Trust Center

At Appfire, the security and trust of our customers remain our top priority. Following those principles, we are pleased to share that we have successfully completed the recertification of our Information Security Management System (ISMS), upgrading from ISO/IEC 27001:2013 to the latest ISO/IEC 27001:2022 standard. In addition, we have also renewed our ISO/IEC 27017 certification for cloud service security. Both certifications with no findings.

These achievements confirm our ongoing commitment to:
-Continuously evolving our security program to meet the latest international standards.
-Strengthening our information security management system to protect sensitive data.
-Applying industry-leading, cloud-specific controls to provide a secure and resilient environment.
-Maintaining these certifications demonstrates our dedication to protecting your data and ensuring transparency in how we manage security.

Please find the certificate here: https://trust.appfire.com/?itemName=certifications&source=click&itemUid=1fed9faa-4a87-427c-9a95-96b4d6bf66b7

To demonstrate our dedication to security, privacy, and compliance, Appfire has just published it's most recent SOC2, Type II audit report, with zero exceptions.

For Appfire’s customers, a SOC2, Type II audit provides several assurances and benefits related to the security and availability of their data. For example, it signifies Appfire has implemented and maintains effective controls to secure sensitive customer data, taking necessary measures to protect their information against unauthorized breaches. There is also a level of trust that is incurred when going through such a rigorous audit process aligned with industry recognized standards, which is crucial for customers in regulated industries. A SOC2, Type II also reflects a commitment to transparency around security and availability practices, improving customer communications and confidence. The Type II designation involves continuous monitoring and improvement, assuring our customers that our controls will continue to be effective. Finally, a SOC2, Type II is a crucial factor in the vendor selection process, allowing customers to make informed decisions based on Appfire’s commitment to security and availability.

Appfire has also updated it's CAIQ Lite and SIG Lite pre-completed security questionnaires to further assist customers in their assessments and evaluations.

Thank you for continuing to be our customer.

Best Regards,

Doug Kersten

CISO

Appfire.com

Hi all,

Appfire is announcing its "Atlassian Host Platform Compatibility Policy" defining the range of Atlassian Host Platform versions that our Data Center apps will support.

Please see the document in Appfire's trust center by navigating to the Policies Card, and then to "Atlassian Host Platform Compatibility Policy"

Appfire Legal & Infosec Team

Background

Snowflake is a database vendor used by Appfire for data insights and analytics. It is not used by any of our marketplace applications. Snowflake has an ongoing investigation involving a targeted threat campaign against some Snowflake customer accounts. The initial attack methods revolves around compromise of user accounts that are not secured by MFA or other restricted access methods. According to Snowflake this compromise is not due to a vulnerability in Snowflake’s cloud offering.

Appfire Evaluation

Appfire is not impacted by this breach. As of this writing, Snowflake has stated that there was no breach of their systems nor exploitable vulnerability in their products. Regardless, our information security teams reviewed the controls in place around our instances of Snowflake, and reviewed logs against the indicators of compromise that were shared by Snowflake. We confirmed that none of the recently disclosed events impacted Appfire or our usage of Snowflake. If you would like more information about Snowflake's response to these recent events, please refer to their web site and community forum.

🔒 We’re proud to share some exciting news… Appfire hasc ompleted our SOC 2, Type II audit!

As we continue to prioritize the security of our technology, this latest recognition further demonstrates Appfire’s commitment to security and compliance for our customers, prospects, partners, and team members.

Learn more: https://bit.ly/3SJJN3z

Get it here: https://trust.appfire.com/?itemUid=7bfa66da-33ab-49de-8391-e329738a1ae9&source=click