Privacy and Security
- Dmytro Stasyuk
This page describes what private and secret data is accessed or stored by the app and for what purposes.
Access to user’s name & email address
The app accesses user’s name and email address that are configured in Jira. This is used to populate commit’s author name and email fields whenever a change is uploaded to Bitbucket from Jira. Each Git commit must have a user name and an email address. These are only accessed at the time when a user actually makes a change to the Feature field in Jira and the project is configured with a linked Bitbucket repository in app’s settings. The name and email are used only for this purpose and are not stored by the app.
Bitbucket Access Token
BDD for Jira with Git app makes use of a Bitbucket access token for authorizing of upload and download API requests with Bitbucket. This token is added to the app’s configuration via Jira project settings page, see related information on page - Enable Git Integration .
The access token is entered in plain text via the configuration screen however it is saved in an encrypted form using Atlassian Forge platform’s secret store utility, see more information here.
Once saved it is not shown again on successive access to the App’s settings page, but message is shown confirming that access token is present in configuration, like shown below.
