A lot of valid user input can still be sensitive and should not be stored in your Jira and Confluence instances. Whether it’s the carelessly uploaded password to a production system in a bug report or a customer asking for support and sending along their credit card: Sensitive data can get in a lot quicker than admins want it to or can prevent. Our App PII Protection can!
PII Protection for Jira helps you to optimize data security and privacy in Jira. It checks every change to string fields (like summary and description) and comments in Jira for sensitive data and alerts admins to any findings. What it checks for is customizable and it currently supports more than a dozen checks, helping admins to find credit card numbers, password or banking information with many more checks coming soon.
The app’s findings are only available to admins and can be seen in a table. Admins can remove findings or click a link to be taken directly to the issue in question.
PII Protection for Jira easily integrates into the Jira menu and offers a transparent list with all findings of sensitive data. Corresponding tickets can be opened directly from there and edited or resolved.
Sensitive data offers a high attack potential for hackers. That is why there are security teams that control the administration for corresponding data. Now, with automation from PII Protection, this is even easier.
Data privacy has become an important aspect for companies. With PII Protection for Jira, data loss prevention is the keyword, because our app significantly supports protection against the unwanted outflow of data.
Data loss prevention is an important and necessary step for any organization. In a time where data breaches are on the rise and may cause immense financial, reputational, and legal damage, it is essential that organizations take measures to protect sensitive data. With PII Protection for Confluence, they can do just that.
The app adds data loss prevention features to your Confluence Cloud instance and offers powerful detection of personal identifiable information (PII), passwords, API keys, and other credentials. With more than a dozen checks already supported, PII Protection for Confluence automatically searches for sensitive data.
To do this, PII Protection for Confluence just needs to know what to look for. And it’s pretty easy to just tell the app: simply create check groups and assign them to a space – and off you go.
Check groups help organize multiple checks associated with the same class. For instance, you might want to look out for credentials through a custom check group that can contain checks such as passwords, credentials, and API keys. And the best is yet to come: checks are customizable by space.
Everything that is found with the checks is listed on a findings page, indicating the type, place, page title, and date. There, admins can open the page in question directly and take appropriate action. Also, every time a page is updated or a new one is created, the app will scan the page for any of the configured data types.
This way you can identify, monitor, and protect against any data leaks.
Advantages and features of PII Protection for Confluence at a glance:
In addition to finding and listing sensitive data, PII Protection for Confluence allows users to add a classification to a page that is shown directly in its byline and reflects how sensitive the information on the page is. You can use these classifications to mark pages as Top Secret, Secret, and Public.
One of the great features of PII Protection is that it comes with customizable classification levels, allowing you to tailor them to your organization’s specific needs.
PII Protection supports automated actions that can be performed as soon as any sensitive data is found, e.g. notifying the right people or deleting the page in question directly. This means, as an admin, you no longer have to check the list of findings manually. All you need to do is set up the actions you want and PII Protection for Confluence will take care of the rest.
By taking advantage of the Atlassian Forge platform, PII Protection for Confluence provides assurance that customer data remains within the confines of their Confluence instance. There are no concerns about data leaving the Atlassian infrastructure.
Before we had Forge, an app like this simply wasn’t possible. Sure, you can subscribe to events with Connect and perform the same checks we do in an Atlassian Connect app. But that app would be external to your Jira and Confluence instances, which basically means that, in order to find out whether some data is sensitive and should not even be in your instance, you would have to export it to a 3rd party first. Forge lets us avoid this problem by keeping everything running within Altassian systems.
As an admin (or SecOps or Privacy Advocate or Compliance Manager), you simply cannot read every comment, every incoming Service Request. But our app can! Get it now in the Marketplace – it is free for small teams up to ten users.