Security And Privacy
Last Updated: Mar 31, 2026
Mumo Systems LLC (“Mumo Systems”, “we”, “our”, or “us”) is committed to protecting the privacy and security of personal data processed through our applications and services, including our Atlassian Marketplace apps (e.g., Checkout, Abacus, Okta Profiles, Azure Profiles).
This Privacy Policy describes how we collect, use, and protect personal tedata.
1. Scope
This policy applies to:
Users of our Atlassian Marketplace applications
Customer administrators and end users
Visitors to our services and integrations
2. Roles and Responsibilities
For the purposes of data protection laws such as GDPR:
Customers (Atlassian users) are the Data Controllers
Mumo Systems acts as a Data Processor, processing data solely on behalf of and under the instructions of the customer
We do not determine the purposes or means of processing customer data.
3. Data We Process
Depending on the app and configuration, we may process:
a. User Information
Name
Email address
Account identifiers
User roles and permissions
b. Application Data
Requests, tickets, procurement data
Asset and inventory data
Configuration settings
c. Technical Data
IP addresses
Log data
Usage metrics
Error and performance data
Mumo Systems is designed with data minimization principles in mind. Our applications do not persistently store personal data unless required for core functionality. In many cases, personal data is processed transiently (e.g., via APIs) and not retained beyond what is necessary to deliver the service.
4. How We Use Data
We process data solely to:
Provide and operate our applications
Enable requested features and workflows
Maintain security and prevent abuse
Provide customer support
Improve performance and reliability
We do not sell nor store personal data. Mumo Systems does not sell, rent, or monetize personal data under any circumstances.
5. Subprocessors
We use trusted third-party subprocessors to deliver our services.
Current Subprocessors
Subprocessor | Purpose | Location |
|---|---|---|
Amazon Web Services (AWS) | Hosting, infrastructure, storage | United States / Global |
AWS processes data in accordance with its security and compliance programs, including GDPR commitments.
We require all subprocessors to maintain appropriate technical and organizational safeguards.
6. International Data Transfers
Where personal data is transferred outside of the European Economic Area (EEA), we ensure appropriate safeguards are in place.
These include:
Standard Contractual Clauses (SCCs) approved by the European Commission
Reliance on compliant infrastructure providers such as AWS
7. Data Security
We implement appropriate technical and organizational measures to protect data, including:
Encryption in transit (HTTPS/TLS)
Secure access controls
Logging and monitoring
Infrastructure security via AWS
8. Data Retention
We retain data only for as long as necessary to:
Provide services
Meet contractual obligations
Comply with legal requirements
Customers control the lifecycle of their data within our applications.
9. Data Subject Rights
As a data processor, we support our customers in responding to data subject requests, including:
Access
Correction
Deletion
Restriction of processing
Requests should be directed to the customer (data controller).
10. Data Processing Agreement (DPA)
Mumo Systems offers a Data Processing Agreement (DPA) that governs the processing of personal data in accordance with applicable data protection laws, including GDPR.
The DPA incorporates:
Standard Contractual Clauses (SCCs)
Subprocessor obligations
Security commitments
Customers may request a copy of the DPA by contacting us.
11. Changes to This Policy
We may update this policy from time to time. Updates will be posted with a revised “Last Updated” date.
12. Contact Information
For questions about this Privacy Policy or data protection practices:
Mumo Systems LLC
Website: https://www.mumosystems.com