Skip to main content

Adaptavist

Privacy Policy

Privacy Policy

1 Introduction

Adaptavist and all its affiliates are committed to preserving the privacy of all visitors to this website and of clients using our products and services. Please read the following privacy policy to understand how we use and protect the information that you provide to us.

By submitting details to us, you consent to the collection, use and transfer of your information under the terms of this policy. Should you have any specific queries after reading this policy, please feel free to contact us for clarification.

Your privacy is important to us, and so is being transparent about how we collect, use and share information about you. This policy is intended to help you understand what information we collect about you when you use our products and services, or otherwise interact with us, how we use and share information we collect, how we store and secure information we collect and how we access, collect and control your information.

‘Adaptavist’, ‘we’ and ‘us’ refers to Adaptavist Group LTD (company number 06878779) and any of its affiliates. If you do not agree with this privacy policy, do not access or use our products and services or interact with any other aspect of our business. Adaptavist employees, its affiliates, subcontractors and third-parties may only access your information for specific purposes.

Adaptavist reserves the right to remove offensive, provocative or discriminatory language posted on or sent through our systems and at its sole discretion, Adaptavist shall remove any user’s access to its systems, services and products as a result of such behavior.

2 Contacting Us

Should you have any questions about how your information is handled, you can do so by submitting an enquiry via http://www.adaptavist.com/contact/ or by email to support@adaptavist.com.

3 IP Addresses and Server Logs

Our web service stores access logs in the standard formats which include IP addresses.

We use the information to better understand user behavior on our systems, so that we may improve the experience for all. We also use the information for security and operational purposes.

4 Search Results

We monitor search results to ensure that people are finding the information they are looking for quickly and easily. Should we identify pages that are giving misleading search results we will amend them to avoid such issues.

5 Information that we collect from you

When you use our products and services you may be asked to provide certain information about yourself, including your name and contact details. We may also collect information about your usage, as well as information you provide during such usage. This includes using our websites, products and services, as well as any correspondence or communication you send.

6 Privacy of other websites

Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we are not responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement.

7 Users of age 16 and under

If you are aged 16 or under, please get your parent/guardian’s permission beforehand whenever you provide personal information to this website. Users without this consent are not allowed to provide us with personal information. If you are a parent or guardian and believe your child has provided us with personal data without your consent, please contact us and we will take steps to delete such personal data from our systems.

8 Use of your information

Use of your information will vary depending on how your information was tracked. For example, if you send us an email we will use your information to reply to your message. In other cases, we may use your information to enable us to provide you with access to some or all parts of our site. We may also use and analyze the information we collect (for example page rankings and emails) so that we can administer, support, improve and develop our business. 

We collect information to process your order, manage your account (where applicable), and we may contact you for your views on our products and services and to notify you occasionally about important changes or developments to the site or our products and services. All email communications from Adaptavist shall provide the option to unsubscribe at any time.

9 Disclosure of your information

The information you provide to us will be held on our computers and may be accessed by or given to our staff, affiliates or subcontractors. Unless required to do so by law, we will not otherwise share, sell or distribute any  sensitive, personal information you provide to us without your consent.

Clients who purchase goods or services from Adaptavist may be referenced in promotional material and website. We may identify you by name, trade name, logo and trademark. Should you not want to be listed, please contact us at here or support@adaptavist.com. Individuals will never be added to the list.

Finally, if our business enters into a joint venture with or is sold to or merged with another business entity, your information may be disclosed to our new business partners or owners.

10 Access by your company administrator

You should be aware that the administrator of your products and services at our company may be able to: access information in and about your account; disclose, restrict, or access information that you have provided or that is made available to you when using your account, and; control how your account may be accessed or deleted.

11 Comments and Ratings

Should any pages on this site allow posting of comments, your username will be associated with any comments (except in areas where anonymous comments are permitted, your post and username will be displayed alongside those comments to anyone who has access to see them).

