in any way, or by using our websites, systems, products or services ("Services"), or by interacting with us via email, phone, messaging service, in-person meeting or any other means ("Interactions"), you consent to the collection, use and transfer of your information under the terms of this policy. 

We may update this privacy policy from time to time. Amendments to these terms will be effective upon posting and operate as a condition of your continued engagement with Rixter AB or continued use of our websites, software or services. It is your responsibility to check this page periodically for any updates to this privacy policy. We encourage you to review our privacy policy whenever you use our Services to stay informed about our information practices and the ways you can help protect your privacy.

‘Rixter AB’, ‘we’ and ‘us’ refers to Rixter AB (VAT number SE559109825501)

2 Definitions

2.1 The terms below shall have the following meanings:

"Personal Data Breach," "Controller," "Processor", "Data Subject", "Personal Data", "Processing," "Special Category Data", and "appropriate technical and organisational measures” as used in this Policy shall have the meanings given in the GDPR irrespective of whether GDPR, UK GDPR, or U.S. Data Protection Law applies.

"Data Protection Law" means European Data Protection Law including UK GDPR and U.S. Data Protection Law that are applicable to the processing of Personal Data under this Policy.

"European Data Protection Law" means any data protection and privacy laws of Europe applicable to the Personal Data in question, including where applicable

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation)("GDPR"); (ii) Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector; (iii) any applicable national implementations of (i) and (ii); (iv) the Swiss Federal Data Protection Act of 19 June 1992 and its Ordinance; and (v) in respect of the United Kingdom, the Data Protection Act 2018, UK GDPR and any applicable national legislation that replaces or converts in domestic law the GDPR or any other law relating to data and privacy as a consequence of the United Kingdom leaving the European Union; in each case as may be amended, superseded or replaced from time to time;

“U.S. Data Protection Law” means data protection or privacy laws applicable to Personal Data in force within the United States, including the CCPA.

3 Regulatory registration

Any information will be collected, stored and processed within countries that comply with the GDPR. Primarily data is stored within EU data centers.

4 Contacting Us regarding this Privacy Policy

Rixter AB is committed to working with you to ensure compliance with all applicable laws and regulations concerning the protection of Personal Data. Should you wish to exercise any of the rights outlined in this Policy, or have further queries with regards to this Policy, please contact us at support@rixter.se or via the webform.

You also have the right to issue a complaint with the Swedish Data Protection Authority. Contact details to the Swedish Data Protection Authority are telephone: +46 (0) 8-657 61 00 or e-mail: datainspektionen@datainspektionen.se

5 Rixter AB Third Parties

We use third parties that help us operate, provide, improve, integrate, customise, and support our Services.

5.2 Service Providers

5.2.1 LinkedIn. Refer to privacy policy at https://www.linkedin.com/legal/privacy-policy

5.2.2 Atlassian. Refer to privacy policy at https://www.atlassian.com/legal/privacy-policy

5.2.3 AWS. Refer to privacy policy at https://aws.amazon.com/privacy/

5.2.4 Slack. Refer to privacy policy at https://slack.com/intl/en-se/privacy-policy

6 Product Data

There are various forms of data that are generated and collected from your use of products. Reasonable efforts are made to encrypt or encode Personal Data data where we know it is present in Product Data.

6.1 Apps build for Atlassian Server or Datacenter made by Rixter AB

Any data stored in Inbox for Jira and Integrations Hub for Jira is locally stored on the clients data centers where Rixter AB has no access to.

6.2 Atlassian Forge Apps made by Rixter AB

Any data stored in our apps build on the Atlassian Forge framework is stored on Atlassians cloud instance for the clients where Rixter AB has no access to.

6.3 Atlassian Connect Apps made by Rixter AB

Any data stored in Integrations Hub for Jira is stored on Rixter ABs cloud instance, where credentials are encrypted at rest. Logs captured is store for 30 days by default based on the purpose that the client needs it to perform configurations and troubleshooting. The customer can optionally change this on the instance from 1 day to 3 years. Rixter AB may have access to data available to an administrator based on the specific applications scopes granted (please see https://confluence.atlassian.com/upm/atlassian-connect-app-scopes-445186491.html for more information on application scopes).

The whole application and its data is backed up for 6 month in an encrypted store at AWS.