| Table of Contents |
|---|
...
Are Cards & Panels affected by the remote code execution (RCE) vulnerability of Log4j?
No, Caelor customers are not vulnerable, and no action is required. This vulnerability has been mitigated for all Caelor cloud products previously using vulnerable versions of Log4j.
Security is a very important to Caelor. Therefore Caelor complies with the highest security standards. That's why Cards & Panels is Cloud Fortified Certified. This is Atlassian's highest standard for cloud apps. More Information about Cloud Fortified can be found here.
...
What sort of data is collected, and what happens with that data?
Cards & Panels is storing the installation information that is being provided by Atlassian. This data is needed to identify a client but does not indicate or expose any user data. Additionally, we are tracking usage information of our product (e.g. which card types are being used, which layout options or colors are set, which elements are configured in panels etc.). However, we are not collecting any contextual information around our macros: we don’t know which images you are using in cards, which title or text you enter in cards, the name of your Confluence pages, their authors/editors or any content on them. At no point we collect any personally identifiable information.
...