We believe transparency builds trust. This page provides a comprehensive overview of how Bytera protects your data, our security practices, and our commitment to privacy.
Our apps run entirely within Atlassian's secure Forge platform — a sandboxed, multi-tenant environment with enterprise-grade security controls. Your data stays within the Atlassian cloud ecosystem.
We do not collect, store, or process any personal user data. Our apps access Confluence content only when you initiate an action, and only through official Atlassian APIs.
We follow the principle of least privilege — our apps only request the minimum API scopes necessary for their functionality. No unnecessary data access.
We do not use any third-party analytics, advertising, or tracking services within our apps. Your usage data is never shared with external parties.
How we build and maintain secure software
All code changes undergo peer review. We perform regular dependency scanning, follow secure coding practices, and maintain automated CI/CD pipelines for consistent, reproducible releases.
We maintain a structured incident response process with defined severity levels and resolution timelines. Security issues are acknowledged within 24 hours and critical vulnerabilities are addressed immediately.
We proactively scan dependencies for known CVEs, promptly adopt platform security updates, and follow the Atlassian Security Bug Fix Policy for all our Marketplace apps.
Our infrastructure is monitored with AWS CloudWatch for health and performance. Error logs contain metadata only — no customer content is ever included in logging.
Detailed security information for each of our apps
Data handling, permissions, sub-processors, incident response, vulnerability management, and security controls — all specific to XPress.
View Security Policy →As we launch new apps, each will have its own dedicated security policy page linked here.
Our legal and compliance documentation
Incident response, vulnerability management, and security controls.
Read →How XPress handles data, what we access, and your rights.
Read →Usage terms, licensing, liability, and support information.
Read →General privacy policy covering our website and services.
Read →General terms governing use of our website and services.
Read →We're committed to transparency. If you have any questions about our security practices, data handling, or need additional information for your security review, please don't hesitate to contact us.