“We”, “our” or “us” means StiltSoft private enterprise, a company whose registered address is at Gagarina str., bld. 49, 2-19, Gomel, 246050, Belarus, and any of our affiliates. StiltSoft is an Atlassian Verified vendor and an Atlassian Solution Partner.
“You”, “your” means you as a user of our App or Website.
“App” means a server or cloud software application developed by us and distributed through Atlassian Marketplace, by us or other authorized resellers.
“Website” means the website accessible at https://stiltsoft.com/, including its subdomains, and our other websites on which this Policy appears.
“Cloud App” means an App run on Atlassian’s servers and provided to you as cloud-based (software-as-service) solution.
“EULA” refers to StiltSoft End User License Agreement.
“Atlassian” means Atlassian Pty Ltd, the owner and provider of Atlassian Marketplace and certain products (Jira, Confluence, Bitbucket, etc.) or other product or service, with which the Apps are used.
“Personal Data” means information that can be used to identify you as an individual, like your first and last name, email address, username, usage data and so on. Personal Data does not include information that has been anonymized such that it does not allow for your identification. If you cannot be identified (e.g., when Personal Data has been aggregated and anonymized), then this Policy does not apply.
When We Act as Processor
Our Apps and Websites are intended to be used by organizations and businesses. Where we provide an App to an organization (e.g., to your employer or a client of your employer) that organization controls the information processed with the use of the App or by the App. This organization is the controller of the information, including your Personal Data, and is responsible for the accounts used to access the App, including your Atlassian account.
If this is the case:
Third Parties Processing Your Personal Data
This Policy does not cover the collection, processing, storage or use of your Personal Data, by Atlassian or any other third parties. We do not control when or how third parties collect, process, store or use your Personal Data. Please, refer to privacy policies of third parties in order to learn and understand how and when they use your information.
When We Act as Controller
There might be cases when you use our Apps not as an employee, contractor or representative of an organization, or when we, not your organization, determine the purposes and means of the processing, including collection, of your Personal Data. This Policy applies to such cases and they will be described further in more details.
App-Specific Privacy and Data Collection Terms
What Data We Collect and How We Do That
When you visit our Website, use our App or contact us directly we collect and process your Personal Data. The ways we collect it can be broadly categorized into the following:
Information you provide to us directly
When you use our Apps and Websites we might ask you to provide Personal Data to us. For example, we ask for your contact information when you set up an account with us, contact us with questions or request support, or you may provide your Personal Data to us when you provide feedback or make posts on our blog, forum or wiki pages.
Information we collect automatically
We collect some information about you automatically when you visit our Websites, like your region, type of device you use, type of browser you use, language of your browser. We collect some information about you automatically when you use certain Cloud Apps, like the type of device you use, type of browser you use, language of your browser or the screen resolution of your monitor or device. For certain Cloud Apps we also collect App-specific usage data, including App-specific events or actions, like the App features you use, the links you click on, the type, size and file formats of attachments you upload to the App, and how you interact with others when using the App. This information is useful for us as it helps us get a better understanding of how you are using and configuring our Apps and Websites so that we can improve them and continue to provide the best experience possible. We collect such usage data automatically upon installation of the App by your system administrator.
Some of this information is collected using cookies, similar tracking technologies and third-party tools like Google Analytics.
We also use session cookies that allow us to link your actions during a browser session. A browser session starts when you open the browser window and finishes when you close it. Session cookies are created temporarily and are deleted once the browser window is closed.
We use our own cookies (first party cookies):
Another example of such a third party is DISQUS, a comment hosting service, which may set cookies on your browser.
Web browsers will enable you to see what cookies you have got, allow you to delete them all or on an individual basis, and enable you block or allow cookies for all websites or individually selected websites. You can also normally turn off third party cookies separately (e.g., to opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout).
Information we get from third parties
We might collect Personal Data about you from third parties like Atlassian or your organization (from your employer or from other users of the App). For example, Atlassian provides us with billing and technical contacts details (name, address, email and phone number) upon installation of the App.
