AltaClario

Privacy Policy

Effective 2026-05-02

This Privacy Policy explains what information AltaClario collects and how we use, share, and protect it.

What we collect

  • Account data — name, email, your hashed password (managed by our authentication provider), and the timestamp at which you accepted our Terms.
  • Workspace data — the organization name, memberships, roles, and provider configuration you create.
  • Provider data — issues, sprints, and related metadata fetched from Jira or Azure DevOps under your credentials, held in memory to render your dashboards.
  • Product telemetry — page views, performance samples, and error events used to keep the Service reliable.

How we use it

  • To operate, secure, and improve the Service.
  • To authenticate you and scope data by organization.
  • To communicate with you about your account, updates, and incidents.

How we protect it

Provider credentials are encrypted with AES-GCM at rest. HTTPS is enforced in production. We maintain per-tenant scoping so another organization cannot see your data. See the Security page for details.

Sharing

We do not sell your data. We share it only with the subprocessors required to run the Service (hosting, database, error monitoring) under contracts that preserve these protections.

Your rights

You may access, export, or delete your data at any time from your account settings. For deletion requests, email privacy@altaclario.com.

Changes

We will notify you of material changes to this Policy by email or an in-product notice.