12 Software Downloads

We may make certain software available for download on this website and may link to software on other, third party websites. This software may be created by Adaptavist or by third party vendors. The software may be programmed to access our servers and/or third party servers in order for the software to operate and in order to check for program upgrades or enhancements. From time to time, new files may be added to your computer in order to upgrade the software or add new functionality to it. These changes may occur without notice to you. If at any time you wish to uninstall the software program, you may do so by following the instructions that accompany the software. Use of the software will be governed by a separate Adaptavist End User License Agreement.

13 Data Protection Rights Under GDPR

You are entitled to see the information held about you and you may ask us to make any necessary changes to ensure that it is accurate and kept up to date. If you wish to do this, please contact us. Please note that we will require proof of your identity and, because we are a small company, your request may take up to 30 working days to process. Your rights under GDPR are:

13.1 Right to access

You have certain rights under the GDPR, for instance, you can ask to be told what information we hold about you in our databases. We will provide you with all the details that we hold about you, both online and offline, upon request.

13.2 Right to erasure

Under certain conditions, you have the right to request that we erase your personal data.

13.3 Right to restrict and object processing

You also may restrict or object the processing of your personal data, in some circumstances.

13.4 Right to update

You are entitled to see the information held about you and you may ask us to make any necessary changes to ensure that it is accurate and kept up to date. If you wish to do this, please contact us.

13.5 Right to rectify

We want to make sure your personal information is correct and up to date. You may ask us to correct or remove information you think is inaccurate.

13.6 Right to data portability

You have the right to have your personal data transmitted to another controller, where technically feasible and if it does not adversely affect the rights and freedoms of others.

13.7 Right to withdraw

You have the right to withdraw your consent. The withdrawal will not affect the lawfulness of processing based on consent before its withdrawal.

13.8 Notification Obligation

If you have exercised your right of rectification, erasure or restriction against us, we are obliged to notify all recipients whom we have disclosed your personal data, of the rectification, erasure or restriction of the processing of your data, unless this proves impossible or involves a disproportionate effort.

13.9 Right to complain to a regulatory authority

You have the right to complain to a supervisory authority if you consider that the processing of your personal data infringes on your rights under the GDPR.

14 Adaptavist Third Parties

We collaborate with third parties that help us operate, provide, improve, integrate, customize, and support our products and services.

You warrant that you have familiarised yourself with and agree to be bound by any applicable third party terms relevant to the Adaptavist software. The information we receive when you link or integrate our services with a third-party service depends on the settings, permissions and privacy policy controlled by that third-party service. You should always check the privacy settings and notices in these third-party services to understand what data may be disclosed to us or shared with our services. 

14.1 Service Providers

We work with third-party service providers to supply website and application development, hosting, maintenance, backup, storage, virtual infrastructure, payment processing, analysis and other services for us, which may require them to access or use information about you. Adaptavist service providers may include, but are not limited to the following and any further third parties listed in section “Types of Cookies”:

14.1.1 Elev.io. Refer to privacy policy at https://elev.io/legal/privacy-policy

14.1.2 Gumroad.  Refer to privacy policy at https://gumroad.com/privacy

14.1.3 Stripe. Refer to privacy policy at https://stripe.com/en-se/privacy

14.1.4 HubSpot. Refer to privacy policy at  https://legal.hubspot.com/privacy-policy

14.1.5 Segment.io. Refer to privacy policy at https://segment.com/legal/privacy/?ref=nav

14.1.6 Squarespace. Refer to privacy policy at https://www.squarespace.com/privacy

14.1.7 SuperSet.  Refer to website at https://superset.apache.org/index.html

14.1.8 AWS.  Refer to privacy policy at https://aws.amazon.com/privacy/

14.1.9 Kibana.  Refer to privacy policy at https://www.elastic.co/legal/privacy-statement

14.1.10 LaunchDarkly.  Refer to privacy policy at https://launchdarkly.com/policies/privacy

14.2 Partners

Our products integrate with third parties products. We may share your information with these third parties in connection with their services, which will be described in relevant product documentation. Additionally, you may choose to make use of third-party add-ons in conjunction with Adaptavist  services. Third-party add-ons are software written by third-parties to which you grant access privileges to your content. We may also share information with these third parties where you have agreed to that sharing. Adaptavist partners may include, but are not limited to: 

14.2.1 Atlassian and Trello. Refer to privacy policy at https://www.atlassian.com/legal/privacy-policy

14.2.2 Slack. Refer to privacy policy at https://slack.com/intl/en-se/privacy-policy

15 Pixels

A pixel is a block of code placed within a website’s or product’s code that allows measurement of  the effectiveness of advertising. When you visit our website and take an action, the pixel collects the data from your behavior and reports the action. Adaptavist and our third-party partners use cookies and pixels to provide functionality and to recognize you across different services and devices.We collect this information from you automatically through pixels. By continuing to use this site, you consent to this policy. 

