This message was posted by a user wishing to remain anonymous
We are a very small company with no true vendor mgmt/legal/compliance. I was asked to do a new vendor review on Atlassian and found their information online. If you go to their site and scroll all the way down, look under Investor Relations for some info and right below it Trust & Security (then look for Compliance), I found links to their SOC 2 & 3.
I swear I feel like Sherlock Holmes half the time, trying to dig info out on these sites and other times trying to email and get to the right person at a company that can help (and even if you do, can you get them to send the info you requested?). But I was able to obtain annual reports, SOC reports, copies of certain certifications, etc. I always have to dig for it though.
Hope you find that information useful! I know I enjoy reading the posts on here because even though we have some things in place, we are a very small company and don't have a vendor mgmt department or anything along those lines at all. I'm trying to figure out the best ways to set this up for future use by future employees when I really don't have any experience in this area. I'm learning a lot though!
Original Message:
Sent: 05-10-2021 11:41 AM
From: Anonymous Member
Subject: BCPs for Large Vendors (Google, AWS)
This message was posted by a user wishing to remain anonymous
Hi,
I would be curious if anyone has been successful in obtaining any type of compliance package from Atlassian. They have told us that they don't supply compliance information.
Original Message:
Sent: 05-10-2021 11:04 AM
From: Anonymous Member
Subject: BCPs for Large Vendors (Google, AWS)
This message was posted by a user wishing to remain anonymous
Hello All. Has anyone ever been able to get BCPs or RTO's from AWS, Atlassian, Microsoft or Google? I have gone zero for zero in trying to get these. Wondering if anyone else has had any luck. TIA.