This analysis describes what Atlassian's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This distinction allocates data governance responsibilities between Atlassian and its customers according to data protection regulatory frameworks. The provision clarifies that Atlassian's obligations and liabilities differ depending on whether it is processing data for its own purposes or at the direction of a customer acting as controller.
For enterprise customers using Atlassian products, this provision establishes that the customer retains control over personal data processing purposes and methods, while Atlassian's processing activities are limited to executing the customer's documented instructions. This allocation affects compliance obligations, liability structures, and data handling procedures between the parties.
How other platforms handle this
This Privacy Policy does not apply where Anthropic acts as a data processor and processes personal data on behalf of commercial customers using Anthropic's Commercial Services – for example, your employer has provisioned you a Claude for Work account, or you're using an app that is powered on the ba...
If you are using our Services pursuant to a separate agreement with Figma that includes data processing terms, such as an enterprise agreement, those terms will govern the processing of personal data to the extent they conflict with this Privacy Policy.
We may record any telephone calls between you and our agents or other representatives for training and quality assurance purposes.
Monitoring
Atlassian has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We collect and receive information as a data controller for our own purposes and as a data processor on behalf of our customers. When our customers use our products to process data about their end users and employees, we act as a data processor on their behalf. Our customers, as data controllers, determine the purposes and means of processing personal data in their Atlassian products.— Excerpt from Atlassian's Atlassian Privacy Policy
We read the privacy policies and terms of service of 38 AI platforms. Here is what they say about training, retention, arbitration, and liability.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This distinction allocates data governance responsibilities between Atlassian and its customers according to data protection regulatory frameworks. The provision clarifies that Atlassian's obligations and liabilities differ depending on whether it is processing data for its own purposes or at the direction of a customer acting as controller.
For enterprise customers using Atlassian products, this provision establishes that the customer retains control over personal data processing purposes and methods, while Atlassian's processing activities are limited to executing the customer's documented instructions. This allocation affects compliance obligations, liability structures, and data handling procedures between the parties.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Atlassian.