Security is at the core of My Private Notes. We've designed the app from the ground up to ensure your private notes remain truly private.
🔐
Encrypted Storage
Data encrypted at rest using Atlassian's enterprise-grade infrastructure.
🔒
TLS Encryption
All data in transit protected with industry-standard TLS.
🏠
No External Servers
All data stays within Atlassian's infrastructure.
👤
User-Specific Keys
Notes cryptographically bound to your account ID.
Architecture
My Private Notes is built on Atlassian Forge, a secure-by-design platform:
- Forge Runtime: App runs entirely within Atlassian's sandboxed environment.
- Forge Storage API: Notes stored using Atlassian's managed key-value storage.
- No Egress: The app makes no external network requests.
- User Isolation: Storage keys prefixed with
accountId:issueKey.
Access Controls
- User-Bound Storage: Notes accessible only by the creating user.
- No Admin Access: Jira administrators cannot access users' private notes.
- No Developer Access: Even we cannot access your stored notes.
Compliance
✓ GDPR Compliant
✓ CCPA Compliant
✓ SOC 2 (Atlassian)
✓ ISO 27001 (Atlassian)
Our app inherits Atlassian's security certifications and compliance standards.
Vulnerability Reporting
If you discover a security vulnerability, please report it to security@technicaldost.com. We will respond within 48 hours.