Privacy Policy
Who We Are
Bliss (“we,” “us,” or “our”) is operated by [Your Name / Company Name], an individual / company registered in Israel.
- Business name: [Your Legal Entity Name]
- Address: [Your Address], Israel
- Contact email: privacy@blisslog.io
- Website: https://blisslog.io
What This Policy Covers
This Privacy Policy explains how we collect, use, store, and protect information when you use Bliss — a backlog copilot that automatically enriches tickets so they’re ready for your developers and AI coding tools (“the Service”).
By using the Service, you agree to the practices described in this policy.
What Data We Collect
Data You Provide Directly
- Account information — name, email address, and password when you sign up
- Ticket and backlog content — issue titles, descriptions, acceptance criteria, and any other content you submit for enrichment
- Contact form submissions — messages you send via our website
Data We Collect Automatically
- Usage data — pages visited, features used, actions taken within the Service, and session duration
- Technical data — IP address, browser type and version, operating system, device identifiers, and referring URLs
- Log data — server logs recording requests to our systems
Data from Third-Party Integrations
When you connect external tools (e.g., Jira, Linear, GitHub), we receive data from those platforms only as necessary to deliver the Service. We do not store third-party content beyond what is needed to perform enrichment.
How We Use Your Data
| Purpose | Legal Basis (GDPR) |
|---|---|
| Provide and operate the Service | Performance of contract |
| Process and enrich your tickets using AI | Performance of contract |
| Send transactional emails (onboarding, receipts) | Performance of contract |
| Improve and develop the Service | Legitimate interests |
| Detect and prevent fraud or abuse | Legitimate interests |
| Send product updates and marketing (if opted in) | Consent |
| Comply with legal obligations | Legal obligation |
We do not sell your personal data or backlog content to third parties.
Cookies and Tracking
We use cookies and similar technologies to operate and improve the Service.
Types of Cookies We Use
| Type | Purpose | Can You Opt Out? |
|---|---|---|
| Strictly necessary | Authentication, security, session management | No — required for the Service to work |
| Analytics | Understanding how visitors use the site (e.g., page views, navigation paths) | Yes — see below |
| Preferences | Remembering your settings and choices | Yes |
Managing Cookies
You can manage or disable non-essential cookies at any time:
- Use the Cookie Settings link in the footer of our website
- Configure your browser to block or delete cookies
- Use browser extensions for tracker blocking
Note that disabling certain cookies may affect Service functionality.
AI Processing and Your Content
The core of Bliss involves sending your ticket content to AI models for enrichment. Here is how that works:
- Your content is processed to provide the Service — ticket titles, descriptions, and metadata you submit are sent to AI inference providers to generate enrichment suggestions
- We use [AI provider, e.g., Anthropic / OpenAI] for AI processing — their data handling is governed by their own data processing agreements
- We do not use your ticket content to train AI models without your explicit consent
- Enrichment inputs and outputs may be logged temporarily for quality assurance and debugging
Data Retention
| Data Type | Retention Period |
|---|---|
| Account data | Until account deletion + 30 days |
| Ticket and enrichment content | Until deleted by you, or account deletion |
| Usage and log data | 90 days rolling |
| Billing records | 7 years (legal requirement) |
| Cookies (analytics) | 13 months |
You can request deletion of your data at any time — see Your Rights below.
Data Sharing
We share data only with:
- Infrastructure providers — hosting, databases, and CDN (e.g., cloud providers operating under data processing agreements)
- AI inference providers — for ticket enrichment (under DPA)
- Analytics providers — anonymized usage data (e.g., [provider name])
- Payment processors — billing data only (we do not store full card details)
- Legal authorities — when required by law, court order, or to protect our rights
All third-party processors are bound by data processing agreements and are prohibited from using your data for their own purposes.
International Data Transfers
We are based in Israel, which is recognized by the European Commission as providing an adequate level of data protection for personal data transferred from the EU/EEA.
Where we transfer data to processors outside Israel or the EU (e.g., US-based cloud providers), we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) as required by GDPR Article 46.
Your Rights
If you are located in the EU/EEA or a jurisdiction with similar privacy laws, you have the following rights:
- Access — request a copy of the personal data we hold about you
- Rectification — request correction of inaccurate data
- Erasure — request deletion of your personal data (“right to be forgotten”)
- Restriction — request that we limit how we use your data
- Portability — receive your data in a structured, machine-readable format
- Objection — object to processing based on legitimate interests
- Withdraw consent — where processing is based on consent, you may withdraw it at any time
To exercise any of these rights, email us at privacy@blisslog.io. We will respond within 30 days.
If you believe we have not handled your data correctly, you have the right to lodge a complaint with:
- Israel: The Privacy Protection Authority (PPA) — gov.il/en/departments/the_privacy_protection_authority
- EU/EEA: Your local supervisory authority
Data Security
We implement appropriate technical and organizational measures to protect your data, including:
- Encryption in transit (TLS) and at rest
- Access controls and role-based permissions
- Regular security reviews
- Incident response procedures
No method of transmission over the internet is 100% secure. We will notify you and relevant authorities of any breach as required by law.
Children’s Privacy
The Service is not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us at privacy@blisslog.io and we will delete it promptly.
Changes to This Policy
We may update this policy from time to time. If we make material changes, we will notify you by email or by posting a prominent notice on our website before the changes take effect. The “Last updated” date at the top of this page reflects the most recent revision.
Contact Us
For any privacy-related questions or requests:
[Your Name / Company Name] [Address], Israel privacy@blisslog.io https://blisslog.io
This policy is written in plain language. If anything is unclear, please reach out — we’re happy to explain.