Privacy Policy — HealthMap for Confluence

Last updated: April 15, 2026

Summary

HealthMap is built on Atlassian Forge and runs entirely within Atlassian's infrastructure. Your data never leaves Atlassian — we have no external servers, collect no analytics, and store no personal information outside of your Confluence instance.

Lichen ("we", "us") is the developer and data controller for this app. We — not Atlassian — are responsible for the privacy, security, and integrity of any data processed by HealthMap.

Data Collection

This app does not collect:

• Personal information or user profiles
• Analytics, telemetry, or usage tracking
• Cookies or tracking identifiers
• Page content (only metadata such as titles, dates, and links are processed)

Data Storage

HealthMap stores the following data using Atlassian Forge Storage (key-value store), which resides within your Atlassian cloud instance:

• Scan results — health scores, issue counts, and timestamps per space
• Scan history — up to 52 weekly snapshots per space for trend tracking
• Score configuration — custom weights and grade thresholds set by administrators
• Hidden spaces list — space IDs that administrators choose to exclude

No data is sent to external servers. All storage is managed by Atlassian's Forge platform.

Permissions (Scopes)

The app requests the following Atlassian scopes, used solely for core functionality:

• read:page:confluence — to read page metadata (titles, dates, parent IDs) for health analysis
• read:space:confluence — to list spaces for scanning
• read:confluence-content.all — to read page body content for broken link detection
• write:confluence-content — to add "needs-review" labels to stale pages
• storage:app — to persist scan results and configuration in Forge Storage
• read:user:confluence — to check user account status for orphan detection (Pro)

Third-Party Services

HealthMap does not communicate with any third-party services. The app runs entirely on the Atlassian Forge platform and qualifies for the "Runs on Atlassian" program.

Your Rights (GDPR)

HealthMap does not store personal data — it stores only aggregated scan results (page counts, scores, timestamps) and space-level configuration. No usernames, email addresses, or personal identifiers are persisted.

If you believe any personal data is stored by the app, you may request erasure or rectification by contacting us. Uninstalling the app removes all Forge Storage data associated with your instance.

Changes

If this policy changes, the updated version will be posted here with a new date.

Contact

Questions? Email lichen_dev@proton.me.