# Security & Privacy

We prioritize security and perform thorough audits of our applications, systems, and networks to safeguard your data. [Learn more](https://www.usehaystack.io/security)

## JIRA <a href="#h_10a7a31dfc" id="h_10a7a31dfc"></a>

List of data that is stored at Haystack:

<table><thead><tr><th width="206">Category</th><th>Data stored</th></tr></thead><tbody><tr><td>System  </td><td>Issue statuses, priority types, column types, etc.</td></tr><tr><td>Issues</td><td>Title, content, create/update date, assignee, creator, reporter, custom fields (e.g., story points, sprints), etc. </td></tr><tr><td>Issue history </td><td>Title changes, assignee changes, etc.</td></tr><tr><td>Issue comments </td><td>Content, author info, etc. </td></tr><tr><td>Projects  </td><td>Project name, type, key, issue types, etc.</td></tr><tr><td>Sprints</td><td>Start/end dates, title, state, etc. </td></tr><tr><td>Boards</td><td>Board JQL, title, column metadata, etc. </td></tr><tr><td>Members</td><td>Name, account ID, email, etc.</td></tr></tbody></table>

## Version Control (GitHub, GitLab, Bitbucket) <a href="#h_2322e933ed" id="h_2322e933ed"></a>

### Permissions needed

For Haystack to provide meaningful insights, it needs read-access to the git repositories you would like to include.

### Data usage

Haystack only uses metadata (messages, timestamps, status, tags) on pull requests, commits & comments.

{% hint style="success" %}
Haystack does **not** read, store, or persist source code.
{% endhint %}

## FAQ <a href="#h_ff99129c58" id="h_ff99129c58"></a>

<details>

<summary>Where can I see your security and privacy policies?</summary>

Here are the links to our [security](https://www.usehaystack.io/security) and [privacy](https://www.usehaystack.io/privacy) policies.

</details>

<details>

<summary>Do you store or read source code?</summary>

Haystack does **not** read, store, or persist source code.

</details>