Skip to content

Security and privacy

Mode: reference. How Tollgate handles your data, and where to find the binding legal documents.

Tollgate is published by Softwired Digital Pty Ltd. Security contact: help@softwired.com.au.

  • Runs on Atlassian. Tollgate is built entirely on Atlassian Forge. It runs on Atlassian-hosted infrastructure and stores all data in Atlassian’s hosted storage. In normal operation it makes no calls to any server operated by Softwired or a third party — there is no Softwired-hosted backend, database, or analytics system.
  • Shared-responsibility model. Atlassian secures the platform, runtime, storage, encryption, and tenant isolation. Softwired is responsible for the app’s code, its permission scopes, and how it uses the data it is granted.
  • Tenant isolation. Each customer’s governance data is isolated by Atlassian’s storage; Tollgate reads and writes only within your own site.
  • No external AI. The Tollgate Rovo agent runs on Atlassian’s platform and answers deterministically from your own data. Governance data is not sent to any external AI service.

Governance records you create in the app — work packages, project status, the Business Case / Investment Thesis, the Risk register, decisions, scope changes, the audit trail, and app settings — plus the Jira (and, optionally, Confluence) data it reads to populate those surfaces.

  • Project deletion. Deleting a Jira project purges all of that project’s Tollgate data.
  • User deletion. When a user is permanently deleted from your Jira instance, their account identifier is scrubbed from per-project records (right to be forgotten).
  • App uninstall. Uninstalling Tollgate triggers a tenant-wide purge of the app’s data.

The Security Statement and Data Processing Agreement (DPA) are provided with the Atlassian Marketplace listing.