Appifywiz – Privacy Policy

Effective date: 01 Sep 2025

1. Who we are

Appifywiz Ltd. (“Appifywiz”, “we”, “our”) develops automation add‑ons (the “Apps”) for Atlassian® Cloud and Data Center products.
Registered office: 3 HaTamar St., Yokneam Illit, Israel.
Contact: [email protected] | [email protected]
For the limited data described below, Appifywiz acts as a controller. We do not copy or store customer‑generated Atlassian content (e.g., Jira issues, Confluence pages, Bitbucket pull‑requests); that data remains in Atlassian’s cloud under your control. We comply with EU GDPR, UK GDPR, Israel’s Protection of Privacy Law 5741‑1981, and California CCPA/CPRA.

2. Scope

• Visitors to appifywiz.io (the “Site”)
• Users who install or interact with our Apps via the Atlassian Marketplace (the “Service”)
• Prospects and customers who contact sales or support

3. Personal Data We Collect

Category	Typical fields	Source
Licence & Account Data	Contact name, work email, Atlassian Cloud ID, licence tier, renewal dates	Atlassian Marketplace API
Billing Data	Invoice / purchase‑order reference, VAT/ABN	Atlassian
Support Data	Ticket text, screenshots, logs you submit	You
Usage Metadata	Installation events, anonymised feature clicks, IP address, user‑agent	Automatically
Marketing Data	Newsletter opt‑in status, referral source	You

We intentionally avoid collecting special‑category data and data about children under 16.

4. How We Collect Data

• Direct – contact forms, support tickets, emails.
• Automated – Atlassian event stream; first‑party cookies on the Site.
• Marketplace API – licence & billing data supplied by Atlassian.

5. Why We Use Data & Legal Bases

Purpose	Legal basis (GDPR Art. 6)	Explanation
Provide & support the Apps	Contract	Validate licences, answer tickets
Improve & develop features	Legitimate interests	Aggregated analytics, A/B tests
Security & fraud prevention	Legitimate interests / Legal obligation	Audit logs, abuse detection
MArketing communications	Consent / Legitimate interests	Product updates; unsubscribe anytime
Billing & tax compliance	Legal obligation	Retain invoices for statutory period

6. Cookies & Trackers

We use strictly necessary cookies and Google Analytics 4 (GA4) on the Site. EU/UK visitors can manage consent via our cookie banner. We may deploy ad pixels (Google Ads, Meta, LinkedIn) on the Site for remarketing; these are disabled until consent is provided. No tracking cookies are set inside Atlassian products.

7. Sharing Personal Data

We never sell personal data. We disclose it only to Service providers:

• Atlassian (Forge/Connect runtime)
• SendGrid (transactional email)
• Google Workspace (business email)
• Atlas CRM (customer records)

 

each under data‑processing agreements. – Legal & compliance – regulators or courts where lawfully required. – Business transfers – merger or acquisition, subject to confidentiality.

8. International Transfers

Licence, billing, support and marketing data may be processed in the EU, US, or Israel. Transfers outside the EEA/UK rely on: (i) EU Standard Contractual Clauses (+ UK Addendum) for US services; and/or (ii) Israel adequacy for transfers into Israel.

9. Security Measures

• TLS 1.2+ in transit; AES‑256 at rest where applicable. 
• Strict access control & MFA on Atlassian Partner Portal, SendGrid, and Atlas CRM.
• External penetration test annually or after any major architectural change.
• Incident‑response plan with 72‑hour breach‑notification objective.

10. Data Retention & Deletion

Data	Retention period	Deletion method
Licence & billing	7 years (tax)	Secure archival deletion
Support tickets	5 years after closure	Helpdesk purge
Marketing list	Until you unsubscribe	Suppression hash list

Early deletion requests → [email protected]. Atlassian’s Uninstall & Data‑Erasure flow removes any in‑product data under Atlassian’s control.

11. Your Rights

EU/UK: access, correct, erase, restrict, port, object, or withdraw consent (response target: 30 days). California: know, delete, correct, opt‑out of sharing/sale (response target: 10 business days for acknowledgment).

12. Additional Disclosures

• CCPA/CPRA – Appifywiz acts as a Service Provider; no selling or sharing of personal information.
• Israel PPL – Israeli residents may complain to the Privacy Protection Authority (ppa.gov.il).

13. Changes to This Policy

Material changes announced 30 days in advance; see effective date above.

14. Contact

[email protected] | [email protected]

Appifywiz Ltd., 3 HaTamar St., Yokneam Illit, Israel

Sub‑processors (Site/Business Ops): Atlassian, SendGrid, Google Workspace, Atlas CRM, UpCloud (Site hosting, currently US).