Privacy Policy

1. Overview

This privacy policy describes how the Jira & Confluence API middleware ("the Service") handles data when used with Custom GPT integrations. The Service acts as an intermediary between OpenAI's Custom GPT and your Atlassian services (Jira and Confluence).

2. Data Collection and Usage

2.1 What We Process

The Service processes the following types of data:

• Jira project information, issues, and comments
• Confluence pages, spaces, and content
• Authentication credentials (API tokens) for Atlassian services
• API request parameters and responses

2.2 How We Use Data

Data is used solely for:

• Facilitating communication between Custom GPT and Atlassian services
• Processing and returning requested information
• API authentication and authorization

2.3 Data Storage

The Service operates as a pass-through middleware and does not permanently store any user data, project information, or content. Authentication credentials are expected to be provided via environment variables and are not logged or persisted beyond the runtime environment.

3. Data Sharing

Data is shared only with the services necessary for functionality:

• Atlassian Services: Your Jira and Confluence data is accessed using your provided credentials to fulfill API requests
• OpenAI Custom GPT: Responses from Atlassian services are returned to the Custom GPT that initiated the request

We do not sell, rent, or share your data with third parties for marketing purposes.

4. Security

Security measures include:

• HTTPS/TLS encryption for all API communications
• Secure environment variable handling for credentials
• No persistent storage of sensitive data
• Authentication validation for all API requests

Users are responsible for securing their own API tokens and ensuring they follow Atlassian's security best practices.

5. User Rights and Data Control

Since the Service does not store user data:

• All data remains in your Atlassian account
• You can revoke API access at any time through Atlassian
• Data deletion is managed through your Atlassian services

6. Third-Party Services

This Service integrates with:

• Atlassian (Jira & Confluence): See Atlassian Privacy Policy
• OpenAI (Custom GPT): See OpenAI Privacy Policy

7. Logging and Monitoring

The Service may log technical information for debugging and monitoring purposes, including request timestamps, endpoints accessed, and error messages. These logs do not include sensitive data such as authentication tokens or personal information.

8. Changes to This Policy

We may update this privacy policy from time to time. Changes will be reflected by updating the "Last Updated" date at the top of this page.

9. Self-Hosted Deployment

If you are self-hosting this Service, you are responsible for:

• Securing your deployment environment
• Managing access controls and credentials
• Compliance with applicable privacy regulations
• Any modifications made to the codebase

10. Contact

For questions or concerns about this privacy policy, please contact the administrator of your deployment or refer to the project repository.