Security

Enterprise-oriented controls for protecting data, infrastructure, and operations.

Last updated: February 28, 2026

Data Protection

We apply multiple layers of security controls designed to protect data from unauthorized access, disclosure, alteration, and destruction.

Encryption

Data is protected in transit through TLS 1.3 and protected at rest through encrypted storage practices intended to reduce exposure risk.

Secure Authentication With OAuth 2.0

Authentication with Atlassian is handled through the OAuth 2.0 standard. TicketMage does not store your Jira credentials.

Compliance and Assurance

We aim to operate in line with widely used security and privacy expectations relevant to the service model.

GDPR-aware handling: privacy controls are designed to support lawful processing and user rights workflows.
Third-party infrastructure assurance: hosting and infrastructure vendors maintain their own security programs and controls.
Payment processor separation: payment data handling is delegated to specialized processors rather than stored directly by TicketMage.

Infrastructure Security

The service runs on managed cloud infrastructure with network controls, monitoring, and service segmentation intended to reduce operational risk and improve resilience.

Vulnerability Management

We review dependencies, monitor for security issues, and address vulnerabilities based on severity and practical impact. If you identify a potential issue, we encourage responsible disclosure.

Security reporting: report security concerns to [email protected]. We review all reports and respond as quickly as practical.

Incident Response

We maintain incident handling procedures to investigate, contain, and remediate security events. If a confirmed incident affects personal data and notification is legally required, affected users will be informed within the required timeframe.

Security Contact

If you have security questions or need to report an issue, contact the security channel below.

Email: [email protected]