You may have the opportunity to connect to certain Apps through Facebook's or Google's API. If you connect to us through Facebook or Google, either when you register or after you have registered, we will collect, store, and use in accordance with this Policy information you agreed that Facebook or Google could provide to us through their API (e.g., your name and email address). The information we may collect in such case may include any information according to your Facebook or Google privacy settings, including your name, profile picture, email address and etc.
When you use certain Apps that integrate Atlassian products with non-Atlassian products, the former may provide us with your username (e.g., Evernote).
Legal Grounds to Process Personal Data
If you are an individual in the European Economic Area (EEA) the following provisions of this section apply to you.
Where we collect Personal Data, we will only process it when we have the legal basis for the processing set out in applicable data protection laws. Such legal bases are:
How We Use Personal Data
Our processing of your Personal Data is necessary for us to provide you with the Websites and Apps. If we do not process your Personal Data, we may be unable to provide you with all or some features of the Apps.
We use your Personal Data for a number of purposes, which may include the following:
How We Can Share Your Personal Data
When you post on our forums or blogs you make your username and/or email address publicly visible. Thus, you acknowledge that your Personal Data (your name) will be publicly exposed if you post your comments or feedback in the public sections of our Websites (e.g. forums, blogs, feedback portals, etc.).
There will be times when we may need to share your Personal Data with third parties. We may disclose your Personal Data to:
International Data Transfers
When we process and share data, it may be transferred to, and processed in, countries other than your country. Where Personal Data are processed in another country, we put safeguards in place to ensure your Personal Data remains protected.
For individuals in the European Economic Area (EEA), this means that your data may be transferred outside of the EEA. Where your Personal Data is transferred outside the EEA, it will be transferred to countries where we have compliant transfer mechanisms in place to protect your Personal Data, in particular, by implementing the European Commission’s Standard Contractual Clauses to the contracts with the entities the data is transferred to or by using other appropriate legal mechanisms to safeguard the transfer.
We are committed to protecting your Personal Data and have appropriate technical and organizational measures in place to protect data from loss, misuse and unauthorized access, disclosure, alteration and destruction. We process all Personal Data using industry-standard techniques. We restrict access to such information to our employees, contractors, and agents who need that information in order to process it. Our security team continuously monitors security systems, event logs, notifications and alerts from all systems to identify and manage threats.
Some data is controlled by your organization, some data you can delete whenever you like, some data is deleted automatically, and some data we retain for longer periods of time when necessary. When the data is being deleted, we make sure that your data is safely and completely removed from our servers or retained only in anonymized form.
Information retained until controller removes it
When the App is made available to you through an organization (e.g., your employer), we retain your information as long as required by the controller (your organization).
Information retained until you remove it
If you are connected to our App by using your Facebook or Google account you can stop sharing the information from Facebook or Google with us by removing our access to that service.
Information for marketing communications
If you has not opted-out or have consented (as the case may be) to receive marketing communications from us, we retain information about your marketing preferences for a reasonable period of time from the date you last used or expressed interest in our Apps.
Information retained for extended time periods for limited purposes
Sometimes business and legal requirements oblige us to retain certain information, for specific purposes, for an extended period of time. Reasons we might retain some data for longer periods of time include:
You have the following rights with respect to your Personal Data that we process as the controller:
Please note that we will be able to assist you in exercising your rights only when we are the controller of your Personal Data (e.g., when we use your information for marketing communications or when you have contacted us not as an employee or representative of an organization). You can exercise your rights at any time by sending an email to firstname.lastname@example.org. In all other cases, please direct your data privacy questions and requests to your organization.
We may require evidence of and be satisfied as to your identity before we take any requested action.
We reserve the right, at our sole discretion to put into effect, modify or revise this Policy at any time by posting the Policy or revised Policy on this page. The Policy or any changes will become effective upon posting of the revised Policy. Depending on the significance of the changes to this Policy we will use reasonable efforts to inform you by email, by posting a notice on the Website, or by using other ways to notify you about the changes.
Effective date: May 25, 2018
Last Update: July 25, 2018