Security & Trust Center
CriticalRidge is committed to enterprise-grade security. Our apps are built exclusively on Atlassian Forge, ensuring your data never leaves Atlassian's secure infrastructure.
Security Pillars
Data Residency
CriticalRidge supports Atlassian's data residency. Your data stays where your Atlassian instance resides—no exceptions.
Encryption
All data in transit and at rest is managed by Atlassian Forge's AES-256 encryption standards. CriticalRidge does not handle encryption keys.
Privacy by Design
No external egress. No user tracking. CriticalRidge apps operate entirely within Atlassian's perimeter.
Built on Atlassian Forge
Unlike traditional Atlassian Connect apps that run on external servers, CriticalRidge apps are built on Atlassian Forge—Atlassian's serverless platform.
This architectural decision ensures:
- No external servers to compromise — All code executes within Atlassian's infrastructure
- No data leaving Atlassian's infrastructure — Your information remains within the Atlassian ecosystem
- No third-party hosting dependencies — Eliminates supply chain risks from external infrastructure providers
Forge apps undergo Atlassian's security review process and operate under strict runtime permissions, providing an additional layer of security assurance for enterprise environments.
Compliance & Certifications
Cloud Security Participant
CriticalRidge participates in Atlassian's Cloud Security program, demonstrating our commitment to security best practices.
Vulnerability Disclosure Program
We maintain an active vulnerability disclosure program. Security researchers can report issues through our coordinated disclosure process.
Report via Bugcrowd →GDPR & CCPA Compliant
CriticalRidge processes data in accordance with GDPR and CCPA requirements. As a Forge-based vendor, we operate as a sub-processor under Atlassian's data processing framework.