BrizoIT Privacy Policy

Policy Owner: Volodymyr Krupach

Effective Date: April 29, 2026

Our Privacy Commitment

BrizoIT is committed to protecting your privacy and handling your data responsibly. We believe in transparency and data minimization - collecting only what we need to provide our services effectively.

What We Collect and Why

Core Data Principle: Minimal Data Collection

For our cloud applications, BrizoIT does not store personal data on our servers. We only collect:

• Jira domain information (to identify your organization)

• Configuration settings (to customize our apps for your needs)

How We Use Your Information

• Service Delivery: To provide and maintain our Atlassian Marketplace applications

• Support: To respond to your questions and resolve technical issues

• Security: To protect our services and detect potential threats

• Legal Compliance: To meet our contractual and regulatory obligations

Our Security Measures

We implement robust security controls to protect your information:

Incident Response

• Managed via our Incident Response Plan with all issues logged in Jira

• Email notifications sent for confirmed security incidents affecting your data

• Escalation procedures ensure prompt resolution of critical issues

Vulnerability Management

• Quarterly vulnerability scans of all public-facing systems

• Annual penetration testing as outlined in our Operations Security Policy

• 30-day remediation timeline for critical and high-risk vulnerabilities

Technical Controls

• Encryption in transit for all data communications using industry-standard TLS

• Role-based access control following the principle of least privilege

• Personnel background checks for all employees with system access

• Multi-factor authentication for production system access

Your Rights and Choices

You have the right to:

• Access your personal information

• Correct inaccurate data

• Delete your data (subject to legal requirements)

• Opt-out of any data sharing (where applicable)

Trust Center

For comprehensive security documentation, real-time system status, and detailed compliance reports, visit our BrizoIT Trust Center at:

🔗 trust.brizoit.com

The Trust Center provides:

• Live security monitoring dashboards

• SOC 2 compliance reports

• Security architecture documentation

• Incident status updates

• Third-party security assessments

Contact Us

Privacy Questions? Contact us at support@brizoit.com

We respond to all privacy inquiries within 10 business days and are committed to resolving your concerns promptly.

Third-Party Relationships

We work with carefully vetted partners who meet our security standards. All third-party relationships are governed by Data Protection Agreements (DPAs) to ensure your data remains protected.

Data Location and Retention

• Cloud Applications: Your data remains within Atlassian's secure infrastructure

• Configuration Data: Stored only as long as needed to provide services

• Support Records: Retained per our Data Management Policy requirements

Updates to This Policy

We review and update this policy annually or when significant changes occur. The current version and effective date are always displayed at the top of this document.

Learn More: For detailed technical specifications and complete policy documentation, visit our Trust Center or contact our team trough Support Desk.

Version History