situation:

Self hosted Jira and Confluence Server will expire at 2024

health related Software Developers which need to be compliant to the German DVG (

Digitale-Versorgung-Gesetz and the regualtions described in DiGa-V (Annex 1 & 2 ) and also with the regulations from the SGB (Sozial-Gesetz-Buch) V §139e Paragraph  11 which will be the TR-03161-1 TR-03161-2 and TR-03161-3 from the German BSI (will be released in 3 weeks accorindgly to the BSI the old version is form 2018)

Keypoints:

• it is not allowed to use non German Clouds or Hoster's to process personal related data in connection with DiGa Products
• Clouds need to have a C5 Type 2 certifcate (in terms of shared hosting)
• all Providers need a ISO27001 certificate

Possible Solution:

• make a german Cloud with german hosters (IONOS, Hetzner, Strato)
• allow Atlassian partners to host small data-center licenses (25 user , 50 and up ) on their german infrastructure to use it in a compliant way

Benefits:

• get hands on on a big rising market in Germany and EU (currently 300 DiGa approaching verification, Atlassian is the mos used service desk and ticket management as well as documentation solution)
• bind customers forever - the DiGa's are using Confluence as ther QMS and ISMS Systems accordingly to ISO 13485 and ISO27001 - to change this would cause massive problems on there side - we will do as much we can to stay on Atlassian Products