Data Security and Privacy Statement for Kanban Flow Metrics
1. Overview
The Kanban Flow Metrics Jira app automatically calculates and displays Lead Time and Cycle Time flow metrics for your Jira projects. This statement explains how we handle your data.
This Data Security and Privacy Statement outlines what data we process, how we use it, and the measures we take to protect your information when you use the Kanban Flow Metrics app on Jira Cloud.
2. Data We Process
Project Data
Project keys, names, and configurations
Work types and workflow states
Custom field definitions
Project-level settings
Work Item Data
Work item keys, IDs, and status information
Work item changelog data (for metric calculations)
Custom field values (Lead Time and Cycle Time metrics)
Work item comments (when alerts are enabled)
User Configuration
Flow metric configurations (start/end states, thresholds)
Alert preferences and notification settings
Date range filters and project settings
3. How We Use Your Data
Calculate flow metrics (Lead Time and Cycle Time)
Update custom fields when issue status changes
Process multiple issues via batch jobs
Send alerts based on threshold breaches
Generate reports and summary statistics
Save user configurations and preferences
4. Data Storage and Security
We do not transmit or store your data outside Atlassian's infrastructure. No external databases or third-party storage systems are used.
Storage Location
All data is stored within Atlassian's secure cloud infrastructure:
App configurations in Atlassian Forge storage
Project settings in Jira project properties
Metrics in Jira custom fields
Processing data in Atlassian's event system
Security Measures
Built on Atlassian Forge secure platform
All data encrypted in transit and at rest
Access controlled by Jira permissions
Secure API authentication
Input validation and sanitization
5. Data Sharing
We do not share your data with any third parties. All processing occurs within:
Your Jira Cloud instance
Atlassian's secure infrastructure
Our app's processing functions
6. Your Rights
Data Control
Modify or delete all app configurations
Enable/disable alert notifications
Export data through Jira's standard tools
Data Removal
To completely remove your data:
Uninstall the app from your Jira instance
Delete the Lead Time and Cycle Time custom fields
Clear project properties
7. Compliance
The app complies with:
Atlassian Forge security standards
Atlassian Marketplace requirements
Jira Cloud security best practices
8. Monitoring and Auditing
Security monitoring through Atlassian Forge
Secure error logging
Performance tracking
All logs exclude any user-identifiable or sensitive issue data.
9. Incident Response
In case of security incidents:
Immediate assessment and containment
User notification through appropriate channels
Remediation and resolution
Documentation and lessons learned
We aim to assess and respond to incidents within 24 hours and will cooperate with Atlassian and relevant regulators where required.
10. Technical Details
Platform: Atlassian Forge (Node.js 22.x)
APIs: Jira REST API v3
11. Contact Information
For privacy or security questions:
Support: https://hangzhouace.atlassian.net/servicedesk/customer/portal/4
Response Time: Within 24 hours
12. Updates
We may update this Data Security and Privacy Statement from time to time to reflect:
Changes in how we process data
Introduction of new features or functionality
Updates required by applicable laws or regulations
Improvements to security practices
For material changes, users will be notified through app update release notes and related documentation.
13. Data Residency
All data processed by the Kanban Flow Metrics app resides within Atlassian's designated data residency regions, in accordance with your Jira Cloud site's configuration.
We do not independently transfer, replicate, or store data outside Atlassian's infrastructure or beyond the region defined by your Jira instance.
Note: For Atlassian's overall data handling practices, please refer to Atlassian's Privacy Policy and Security Practices.