1. Introduction

Rixter AB is committed to keep the privacy of people with whom we come into contact. Please read the following privacy policy to understand how we collect, use, share, control and protect the information that you provide to us, including Personal Data. By submitting information to us in any way, or by using our websites, systems, products or services (\"Services\"), or by interacting with us via email, phone, messaging service, in-person meeting or any other means (\"Interactions\"), you consent to the collection, use and transfer of your information under the terms of this policy.

We may update this privacy policy from time to time. Amendments to these terms will be effective upon posting and operate as a condition of your continued engagement with Rixter AB or continued use of our websites, software or services. It is your responsibility to check this page periodically for updates.

“Rixter AB”, “we” and “us” refers to Rixter AB (VAT number SE559109825501).

2. Definitions

“Personal Data Breach,” “Controller,” “Processor,” “Data Subject,” “Personal Data,” “Processing,” “Special Category Data”, and “appropriate technical and organisational measures” as used in this Policy shall have the meanings given in the GDPR irrespective of whether GDPR, UK GDPR, or U.S. Data Protection Law applies.

“Data Protection Law” means European Data Protection Law including UK GDPR and U.S. Data Protection Law that are applicable to the processing of Personal Data under this Policy.

“European Data Protection Law” means any data protection and privacy laws of Europe applicable to the Personal Data in question, including Regulation (EU) 2016/679 (GDPR), Directive 2002/58/EC, national implementations, the Swiss Federal Data Protection Act, and for the United Kingdom, the Data Protection Act 2018 and UK GDPR, as amended or replaced.

“U.S. Data Protection Law” means data protection or privacy laws applicable to Personal Data in force within the United States, including the CCPA.

3. Regulatory registration

Any information will be collected, stored and processed within countries that comply with the GDPR. Primarily data is stored within EU data centers.

4. Contacting Us regarding this Privacy Policy

Rixter AB is committed to working with you to ensure compliance with all applicable laws and regulations concerning the protection of Personal Data. Should you wish to exercise any of the rights outlined in this Policy, or have further queries, please contact us at support@rixter.se or via the webform.

You also have the right to issue a complaint with the Swedish Data Protection Authority. Contact details: +46 (0) 8-657 61 00 or datainspektionen@datainspektionen.se.

5. Rixter AB Third Parties

We use third parties that help us operate, provide, improve, integrate, customise, and support our Services.

Service Providers: Atlassian, AWS, and Azure DevOps. Refer to their respective privacy policies and compliance documentation.

6. Product Data

There are various forms of data that are generated and collected from your use of products. Reasonable efforts are made to encrypt or encode Personal Data where it is present in Product Data.

Apps built for Atlassian Server or Datacenter: data stored in Inbox for Jira and Integrations Hub for Jira is locally stored on the client’s data centers where Rixter AB has no access.

Atlassian Forge apps: data is stored on Atlassian’s cloud instance for the client where Rixter AB has no access.

Atlassian Connect apps: data stored in Integrations Hub for Jira is stored on Rixter AB’s cloud instance, with credentials encrypted at rest. Logs are stored for 30 days by default and can be configured from 1 day to 3 years. The application and its data are backed up for 6 months in an encrypted store at AWS.

Azure DevOps apps: data is stored on the Azure DevOps cloud instance for the client where Rixter AB has no access.

YouTrack apps: data is stored on the YouTrack cloud instance or local instance for the client where Rixter AB has no access.