Privacy Policy
Last updated: May 30, 2026
1. Scope
This policy applies to the website https://jirachrono.variograma.com and the desktop application Variograma JiraChrono, developed by Variograma.
2. What this site does NOT do
- Does not use a database.
- Does not create user accounts.
- Does not store Atlassian access tokens.
- Does not store worklogs, time records or any Jira project data.
- Does not create tracking cookies.
- Does not include third-party analytics scripts.
- Does not include any external scripts of any kind.
3. OAuth callback page
The site provides an endpoint at /oauth-callback to receive the redirect
after OAuth authorisation at Atlassian. That endpoint:
- Reads the URL parameters (
code,state) solely to redirect the desktop app via thevrjirachrono://protocol. - Does not persist those parameters to files, databases or logs.
- Does not exchange the
codefor tokens on the server. That exchange happens exclusively inside the user’s desktop app.
4. Desktop application
The desktop application Variograma JiraChrono may communicate with the official Atlassian Jira API upon explicit authorisation by the user. Specifically:
- OAuth tokens are stored locally on the user’s computer, using secure OS mechanisms: Windows Credential Manager / DPAPI on Windows and Keychain on macOS.
- Tokens are never sent to Variograma servers.
- The app communicates directly with the Atlassian Jira API; there is no Variograma proxy server in between.
5. Atlassian Marketplace Licensing
Should Variograma JiraChrono be published as a paid application on the Atlassian Marketplace, it may be necessary to use the Atlassian Marketplace licensing system. In that case, licence data processing will be governed by Atlassian’s policies and communicated in advance.
6. Contact
For any privacy-related questions, please contact us at: [email protected].
7. Changes to this policy
This policy may be updated at any time. We recommend checking it periodically. The date of the last update is shown at the top of this page.