Fisheye and Crucible: Right to data portability
Under limited circumstances, Article 20 of the GDPR allows a data subject to make a request of a data controller to transfer their personal data to another service provider. The right of the data subject to make this request under Article 20 is highly contextual and you should seek the advice of legal counsel in processing any such request. If you do require the ability to provide personal data in a format as required under Article 20, we suggest you use the content export functions available within the product to do so.
Fisheye and Crucible administrators can collect personal data manually, in different file formats (for example, CSV, JSON), following the steps set forth below.
All workarounds are compatible with Fisheye and Crucible 4.1 and later.
Administrators can obtain personal data from user profiles by following these steps:
- Select > Users.
- Locate the user in the user list (use the filter form at the top of the page).
- Select Username in the User column.
- Collect data from the User details section:
- Display name
- Create a structured file with the personal data for export.
Example JSON file:
You can also obtain personal data by following the instructions in Fisheye and Crucible: Right of access by the data subject.
There may be limitations based on your product version.
Note, the above-related GDPR workaround has been optimized for the latest version of this product. If you are running on a legacy version of the product, the efficacy of the workaround may be limited. Please consider upgrading to the latest product version to optimize the workarounds available under this article.
Third-party add-ons may store personal data in their own database tables or on the filesystem.
The above article in support of your GDPR compliance efforts applies only to personal data stored within the Atlassian server and data center products. To the extent you have installed third-party add-ons within your server or data center environment, you will need to contact that third-party add-on provider to understand what personal data from your server or data center environment they may access, transfer or otherwise process and how they will support your GDPR compliance efforts.