The eSign for Confluence application does not persistently store any user or signature data outside of the customer’s Atlassian Confluence cloud hosting environment.
All communication between the Atlassian cloud environment, the User’s browser, and the hosted eSign servers are encrypted using HTTPS.
Digital Rose staff and the eSign operations team do not have access to customer data.
In case of security breaches, Atlassian will be notified immediately via an Add-on Security Incident (link).
In case of identified security vulnerabilities being detected, a high priority incident will be created to patch the vulnerability as soon as possible.