ISO/IEC 27001 - Jira and Confluence cloud have achieved ISO/IEC 27001 Certification. You can read more about the structure of our Security Management Program and you can review the ISO/IEC 27001 Certificate on our Atlassian Compliance page.
ISO/IEC 27018 - We have also acheived ISO/IEC 27018 certification for protection of personally identifiable information (PII) or personal data (PD) in our cloud environments. Our ISO/IEC 27018 Certificate can also be found on our Atlassian Compliance page.
Cloud Security Alliance - We have completed our Cloud Control Matrix CAIQ Self Assessment for the CSA Security, Trust, & Assurance Registry.
HIPAA / HITECH – For our Cloud products, we are not able to sign a Business Associate agreement and we recommend our Data Center products for companies that need to comply. We have more information on this in our Privacy Policy.
PCI – Atlassian uses tokens with PCI DSS certified credit card processors; we never see or store your credit card details. For use of our products within PCI environments you need to assess in terms of your own PCI compliance requirements.
FedRAMP - Trello Enterprise has achieved FedRAMP Low-Tailored Authority to Operate (ATO). Atlassian products Jira, Confluence, and Jira Align are being evaluated for FedRAMP authorization. Contact your Atlassian sales representative for more information.
See more on our Atlassian Compliance Page and our Atlassian Compliance FAQ.