The Atlassian Marketplace REST API

Privacy and Security

Below are the APIs to fill privacy and security information about apps. We have also created a loom video for you that explains the process and steps involved.

Get app privacy and security information

GET /rest/2/addons/{addonKey}/privacy-and-security

Get the privacy and security info for the specified app. This resource requires authentication for fetching "draft" version of privacy and security information.

Request

Path parameters

addonKey Required

string

The unique identifier for this app, for example "com.atlassian.confluence.plugins.confluence-questions".

Query parameters

state

string

Specifies the version of Privacy and security information to be fetched. Possible values are "live" or "draft". For partners with manage app permissions, if a draft version exists then the default value will be "draft", or else the default value will be "live".

Example

cURL

Node.js

Java

Python

PHP

curl --request GET \
  --url 'https://marketplace.atlassian.com/rest/2/addons/{addonKey}/privacy-and-security' \
  --user 'email@example.com:<api_token>' \
  --header 'Accept: application/json'

Responses

200

400

403

404

Content type	Value
application/json	TrustInfo

Create/Update app draft version of privacy and security info

PUT /rest/2/addons/{addonKey}/privacy-and-security

Create/Update draft version of privacy and security info for the specified app. Any update will create a new draft version. This resource requires authentication.

Request

Path parameters

addonKey Required

string

The unique identifier for this app, for example "com.atlassian.confluence.plugins.confluence-questions".

Body parameters

appTrustInformation Required

appTrustInformation

Example

cURL

Node.js

Java

Python

PHP

curl --request PUT \
  --url 'https://marketplace.atlassian.com/rest/2/addons/{addonKey}/privacy-and-security' \
  --user 'email@example.com:<api_token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "appTrustInformation": {
    "dataAccessAndStorage": {
      "isSameDataProcessedAndStored": true,
      "appProcessEUDOutsideAtlassian": true,
      "typesOfDataAccessed": [
        "<string>"
      ],
      "appStoresEUDOutsideAtlassian": true,
      "typesOfDataStored": [
        "<string>"
      ]
    },
    "thirdPartyInformation": {
      "isEndUserDataShared": true,
      "dataSubProcessors": "<string>",
      "thirdPartyDetails": [
        {}
      ]
    },
    "logDetails": {
      "logEndUserData": true,
      "logProcessAndOrStoreEUDOutsideAtlassian": true,
      "logEUDShareWithThirdParty": true,
      "logsIntegralForAppFunctionality": true
    },
    "dataResidency": {
      "isDataResidencySupported": "STORED_IN_ATLASSIAN_N_DR_SUPPORTED",
      "countriesWhereEndUserDataStored": [
        "<string>"
      ],
      "realmMigrationSupported": true,
      "inScopeDataTypes": [
        "<string>"
      ]
    },
    "dataRetention": {
      "isDataRetentionSupported": true,
      "retentionDurationInDays": {},
      "isCustomRetentionPeriodAllowed": true
    },
    "security": {
      "securityContact": "<string>",
      "publicSecurityPoliciesLink": "<string>",
      "caiq": {},
      "isDiskEncryptionSupported": true,
      "hasCompliantCertifications": true,
      "compliantCertifications": [
        "<string>"
      ]
    },
    "privacy": {
      "privacyEnhancingTechniques": {},
      "gdpr": {},
      "ccpa": {},
      "dataProcessingAgreement": {}
    }
  }
}'

Responses

200

201

400

403

404

Privacy & security information saved successfully.

A schema has not been defined for this response code.

Delete draft version of privacy and security info

DELETE /rest/2/addons/{addonKey}/privacy-and-security

Discards the draft version of privacy and security information for the specified app. This resource requires authentication.

Request

Path parameters

addonKey Required

string

The unique identifier for this app, for example "com.atlassian.confluence.plugins.confluence-questions".

Example

cURL

Node.js

Java

Python

PHP

curl --request DELETE \
  --url 'https://marketplace.atlassian.com/rest/2/addons/{addonKey}/privacy-and-security' \
  --user 'email@example.com:<api_token>' \
  --header 'Accept: application/json'

Responses

200

403

404

Draft version of privacy & security information discarded successfully.

Content type	Value
application/json	appTrustInformation

Update draft version of privacy and security info for the specific app

PATCH /rest/2/addons/{addonKey}/privacy-and-security

Update draft version of privacy and security info for the specific app.

The request body must be a valid JSON Patch document. The properties which can be referenced in the PATCH are the same ones returned by a GET on this URI.

This resource requires authentication.

Request

Path parameters

addonKey Required

string

The unique identifier for this app, for example "com.atlassian.confluence.plugins.confluence-questions".

Body parameters

Content type	Value
application/json-patch+json	Array<JsonPatchDocumentation>

Example

cURL

Node.js

Java

Python

PHP

1
2
3

curl --request PATCH \
  --url 'https://marketplace.atlassian.com/rest/2/addons/{addonKey}/privacy-and-security' \
  --user 'email@example.com:<api_token>'

Responses

200

400

403

404

500

Privacy & security information updated successfully.

A schema has not been defined for this response code.

Publish app privacy and security info

PUT /rest/2/addons/{addonKey}/privacy-and-security/publish

Publish the privacy and security info for the specified app. This resource requires authentication.

Request

Path parameters

addonKey Required

string

The unique identifier for this app, for example "com.atlassian.confluence.plugins.confluence-questions".

Example

cURL

Node.js

Java

Python

PHP

1
2
3

curl --request PUT \
  --url 'https://marketplace.atlassian.com/rest/2/addons/{addonKey}/privacy-and-security/publish' \
  --user 'email@example.com:<api_token>'

Responses

200

403

404

Privacy & security information submitted successfully.

A schema has not been defined for this response code.