Jama Software AI Data Policy
This policy describes how Jama Software Inc., a Delaware corporation headquartered in the United States, (variously referred to throughout as “Jama”, “we” or “our”) makes use of artificial intelligence, machine learning, natural-language algorithms or large-language models (referenced to throughout as “AI”) to provide features within products developed by Jama Software.
Commitment to Data Privacy and Security
Jama Software is committed to transparency and safeguarding customer data in its use of AI. As part of that commitment, Jama Software will follow the NIST framework for Explainable AI (NIST.IR.8312), which means that at Jama we are confident that our AI solutions are:
- Explainable – the outputs and processes of our system are backed by accompanying evidence and design
- Meaningful – the outputs from our solutions provide understandable and recognizable benefits
- Accurate – the outputs from our solutions are intelligible to our end customers
- Design Limited – the outputs from our system are within the designed constraints and avoid misleading, dangerous or unjust results
No Training on Customer Data
We do not use customer-specific data to train or fine-tune any of our general AI models. All models we deploy are trained on publicly available or Jama proprietary datasets that exclude customer data. Where appropriate, and at the direction of a customer, for isolated, customer-targeted models, some specific customer data and feedback may be used. Those customer-targeted models will not be incorporated into our general AI analysis.
No Public Processing of Customer Data
We do not process customer data through any publicly available large language models (LLMs). All AI processing occurs securely within our private infrastructure or third-party systems with strict contractual obligations for data privacy. All AI solutions and data handling adhere strictly to existing Jama data privacy policies.
Suggestions Only, Not Decisions
Any AI functionality provided within Jama Software’s products is intended for suggestion purposes only. Customers are solely responsible for reviewing and validating any AI-generated content before using it in their workflows, communications, or outputs. We encourage customers to evaluate potential risks in using AI solutions and implement appropriate human oversight and testing to mitigate any risk.
Customer Control and Transparency
We believe customers should always have control over how their data is used in AI processes. To this end:
- Customers can opt in or out of AI‑enhanced features where applicable.
- Our product interfaces provide clear disclosures when AI is being used to analyze or generate suggestions from customer data.
- AI‑driven suggestions are presented alongside supporting information to empower customers in making informed decisions.
How We Protect Customer Data
We employ industry-leading security practices designed to protect the confidentiality, integrity, and availability of customer data processed by our AI features. These include:
- Encryption of data in transit and at rest.
- Role‑based access controls to limit data access to authorized personnel only.
- Rigorous auditing and monitoring of AI processes.
Additionally, all AI features are rigorously tested to ensure compliance with our data protection policies.
Updates to This Policy
As AI evolves, we may update this policy to reflect new capabilities, features, or regulatory requirements. We encourage you to review this policy periodically to stay informed about how we utilize AI in a secure and responsible manner.