Privacy Notice Effective Starting Date: May 25, 2018 (view archived versions)
This Privacy Notice was developed by Tempo ehf. and its related entity, Logiciels Tempo Inc., (“Tempo”, “we”, “us” or “our”) and applies to personal information we collect from visitors, registered users, and licensed users of our Tempo Services, which are our Websites (tempo.io, tempoplugin.com), Cloud Services (software-as-a-service solutions) and Downloadable Products (downloadable software products and mobile applications).
This Policy describes how personal information is collected, for what purposes it is collected, how we share it, how we handle the content you place in our products and services, and the steps we take to secure this information.
Personal Information is information about you that can be used alone, or combined with other information, to identify you personally. Personal Information is a broad concept and includes a wide range of information such as, name, email address, mailing address, IP addresses and cookie identifiers. Personal Information does not include information that has been anonymized such that it does not allow for the identification of a specific individual. We collect Personal Information to operate effectively, and to provide you the best experiences with our Tempo Services.
We, and our service providers, collect personal information in a variety of ways. If you choose not to provide us with personal information when requested, we may not be able to provide you with the information and/or services you have requested or otherwise fulfill the purpose(s) for which we have asked for the personal information. Aside from this, your visit to our websites will remain unaffected. When we collect your personal information, we will let you know the why we are collecting it and how we will use the information.
Account and Profile Information: We collect Personal Information when you register for an account, modify your account profile, download and install our mobile applications, or apply for a job. Personal Information we collect may include your contact information (name, email address, telephone number, mailing address), and the information on your resume (employment history, education, etc). You may provide this information directly when you enter it in Tempo Services, or in some cases another user may provide it on your behalf. If you are providing information (including Personal Information) about someone else, you confirm that you have the authority to act for that person, and to agree to this Privacy Notice.
User Content: If you create, input, submit, post, upload, transmit, and/or store information (“User Content”) while using the Tempo Services, your Personal information such as name, email address or other contact information will be associated with that User Content. For example, information regarding a problem you are experiencing with a Tempo Service could be submitted to our Support Services or posted in our public forums. Any information, including Personal Information, that you submit to our Websites could be visible to the public unless submitted to a secure area in the Website. As another example, if you apply for a job, you will upload your resume to a secure location on our website.
Log files: When you interact with the Tempo Services, we generate log files to help us operate and improve our Tempo Services. Web log files includes internet protocol (IP) addresses as well as browser type, internet service provider, URLs of referring/exit pages, operating system, date/time stamp, information you search for, locale and language preferences, identification numbers associated with your Devices, your mobile carrier, and system configuration information. For our Cloud Services, the information we collect includes the URLs you accessed, usernames as well as elements of content (such as JIRA project names, project keys, status names, and JQL filters, and Confluence page titles and space names) as necessary for the Cloud Services to perform the requested operations. Occasionally, we connect Personal Data to information gathered in our log files as necessary to improve Tempo Services for individual customers.
Analytics Information from our Website: We collect analytics information using cookies to help us operate and improve our website. The analytics information includes elements of content related to the function the user is performing. As such, the analytics information may include Personal Information. To learn more about our analytics collection, please see our Cookie Notice.
Usage Data: “Usage Data” is aggregated data about a group or category of services, features or users that should not contain Personal Information. If Usage Data contains Personal Information, it is a byproduct of our efforts to understand broader patterns and trends. It is not a concerted effort by us to examine the content of any particular user.
Analytics Information from Cloud Services: We collect analytics information when you use our Cloud Services to help us improve our Tempo Services. The analytics information consists of the feature and function of the Tempo Service being used, the associated license identifier (SEN) and domain name, and the user id of the individual who is using the feature or function, the sizes and original filenames of attachments, and additional information required to detail the operation of the function and which parts of the Tempo Services are being affected.
Analytics Information from Downloadable Products: We collect analytics information when you use our Downloadable Products to help us improve our Tempo Services. Our Downloadable Products contain a feature that sends information about the Downloadable Products on your systems. Some of the information collected is related to your usage of our features and functions, such as, the number of teams, number of accounts, number of workload schemes, and number of holiday schemes. Some of the information collected is related to the operating environment, such as the JIRA version installed, the name and version of the Downloadable Product, and the customer SEN.
You can disable our collection of analytics information from Downloadable Products via the Administrator settings or by blocking collection at the local network level.
Installer Analytics, Software Updates & License Information from Downloadable Products: During the installation of our Downloadable Products, the installer sends analytics information to Tempo to allow us to understand where in the installation process users are experiencing trouble or dropping out. Our Downloadable Products also communicate with Tempo servers for licensing purposes, as well as to check for updates and patches. Examples of information we collect for these purposes include the JIRA version installed, the name and version of the Downloadable Product and the server ID, SEN, and IP address of the customer instance.
Personal Information from third-party services: In order to provide you with certain services, we may obtain Personal Information from our third-party service providers to verify and confirm the information you have submitted. For example, if you log into our Tempo Services through a third-party service, that service will share your Personal Information with us.
When we use your personal information, it will be (a) with your consent, or (b) for one of two basic purposes: (1) to operate our business and provide (including improving and personalizing) the products we offer, and (2) to send communications, including promotional communications.
