Security

Security Policy

Last updated: April 6, 2026

Overview

Xorent, Inc. applies administrative, technical, and organizational safeguards designed to protect customer and end-user data processed by Xorent services, including our Atlassian Marketplace integrations.

Access Control

  • Access to systems and data is limited to authorized personnel on a least-privilege basis.
  • Administrative actions are gated by role-based controls and audited where applicable.
  • Authentication and session handling controls are enforced across platform services.

Encryption and Data Protection

  • Data in transit is protected using TLS.
  • Data at rest is protected using cloud-provider encryption controls.
  • Secrets and credentials are managed via environment/secret management controls, not hardcoded in source.

Monitoring and Logging

We maintain operational logging and monitoring for reliability, security detection, and incident response. Access to logs is restricted to authorized personnel.

Vulnerability Management

We perform ongoing security maintenance, including dependency updates, code changes to address identified risks, and remediation tracking for reported findings.

Incident Response

Security incidents are triaged, investigated, and remediated by our team. Where required by applicable obligations, impacted customers are notified through appropriate channels.

Data Residency and Retention

Xorent supports data residency options through tenant-level infrastructure routing and configuration. End-user data retention and deletion are handled according to our contractual and policy commitments.

Contact

For security questions, reports, or requests, contact security@xorent.com.