Security & Trust

Free webinar on 1 June: "How to export issues from Jira Cloud to Excel" (seats are limited!) Sign up now →

Midori is a long-standing member of the Atlassian Ecosystem

Midori was officially established in 2012, but we built our first apps in 2005, years before the Atlassian Marketplace was born. We have been a dedicated and active Marketplace Partner in the Atlassian Ecosystem ever since it was created. Today, more than 7,000 companies (many of them Fortune 500 members) rely on our products and support services every day.

🛡️ We take software security seriously

When it comes to software security, we adhere to industry standards and participate in all Atlassian security programs. We review our security practices periodically to prevent incidents and maintain outstanding service reliability.

On this page we collected the relevant resources you need during a vendor assessment research. Learn more about the security programs we participate in, where to find the License Agreement and privacy disclaimer, and how to get in touch with us when you need support.

Key resources for vendor assessment

Security Programs

Midori participates in all Atlassian security programs. For our cloud apps this means the highest security classification of Cloud Fortified!

Security program details →

Midori EULA

The Midori End User License Agreement clarifies our commitment to you and the terms you are agreeing to when you choose a Midori product. While it contains the mandatory legal language, it's a fair and concise document free of unnecessary strings and fine prints.

Read the Midori EULA →

Privacy Policy

Refer to the Privacy Policy to review our data handling practices. It explains that we only collect and store the data that's necessary to provide the desired services to you.

Read the Midori Privacy Policy →

Responsive Technical Support

If something goes wrong or you just have questions, you can easily reach us.

Review our Customer Support Service Level Agreement and how we manage technical support.

🗨️ Midori support desk →

Security Programs

Midori is successfully participating in and adhering to the following programs and requirements.

Security Program Description
CAIQ Lite Questionnaire The CAIQ Lite Questionnaire is a standard cloud security assessment, approved by the Cloud Security Alliance (CSA). Midori has completed the CAIQ Lite Questionnaire and made it available for you to use it in your vendor assessment process.
Midori CAIQ Lite Questionnaire (Excel spreadsheet)
Ecoscanner Ecoscanner is Atlassian’s platform to perform security checks against all Atlassian Marketplace cloud apps on an ongoing basis. Midori cloud apps are continuously monitored by Ecoscanner. This process brings possible vulnerabilities to light very early so we can address them before they cause any damage.
Vulnerability Disclosure Program The Vulnerability Disclosure Program is a reporting platform run by Atlassian, providing a safe and effective way for Atlassian, customers and security researchers to report vulnerabilities. Midori cloud apps are participating in this program.
Cloud App Security Requirements Cloud App Security Requirements are a set of mandatory requirements Atlassian defined for all Marketplace Partners. Atlassian audits Marketplace Partners against these requirements yearly to ensure they adhere at all times. Midori fulfills these security requirements and passes the audit successfully every year.
Security Bug Fix Policy The Security Bug Fix Policy defines specific Security Bug Fix SLAs that all Marketplace Partners are expected to meet. This is to ensure cloud app vulnerabilities are addressed promptly and eventually fixed. Midori adheres to these SLAs.
Marketplace Bug Bounty Program The Marketplace Bug Bounty Program is a collaboration between Atlassian, app developers and security partners to help Marketplace Partners discover and neutralize vulnerabilities. All Midori cloud apps participate in this program where independent security researchers are incentivized to find and report vulnerabilities before those can cause harm.
Security Self-Assessment Program The Security Self-Assessment Program is a review process by Atlassian where Atlassian works with Marketplace partners to pinpoint vulnerabilities and identify improvements. Midori completes an annual security assessment that Atlassian reviews and approves.

Our CTO says...

"We consider security aspects from product design to service delivery. Our everyday security practices are based on industry recommendations and are underpinned by Atlassians security frameworks. A strong security footing allows us to build for the long-term and deliver reliable apps for our customers."

"If you are a Midori customer, you can trust our support engineers to respond quickly when you need help. I invite you to continue browsing through our security programs, security partners and reach out to us if you have questions."

Gabor Nagy, Midori Chief Technology Officer

Security Partners

Midori works with the industry-leading security, privacy and compliance experts.

Logo of AWS, a Midori security partner Logo of Bugcrowd, a Midori security partner Logo of Cloud Security Alliance, a Midori security partner Logo of OWASP, a Midori security partner Logo of Snyk, a Midori security partner Logo of Whistic, a Midori security partner
⛅ Still on Server? Planning the migration to Cloud?

Migrating Midori apps to the cloud is a simple and lightweight process. Check our migration guide for Better Excel Exporter and for Better PDF Exporter.

Looking for experts to assist your cloud migration or anything else with the Midori apps? Check out the trusted Midori Solution Partners.