16 Cookies

Cookies are text files placed on your computer to collect visitor behavior information.

When you visit our website, or download our products, we collect information on usage from you automatically through cookies. By continuing to use this site, you consent to this policy. First-party and third-party cookies are used to improve your online experience. Cookies allow you to log in to our systems, connecting various page views together into a session. When you use our products and services you may be asked to provide certain information about yourself, including your name and contact details. We may also collect information about your usage, as well as information you provide during such usage. This includes using our websites, products and services, as well as any correspondence or communication you send.

17 Types of Cookies

Below we list the different types of cookies that Adaptavist may enable if you download our products, subscribe to our services or use this Website.

17.1 Functionality Cookies

Functionality cookies enable us to monitor the performance of our website and to enhance your browsing experience. For example, if you set your language or location, we use cookies to save your preferences. Fore more information about the Cookies used to run the website, see the Squarespace cookies policy here.

17.2 Marketing and Analytics Cookies

We use cookies to collect data on our users’ behavior to better understand our visitors’ needs and to personalize the content on this website. These could include collecting information about which pages you visit to help us present more relevant information. 

We send data collected through these cookies to a variety of tools that help us improve our products and services. These tools include but are not limited to Segment, Google Tag Manager, Google Analytics, Hotjar, as well as our data storage solutions such as Amazon S3 and Redshift.

For further details, please see Hotjar’s privacy policy by clicking here, Google’s privacy policy is available here and Amazon’s here. You can learn more about Google Tag Manager here. These cookies may also exist when you use or download our products. 

17.3 Advertising Cookies

Cookies allow Adaptavist to collect information that enables us to personalize and measure the effectiveness of advertising on our site, in our products and on other websites. For example, we may serve you a personalized ad based on the pages you visit on our website. Our company might share some limited aspects of this strictly anonymized data with third parties for advertising purposes.  Advertising cookies on this site include Facebook Pixel, LinkedIn, Twitter, Reddit, Quora, and Bing. Facebook’s privacy policy is available here. LinkedIn is here. Twitter is here. Reddit is here. Quora is here. And Bing’s privacy policy is here.

17.4 Essential Cookies

Essential cookies are necessary for this website, or for our products, to function as intended. These could include us storing your website data collection preferences so we can honor them if you return to our website. You cannot opt-out of the essential cookies and doing so would render some of the website and/or product functionality unusable. 

18 How to manage cookies

You can allow or disallow cookies. Please make sure to set your cookie preferences  Accepting cookies is usually the best way to ensure you get the best from a website. Most devices automatically accept cookies but you can change your browser settings to restrict, block or delete cookies if you want. Each browser is different, so check the ‘Help’ menu of your particular browser to learn how to change your cookie preferences. Many browsers have universal privacy settings for you to choose from. Get more help about how cookies work with specific browsers. Please note, this instructions may change from time to time.

19 Security and data retention

We employ security measures based on ISO 27001 to protect your information from access by unauthorized persons and against unlawful processing, accidental loss, destruction, damage and unauthorized alteration. How long we keep information we collect about you depends on the type of information. After such time, we will either delete or anonymize your information or, if this is not possible (for example, because the information has been stored in backup archives), then we will securely store your information and isolate it from any further use until deletion is possible.

We use physical, electronic, and procedural safeguards to protect any personally identifiable data stored on our computers. Only authorized employees have access to the information you provide us. Any particularly sensitive information, such as a credit card number used to purchase our products and services is encrypted using payments’ systems and Adaptavist staff never have access to your credit card or debit card details.

