Cloud Security Statement

April 01, 2023

The safety and security of your data is our top priority. We are committed to ensuring the highest standards of cyber security throughout our codebase and across our ecosystem of customers, partners and employees.

Data & Application Security

Our Cloud Apps store their data within the Atlassian hosted Forge Environment, this ensures a very high data security.

codeclou employees are responsible for the security of all data that may come to them, regardless of format. Only authorized codeclou employees have access to the Cloud Apps. When accessing the application, each employee must authenticate with their individual authentication credentials.

We align ourselves with Atlassian's Security Severity Levels and as an Atlassian Marketplace partner, we adhere to their security requirements for Cloud Apps.

If you believe you have found a vulnerability or have experienced a security breach involving a codeclou Cloud App, please raise a security incident.

Continuous Security Assessments

Our active security policies and procedures help us to identify abnormal behavior like API rate requests and more.

codeclou Apps are participating in the Atlassian Marketplace Security Bug Bounty Program*, which ensures the continuous security pen testing of our apps.

Furthermore are our Cloud Apps constantly scanned with SCA and SAST scanners (snyk.io) and the Atlassian Forge Security Requirement Tester (FSRT).

(*) Currently Customfield Editor for Jira Data Center and Cloud version participate in the Atlassian Bug Bounty Program.

Privacy

codeclou is committed to protecting your personal information. For more details, please see our Privacy Policies.

Reporting Issues

At codeclou we take any reports of vulnerabilities or security incidents very seriously. If you encounter a security issue with any of our apps, please raise a security incident.

Our Support SLAs adhere to Atlassian Security Bug Fix Policy timelines and are committed to addressing security issues promptly.

CAIQ-Lite Security Self-Assessment

See the full answers to the CAIQ-Lite Security Self-Assessment.