1. Introduction
LeadFrame OÜ ("LeadFrame", "we", "us", or "our") is committed to protecting personal data in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR").
This Privacy Policy explains how personal data is processed when:
- visiting our website, and
- using LeadFrame applications provided through the Atlassian Marketplace.
2. Data Controller Roles
Website Data
LeadFrame does not actively collect personal data from visitors browsing this website. We do not use analytics tools, marketing trackers, or profiling technologies. Personal data is processed only if a visitor voluntarily contacts us, for example by sending an email, or technical data automatically generated through normal website operations.
Application Data
For personal data processed within the LeadFrame application available at Atlassian Marketplace, LeadFrame OÜ acts as a Data Processor on behalf of the customer organization, which acts as the Data Controller.
LeadFrame processes such data only according to customer instructions.
3. Personal Data We Process
Website Visitors
We may process:
- contact information voluntarily provided (e.g., email inquiries),
- technical data necessary for website operation (e.g., server logs, IP address, browser type and version).
We do not use analytics or tracking cookies.
Application Users (Processed as Processor)
Depending on customer configuration, the LeadFrame application available at Atlassian Marketplace may process:
- employee name and surname,
- job title or role within the organization,
- performance-related interaction data generated within Jira environments.
LeadFrame does not determine the purpose or means of this processing.
4. Legal Bases for Processing
Website processing relies on:
- Legitimate interest (Art. 6(1)(f) GDPR) — website security and communication,
- Consent where applicable (Art. 6(1)(a)).
Application data processing is performed under Art. 28 GDPR (processor obligations).
5. Data Hosting and Subprocessors
Services are hosted using:
- Amazon Web Services (AWS)
Data may be processed within infrastructure located in the European Economic Area or under appropriate safeguards compliant with GDPR.
6. Data Retention
Website data is retained only as long as necessary to respond to inquiries or ensure system security.
Application data retention is determined by the customer organization using the application.
7. Data Sharing
We do not sell personal data.
Data may be shared only with:
- infrastructure providers (e.g., AWS),
- Atlassian systems necessary for marketplace integration,
- authorities where legally required.
8. International Transfers
Our servers are located within the European Union. Where personal data is transferred outside the EEA, appropriate safeguards such as Standard Contractual Clauses are applied.
9. Data Subject Rights
Individuals have the right to:
- access personal data,
- rectification,
- erasure,
- restriction of processing,
- data portability,
- objection.
Requests relating to application data should be directed to the customer organization acting as Data Controller.
Contact: legal@leadframeapp.com
10. Security Measures
LeadFrame implements appropriate technical and organizational measures designed to protect personal data against unauthorized access, loss, or alteration.
11. Cookies
For information about how this website uses cookies, please refer to our Cookie Policy.
12. Changes to this Policy
We may update this Privacy Policy periodically. Updates will be published on this page.