Bitbucket Server and Data Center GDPR support guides
We've created this set of support guides to help you with any GDPR-specific obligations that you may have. The guides are designed to identify where personal data may be located within the product, and, where possible, assist with responding to data subject access requests, including in modifying, restricting or deleting data.
Where a workaround involves running SQL scripts directly on your database, we strongly recommend you do this first on a non-production, staging or test environment before running the scripts on your production database. We also strongly recommend you take a backup of your data before making any modifications via SQL scripts.
- Automated individual decision-making, including profiling in Bitbucket Server and Data Center
- Communication of personal data breaches in Bitbucket Server and Data Center
- Data protection by design and by default in Bitbucket Server and Data Center
- Records of processing activities in Bitbucket Server and Data Center
- Right of access by the data subject in Bitbucket Server and Data Center
- Right to data portability in Bitbucket Server and Data Center
- Right to erasure in Bitbucket Server and Data Center
- Right to object in Bitbucket Server and Data Center
- Right to rectification in Bitbucket Server and Data Center
- Right to restriction of processing in Bitbucket Server and Data Center
- Security of processing in Bitbucket Server and Data Center
- Transfers of personal data to third countries or international organisations in Bitbucket Server and Data Center
GDPR and Atlassian Server and Data Center applications
We understand that customers using Atlassian Server or Data Center applications may have GDPR-specific obligations with respect to the data stored in and processed through those applications. For example, customers may need to access, modify or delete personal data upon request by certain individuals. We've prepared a GDPR FAQ, and guides for our Server and Data Center products, and hope they'll be helpful in assisting our customers with their GDPR-specific obligations.
Please note, when you use Atlassian Server or Data Center applications, Atlassian does not access, collect, store or otherwise process personal data you choose to store within those applications, except in limited cases where such data is provided for incidental support services. For this reason, Atlassian is neither a data processor nor data controller under GDPR for the purposes of the personal data you choose to store within Atlassian Server or Data Center applications. Atlassian may access analytics events associated with your technical use of the products, but only where permitted by your administrator. Such analytics information is filtered to exclude any personal data prior to the analytics information leaving your environment. For more information on the analytics information collected through Atlassian downloadable products, please see our Privacy Policy.
Using multiple Atlassian products?
Check our our GDPR support guides for your Atlassian products:
- Bamboo Server GDPR support guides
- Bitbucket Server and Data Center GDPR support guides
- Confluence Server and Data Center GDPR support guides
- Crowd Server and Data Center GDPR support guides
- Fisheye and Crucible Server GDPR support guides
- Hipchat Server GDPR support guides
- Hipchat Data Center GDPR support guides
- Jira Core, Jira Software and Jira Service Management (formerly Jira Service Desk) Server and Data Center GDPR support guides
- Advanced Roadmaps (formerly Portfolio for Jira) Server and Data Center GDPR support guides