Last updated - 9th February 202015th March 2022
1. ACKNOWLEDGEMENT
By using Automated Release Notes software, you acknowledge that you have reviewed the terms of our End User Licence Agreement (EULA) and this Privacy Policy (Privacy Policy), have the authority to act on behalf of any person for whom you are using the Product, and agree that we may collect, use and transfer your Data in accordance with this Privacy Policy. If you are using our Product on behalf of a company, then you acknowledge that you are binding your company to this Privacy Policy.
This Privacy Policy applies to our Customers. It is the responsibility of the Customer to determine if the Privacy Policy is consistent with its own treatment of end-user data.
2. DEFINITIONS
Company means Amoeboids Technologies Pvt Ltd. The terms “we”, “us” and “our” when used in this Privacy Policy are a reference to the Company.
Customer means a direct customer of the Company. The terms “you”, “your” and “yours” when used in this Privacy Policy are a reference to the Customer.
Data means Personal Information and User Data.
Data Controller has the meaning given in Rec. 22, Art 3(1) of the GDPR, that is, a natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purpose and means of the processing of Personal Information, where the purpose and means of processing are determined by EU or Member State laws.
Data Subject means an identified or identifiable natural person who is a user of our Product.
GDPR means the General Data Protection Regulation (European Union)
Law means all relevant legal and regulatory requirements applicable to you or us
Personal Information means information about an identified individual , or an individual who is reasonably identifiable, whether the information is true or not and whether the information is recorded in a material form or not.
Product in the context of this privacy policy refers to our app for Jira called 'Automated Release Notes' also referred to as ARN. Wherever necessary deployment version of the product (Cloud or Server) is mentioned in this privacy policy, if not the relevant clause is applicable to both versions.Subprocessor means any processor engaged by us or
Note that free version of Automated release notes, which is available only in the cloud, is also covered in this privacy policy.
Subprocessor means any processor engaged by us or by any other Subprocessor who agrees to receive from us or from any other Subprocessor, Personal Information exclusively intended for processing activities to be carried out on behalf of you after the transfer in accordance with your instructions, the terms of our EULA and this Privacy Policy.
Supervisory Authority means the authority with the primary responsibility for dealing with the relevant data processing activity.
Unsolicited Information includes any unsolicited communications by you to the Company.
User Data means all information collected passively or actively from our Customers that is not Personal Information
...
Apart from your technical contact & billing contact we do not receive any additional details in case of Server version of our software. We will only use the technical & billing contacts to initiate product onboarding & to communicate billing information. Thus for the server (or data center or aka on-premise) version of our software - responsibility of data security & infrastructure lies with you.
Majority of the clauses defined in this privacy policy apply to the Cloud version (free & paid, both) of our software, in which case your data is hosted on our servers.
...
Your personal information is collected in order to provide the best possible experience with our software. Personal information is a broad concept & refers to any data points that can help identify an individual.
For example, your email addresses are collected to send out email notifications related to app features. Without email address our products/services will fail to provide you the desired experience. We do not store your email address (received through Jira/Confluence integration) into our database but are rather stored temporarily until the emails are dispatched. Exception is when you store email address as 'user content'.
Any neutralised (also called anonymised) data does not fall under the purview of personal information. Your personal information is neutralised before being used for analysing product usage patterns.
...
If you create, input, submit, post, upload, transmit, and/or store information (“User Content”) while using our services, your Personal information such as name, email address or other contact information will be associated with that User Content. For example, information regarding a problem you are experiencing with the Software could be submitted to our Support Services or posted in our public forums. Any information, including Personal Information, that you submit to our Websites could be visible to the public unless submitted to a secure area in the Website.
3.5 Personal information we collect from your use of software
Log files: When you interact with the Software, we generate log files to help us operate and improve our Services. Web log files includes may include internet protocol (IP) addresses as well as browser type, internet service provider, URLs of referring/exit pages, operating system, date/time stamp, information you search for, locale and language preferences and system configuration information. For our Cloud Services, the information we collect includes the URLs you accessed, usernames as well as elements of content (such as Jira project names, project keys, status names, and JQL filters, and Confluence page titles and space names) as necessary for the Cloud Services to perform the requested operations. OccasionallyOnly when absolutely necessary, we collect Personal Data to information gathered in our log files as necessary to improve our Services for individual customers.
...
Installer Analytics, Software Updates & License Information from Server Version: During the installation of Software (specifically Server version), the installer sends may send analytics information to us to understand where in the installation process users are experiencing trouble or dropping out.
...
3.6 Personal information we collect from other sources
In order to provide you with certain services, we may obtain Personal Information from our third-party service providers to verify and confirm the information you have submitted. For example, if you log into our Software through a third-party service, that service will share your Personal Information with us.
3.6 With whom do we share your personal information
...
4. SECURITY MEASURES
Automated Release Notes (cloud version) is hosted at Amazon Web Services (AWS Website), a world-class hosting provider. For more information on their servers, security & privacy policy, please see AWS privacy policy.
All of your data is transmitted over HTTPS; however, as of now we don't encrypt any of the information when storing. . The data that is stored on our servers, ensures encryption for personally identifiable information. However, there are some areas in the application for which we don’t encrypt the data before storing - these include the templates, rules you have created in ARN. Whenever Jira users are involved in email sending actions, we don’t store their email addresses or any other PII. We simply store a random account ID & use it to request email address from Jira while sending the email. If you are configuring external email addresses anywhere in the app, they are encrypted before getting stored in the database.
Amoeboids Technologies Pvt Ltd has a strict policy in place to limit the production database access. It is possible to access production database only when requested by a customer/prospect who is evaluating or is facing a problem.
...
Some of our obligations under the Privacy Policy and EULA may be performed by Subprocessors. A Subprocessor will only be granted access to your Data where:
such access is for purposes consistent with the Privacy Policy; and
the Subprocessor agrees to be bound by the Privacy Policy.
When we work with Subprocessors, we seek to provide the Subprocessor with only the information the Subprocessor needs to perform its specific functions.
...