Privacy & Security tab improvements: new PATCH API and adjustments to Data Residency and Disk Encryption response options

Hi Developer Community,

Thank you all for continuing to ask questions and engage with us on the Privacy & Security tab. We’re excited to see so many responses coming in, as we’re confident this tab will go a long way in simplifying the app assessment process for your customers.

I’m writing now to let a few improvements to the submission process and question options. These improvements include:

A new PATCH API

For partners who prefer to submit responses via API, you can now use a new patch API to make adjustments to previously submitted responses. You can find documentation on the new API here.

New “not applicable” options and dependencies for data residency & disk encryption questions

Based on your feedback, we’ve updated the following questions to reflect a “not applicable” state for apps that do not store data:

Data residency question: “Does your app support data residency options?”

  • This question has been updated to include a new, 5th response option: “Not Applicable — app does not store End User Data.”

Disk encryption question: “Does your app use full disk encryption at-rest for End-User Data stored outside of Atlassian or the users’s browser?”

  • This question has been updated to not show for partners who respond “No” to the question “Does your app store End-User Data outside of Atlassian products and services?”
  • Previously, this question was visible if you responded “No” to the question “Does your app store End-User Data outside of Atlassian products and services?” but “Yes” to the question “Does your app process End-User Data outside of Atlassian products and services?” → For apps that process but do not store end user data, the data encryption question will no longer be visible.
  • For apps that do not store end user data, the customer UI will automatically reflect a response of “Not Applicable” for the full disk encryption at-rest field.

Do partners need to take any action based on these changes?

The following tables outline a few scenarios and suggested actions.

For the Data Residency question: “Does your app support data residency options?”

For the Disk encryption question: “Does your app use full disk encryption at-rest for End-User Data stored outside of Atlassian or the user’s browser?”

What can partners expect going forward if there are other changes to the tab?

We know the Privacy & Security tab is an important change and we want to be as responsive as possible to your feedback about the wording or response options for questions. As a result, it is possible that over the coming months we may make small changes like this to the questionnaire as more feedback is incorporated.

We will not make any changes to previously submitted responses without your permission, so please continue submitting your responses and providing feedback.

In the event of future changes, we will provide an announcement similar to this one (outlining the change and action items) in the Partner Portal, here in the Developer Community, and in the Marketplace change log.

After the initial release period, where we expect to see the most changes, we plan to move toward more regular updates with longer lead times so you can prepare for changes. However, during this initial launch period we may be moving a bit faster to ensure you have what you need to put your best foot forward.

Thank you for your patience and continued partnership on this initiative.

3 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.