Operating our Business. We use your information to provide and improve the products we offer and perform essential business operations. This includes operating the products, maintaining and improving the performance of the products, developing new features, conducting research, and providing customer support. Examples of such uses include the following:• Providing the Products. We use your information to carry out your transactions with us and to provide our products to you.
If your consent is the basis for our use of your personal information, then you have the right to withdraw your consent at any time. If you wish to withdraw consent, please email us in accordance with the “Contacting Us” section.
Our third-party service providers: Some of the services we provide require the involvement of our third-party service providers, such as web hosting providers, application development, maintenance, virtual infrastructure (including storage and backup), payment processor providers, communications providers, customer relationship management providers, and software providers. We have carefully selected these third-parties and have taken steps to ensure that your Personal Information is adequately protected.
We do not share your Personal Information with third-parties for their marketing purposes (including direct marketing).
Third-party applications: You may choose to make use of third-party Add-Ons in conjunction with Tempo Services. Third-party Add-Ons are software written by third-parties to which you grant access privileges to your content (which may include your Personal Information). Tempo’s Privacy Notice does not cover the collection or use of your data by third-party Add-Ons. You should examine the privacy policies governing each third-party Add-Ons.
Compliance with Laws and Legal Requests: We may disclose your Personal Information to a third-party if we believe that disclosure is reasonably necessary to comply with any applicable law, regulation, legal process or governmental request.
Protection of Tempo Services: We may disclose your Personal Information to a third-party, if we believe it is reasonably necessary to (a) to enforce our agreements, policies and terms of service; (b) to protect the security or integrity of Tempo’s products and services; (c) to protect Tempo, our customers or the public from harm or illegal activities; or (d) to respond to an emergency which we believe in the good faith requires us to disclose information to assist in preventing the death or serious bodily injury of any person.
Business Transfers: In the case of a sale, merger, consolidation, liquidation, reorganization, or acquisition, any acquirer will obtain your personal information subject to our obligations under this Privacy Notice.
With Your Consent: We will share your Personal Data with third-parties when we have your consent to do so.
We retain your personal information for the length of time required for the specific purpose or purposes for which it was collected, plus an additional twelve (12) months, which allows you to resume use of our services without loss of data.
We may be obliged to store some data for a longer time, for example, where a longer time period is required by applicable law. In this case, we will ensure that your personal information will continue to be treated in accordance with this Privacy Notice.
We use reasonable organizational, technical and administrative measures to protect your Personal Information.
Tempo is hosted in Amazon Web Services (AWS) data centers. AWS has numerous security certifications and Tempo implements many further security controls to safeguard data. For more information about the security of our Cloud Services, please see our Cloud Security Statement.
Encryption: Where data is transferred over the Internet as part of a Website or Cloud Services, the data transmitted using industry standard HTTPS using TLS.
Where Downloadable Products are used, responsibility for securing access to the data you store in the Downloadable Products rests with you and not Tempo. We strongly recommend that administrators of Downloadable Products enable encryption in transit (e.g., HTTPS using TLS) to prevent interception of data transmitted over networks and to restrict access to the databases and other storage used to hold data.
Unfortunately, no data transmission or storage system is guaranteed to be secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you might have with us has been compromised), please immediately notify us of the problem by emailing us in accordance with the “Contacting Us” section. Please note that third parties, such as Atlassian, are not responsible for the privacy, security, or integrity of any information collected by us.
Our products and services may be provided using resources and servers located in various countries around the world, including the U.S. and other countries. For example, our website is hosted on servers in the U.S.
Your information may be transferred and processed by third-parties outside the country where you use our services, including to countries outside the European Economic Area (EEA), where the level of data protection may not be deemed adequate by the European Commission (i.e., where you have fewer rights in relation to your information).
We expect that our third-party service providers will comply with the terms of the European Union’s General Data Protection Regulation (GDPR), and that any international data transfers be made under a recognized basis such as the US-EU Privacy Shield, EU Standard Contractual Clauses, and/or Binding Corporate Rules.
If you wish to know more about international transfers for your personal data, you may contact us as specified below.
At this time, we do not use any automated decision making processes. However, we reserve the right to make automated decisions, including using machine learning algorithms or other artificial intelligence, about our customers and website visitors in order to optimize the products and services offered and/or delivered.
You have the following rights:
a. To review, change, or delete to your personal information
b. To object to direct marketing
c. To ask about how we are processing your personal information
d. To restrict our processing of your personal information
e. To have a copy of your personal information
f. To transfer your personal information from us to another person or business
Should you wish to exercise any of your rights, or if you should have any questions concerning your rights, please contact us using the information in Contacting Us section. We will respond within one month.
If you have any complaints about this Privacy Notice or are unsatisfied with any response we provided, you may complain to the supervisory authority in Iceland:
The Icelandic Data Protection Authority
105 Reykjavík Iceland
When we update this Privacy Notice, we will revise the update date at top of this page. Any changes to this Privacy Notice will become effective when we post the revised Privacy Notice. Your use of the services following these changes means that you accept the revised Privacy Notice.