We develop Atlassian Apps that help organizations to enhance team collaboration and work more efficiently

You are here because security matters to you. We know you need to be sure your service providers take security as seriously as you do. Below you’ll find more information on how we ensure the safety of your data in Avisi Atlassian Apps.

1. ISO 27001 Certification

Avisi became ISO 27001 certified in July 2017. The certification was executed by Dekra.

ISO 27001 is a standard providing requirements for an information security management system. We use this system to manage sensitive information and evaluate security risks.

We are continuously improving our security, privacy and compliance processes and controls. We use feedback from different internal teams, customers, internal and external auditors to do so.

2. Product security

Our products process sensitive information. We make sure that our products are as secure as possible by attending the following things:
  • SSL encrypted connections to and from our servers.
  • SSL encrypted connections between our servers.
  • HSTS to prevent downgrade attacks and cookie hijacking.
  • MITM-attack prevention.
  • Access to our servers is heavily restricted.
Our products process sensitive information. We make sure that our products are as secure as possible by attending the following things:

Some of our products save sensitive information for you. This is how we make sure that your data is stored safely:
  • Hourly backups of our production data.
  • Servers are spread over multiple availability zones.

3. Amazon Web Services

Our cloud apps are hosted on Amazon Web Services (AWS), the largest and most secure infrastructure provider on the planet. The location is chosen based on the proximity to Atlassian’s own cloud servers in both United States and European regions.

We ensure stability, scalability and high availability by addressing the following:
  • Access to our servers is heavily restricted.
  • Servers are spread over multiple availability zones.
  • Databases are backed up regularly.
Amazon has published a security statement, which you can find here: Amazon security statement.

4. Employees

We make sure that our employees can be trusted with your data:
  • All employees are in possession of a Certificate of Conduct for handling sensitive information.
  • All employees are trained to make security the priority.
  • Employees do not have direct access to production data.
  • We have 'employee leaving' procedures in place.
  • We only work on computers with full disk encryption and a strict locking policy.

5. Questions

If you have any questions regarding our security policy, please contact us.