While we cannot guarantee that loss, misuse or alteration to data will never occur, we take many precautions to prevent such unfortunate occurrences and have measures in place to detect any such breaches of security.

In the event of a security breach, we will notify anyone whose personal data may have been compromised as well as the law enforcement authorities in the United Kingdom and other countries as applicable.

You are ultimately responsible for the security of any usernames and passwords we supply to you. Please take care when using and storing them. Adaptavist recommends that you do not divulge your password to anyone. You should log out of your browser at the end of each computer session to ensure that others cannot access your personal information and correspondence, especially if several people have access to your personal computer or you are using a computer in a public place.

As part of the requirements of the General Data Protection Regulation (GDPR), Adaptavist have registered with the Data Commissioner in the United Kingdom and you can see our notification report on their website (after clicking the link, enter “Adaptavist” as the name and click the ‘Search Register’ button).

Any information will be collected, stored and processed within countries that comply with the GDPR. Primarily data is stored within UK / EU / USA data centers, all of which have the appropriate compliance frameworks – including support for GDPR and EU Privacy Shield.

20 Cloud-Only Security Policies

Adaptavist provides Hosted Apps for Atlassian Cloud products that are delivered via the Atlassian Connect framework. Adaptavist also provides apps for Slack and Trello. Together, these are our “Cloud Apps”.

The following terms apply to our Cloud apps only. Adaptavist uses AWS to host its Cloud hosted add-on components. Adaptavist and its affiliates are responsible for monitoring and maintaining the AWS infrastructure required to support our Cloud Apps. Log information is stored on Elastic Cloud hosted on AWS.

20.1 Data Storage and Facilities

20.1.1 Stored Jira and Confluence Data

Unless specifically highlighted below Adaptavist do not store our customer data which instead is stored in the Atlassian Cloud Product that the add-on applies to. The data stored in the Atlassian Cloud Product is covered by the Atlassian Cloud Policy which can be found here.

20.1.1.1 Exceptions for all Cloud Apps

20.1.1.1.1 Account Data: Our Cloud Apps store data provided and generated by Atlassian, that are required for license validation, contract administration and communication with the customer instance.

20.1.1.1.2 Session Data: Our Cloud Apps store data resulting from each customer’s use of the service and is distinguished from Customer Uploaded Data. This includes for example usage statistics of service functionality such as the total number of ScriptRunner functions used per day. This data is anonymised. Therefore, we cannot identify the end user this data relates to.

20.1.1.1.3 Analytics: We use Google Analytics and Segment.io to allow us to analyse behaviour patterns that ultimately lead to product improvements. It is exclusively used in order to improve our service. It does not contain any Customer Uploaded Data or Operational Data. Adaptavist only capture the page that is viewed and the referrer along with the tenant identifier. There is additionally individual and organisational data that Google Analytics records, Adaptavist do not intend to use this data.

20.1.1.1.4 Error Logs data: Our Cloud Apps track errors of our Cloud Apps’ resources executed in the end users’ browsers in real-time. This includes for example AddOnKey, ClientKey, BaseUrl, anonymised TrackingID, error messages and information about the environment such as browser type, browser version and operating system. It is exclusively used in order to improve our service. Errors from JavaScript in our cloud applications are sent to Sentry.IO to alert Adaptavist support. The data sent to Sentry.IO includes organisational data but no individual data.

20.1.1.1.5 Metrics: Application metrics are sent to Datadog for analysis and reporting in order for us to monitor the applications performance. This will include anonymised organisational data but no individual data.

20.1.1.2 Exceptions for Specific Cloud Apps: ScriptRunner for Jira Cloud and ScriptRunner for Confluence Cloud: We store customer scripts and queries (encrypted) inside our own infrastructure hosted on AWS and managed and operated by Adaptavist. There may be a few exceptions where select low-risk ScriptRunner Cloud data is still hosted on Jira Cloud (Atlassian) storage. 

20.2 Data Location

Data is stored in the following AWS Regions us-west-2, eu-west-1, us-east-1 & eu-west-2

20.3 Encryption

We encrypt sensitive data at rest in our database using AES-256.

