Best-in-class security

We prioritize the utmost levels of data safety and security across all draw.io products. With draw.io, there’s no tracking or external retention of your data, ensuring your information remains confidential and protected at all times.

Best-in-class security

We prioritize the utmost levels of data safety and security across all draw.io products. With draw.io, there’s no tracking or external retention of your data, ensuring your information remains confidential and protected at all times.

The safe way to diagram

Explore our various security features and rest assured knowing your information is safe.

Data Governance and Residency

Your diagrams are securely and exclusively stored within Confluence/Jira at all times. Once you have set your data residency region for your Atlassian Cloud site, your data will be at rest within that same region.

Zero Egress

To meet international compliance guidelines, our Advanced app includes a no-cross-domain-traffic switch, while our Zero-Egress app blocks all services requiring egress by default. Data transmission is always restricted solely to the connection between your browser and Atlassian Cloud.

Full Forge

We were the first major Marketplace app to fully support the Atlassian Forge standard, providing a more secure and tightly integrated experience for end users.

Permission Handling

Diagram permissions in draw.io mirror your Confluence page permission settings. This ensures that only authorized users can securely access draw.io diagrams within Confluence pages.

ISO 27001

We adhere to the globally established ISMS standard, designed to safeguard the confidentiality, integrity, and availability of information through structured processes and security measures.

Platinum Marketplace
Partner

We are dedicated to exceeding customer expectations and setting the standards for excellence in app development and customer support.

The biggest teams trust draw.io

Through years of development and refinement, our diagramming tool has earned the trust of top companies around the world. Chosen by more teams than any other Confluence or Jira diagramming app, draw.io is equally at home in small start-ups as it is with the biggest organizations in the world.

Product legal notices

Seeking clarification on your license agreement, or would you like to learn more about our TOMs and DPA? Look no further! This section is your one-stop-shop for all the details on our legal statements.

EULA (End-User License Agreement)

The EULA is the contract between the software developer, us, and the end user, you. It’s an end-user license agreement that grants you, the user, a license to use the app and covers a series of important clauses.

Read EULA
TOMs (Technical Operation Measures)

TOMs identify the measures and controls related to our systems and technology, such as devices, networks, hardware, and access control. These measures are crucial for the security of any personal data, and offer peace of mind to users.

Read TOMs
DPA (Data Processing Agreement)

A DPA is an agreement between your business and us, your trusty external data processor. It regulates how any personal data processing is conducted for business purposes, and explains how we process your data.

Read DPA