20.4 People and Access 

Only Adaptavist Developers or Support Engineers have access to the AWS platform hosting our Cloud Apps. They only have access to the application data to perform system or application support. HTTPS and SSH are the only protocols available to our cloud platform. SSH access is limited to Adaptavist Support Engineers. SSH access is restricted to known trusted internal networks with key-based authentication.

Our platform is micro-service based which is also layered into public and internal/private. Each one of these services is responsible for its own data and provides its own access controls. We will also ship and monitor logs from these micro-services which we alert if abnormal behaviour is detected. 

20.5 Backups

Data stored in our AWS platform for all cloud Apps are backed up every 4 hours with incremental backups. Daily backups of the entire platform are taken every 24 hours.

21 Hosted Apps for Atlassian Cloud Products

If you are using our Hosted Apps for Atlassian Cloud Products, Adaptavist will have access to your Atlassian Product license key and in some cases an administrative login to your account. Access to this information is strictly controlled and will only be used for specific support services such as the initial configuration of your Builder account, routine maintenance such as backups and changes to server configuration and also any bespoke content production or alterations we make upon your request.

In addition, Atlassian will have to retain a copy of your contact details and license key of the Atlassian Products for their own records, along with any correspondence you may have with them directly.

22 Slack Apps

When you install Slack Apps created by Adaptavist into your Slack Workspace, you acknowledge and understand that other users of your Slack Workspace may be able to interact with Adaptavist and as such their personal data may be visible to Adaptavist. Adaptavist does not record, disseminate or share with third parties any personally identifiable data from other users of your Workspace. However, statistical data (such as the number of users in the Slack Workspace) is monitored for the purposes of improving, tracking and developing the software only. 

23 Communications

From time to time you may need to contact Adaptavist and, likewise, we may need to contact you. During such communications contact details are generally transferred (either manually or automatically) between both parties.

23.1 When you contact Adaptavist

There are numerous ways to contact us, each of them is listed below.

23.1.1 Telephone

If you telephone us, our itemized billing will contain a record of your telephone number, the date and time on which you called, the duration of your call and the recipient of your call.

From time to time, telephone calls may be recorded to help us monitor and improve our service to clients.

Most telephone companies provide a dialling prefix that will hide your telephone number should you wish your calls to be more anonymous. For further information, please contact your telephone company.

23.1.2 Email

When you send us an email, it will contain your email address and a list of all servers which the email has passed through to get to our email server.

We now provide online email forms on our website (see Contact section for relevant forms) so that you can insert email messages directly into our key departments. Note, however, that any replies we send and your subsequent correspondence will still be transferred as normal email.

In some cases, we may keep email messages for two years or more.

We make extensive use of our online support system to manage emails regarding general inquiries, sales inquiries and support inquiries. 

23.1.3 Online Support Website

When you add a support request (and any subsequent posts to it) to our online support site, your request will be stored against your email address. You will also receive email notifications when adding your support request as well as any replies made to that request.

You can view all information stored against your email address at any time by entering the online support system (usually by clicking the link at the bottom of one of the emails you have received from us) and selecting the “Tickets” or “View Tickets” link.

23.2 When we contact you

Should we contact you (usually as a result of you contacting us first), it may be via post or telephone, as well as by e-mail or SMS messaging. If you do not want us to contact you, or would prefer to only be contacted in a specific manner, please email us your preferences.

Note: We have a strong preference for email communication and will only resort to using other alternatives should emails not get through to you.

If we contact you by telephone, our call logs will show your phone number, call duration and date and time. For legal reasons, we’re unable to delete this information.

If we send correspondence via post, there will usually be a document stored on our computer that was used to print the correspondence.

24 Changes to our privacy policy

We may update this privacy policy from time to time. Amendments to these terms will be effective upon posting and operate as a condition of your continued use of our software. It is your responsibility to check this page periodically for any updates to this privacy policy. We encourage you to review our privacy policy whenever you use our products and services to stay informed about our information practices and the ways you can help protect your privacy.


Stay up to date by signing up for monthly Adaptanews