The terms are fairly standard for B2B cloud software and include some user-friendly elements like retrieval and deletion language, a security program, and IP indemnification. However, the agreement is still heavily provider-favored with auto-renewal, broad restrictions, limited remedies, and unilateral amendment/suspension powers.
Bitbucket (via Atlassian) is offered under an enterprise-style customer agreement with strong provider control over service terms, usage limits, and account administration. It includes standard business protections like security commitments, IP indemnity, and a deletion promise after termination, but also has auto-renewal, non-refundable fees, liability limits, broad suspension rights, and unilateral changes to terms with notice.
Points of interest
Subscriptions renew automatically at the then-current rate unless notice of non-renewal is given before the term ends. Users should plan cancellation in advance to avoid unexpected charges.
"“a Subscription Term will automatically renew at Atlassian’s then current rates”"
Atlassian can limit access, remove data, or suspend accounts if it believes data or usage violates the rules or threatens security or operations, or if legally required. This gives the provider substantial discretion over service continuity.
"“Atlassian may: (i) limit access to, or remove, the relevant Customer Data, or (ii) suspend Customer’s or any User’s access”"
Most claims are capped at fees paid in the prior 12 months, and many damages like lost data or lost profits are waived. This can leave users with limited recovery if something goes wrong.
"“neither party will have any liability... for any loss of use, lost data, lost profits”"
Atlassian promises to defend and indemnify customers against third-party claims that authorized use of the product infringes IP rights. That is a substantial protection for business customers relying on the platform.
"“Atlassian must: (a) defend Customer from and against any third-party claim”"
Most fees and expenses are non-refundable, so ending service early usually does not mean getting money back. The main exception is the 30-day initial return policy for products.
"“All fees and expenses are non-refundable”"
Atlassian may modify the agreement by posting updates, with changes often taking effect at renewal and sometimes mid-term. If you object, your main remedy may be to terminate the affected subscription.
"“Atlassian may modify this Agreement... by posting the modified portion(s) of this Agreement on Atlassian’s website”"
The documentation is supposed to explain how customers can retrieve their data from the cloud products. That is helpful for migration planning and exit preparation.
"“The Documentation describes how Customer may retrieve its Customer Data from the Cloud Products.”"
After the agreement ends, Atlassian says it will delete customer data according to the documentation unless law prevents it. That is a meaningful exit-right, though the exact timing and method depend on the docs.
"“Following expiration or termination, unless prohibited by Law, Atlassian will delete Customer Data”"
The service is licensed for internal business use, not as a general-purpose consumer tool. That means your use is limited to the organization’s scope and the contract’s usage rules.
"“for its and its Affiliates’ internal business purposes”"
If you enable third-party products, those providers may access your data and their own terms apply. This can expand data sharing beyond Atlassian itself.
"“Use of such Third-Party Products with the Products may require access to Customer Data and other data by the third-party provider”"
If an employer or organization provides the account, that organization controls the personal information and manages the account. Individual users may need to go through that organization for privacy requests.
"“your employer or another organization provides the Atlassian account, that organization controls your personal information and manages the account”"
Other Dev services on AIgree
Compare Bitbucket with…
The 7 clauses that actually matter, the red flags to watch for, in 5 minutes.
Report a problem with this summary
Spot something wrong, missing, or misleading? Tell us — we review every report.
Spot something wrong, missing, or misleading? Tell us — we review every report.
Thanks — your report was submitted and will be reviewed.
Documents
Terms of Service
source ↗- •Agreement applies to Customer Orders for Products and related Support/Advisory Services, with extra terms for specific products and applicable policies.
- •Atlassian licenses Products for internal business use during each Subscription Term, while Customer must follow documentation, scope of use, and the Acceptable Use Policy restrictions.
- •Customer is responsible for Users’ activity, keeping login credentials confidential, and complying with age limits and domain verification requirements for Cloud Products.
- •For Cloud Products, Atlassian may suspend or remove data if Customer Data or use violates restrictions, threatens security/operation, or is required by law; remedies depend on feasibility.
- •Customer must not upload HIPAA-protected health information to Cloud Products unless the parties have a Business Associate Agreement.
- •Third-party products may access Customer data, Atlassian disclaims liability and warranties for third-party offerings, and third-party terms control those parts.
- •Fees are generally non-refundable, subscriptions auto-renew at stated rates unless non-renewal notice is given, and Atlassian may suspend for overdue payment after notice.
- •Customer warranties are limited to described performance promises, remedies are mostly repair or refund for nonconformity, and “AS IS” applies to other aspects.
- •Liability is capped to amounts paid in the prior 12 months, with carve-outs for certain claims and special claims tied to unauthorized disclosure from the security program breach.
- •Termination allows convenience by Customer (with no refunds except early return policy) and cause with 30-day cure; upon termination Customer stops use and Atlassian deletes Customer Data per documentation.
Privacy Policy
source ↗- •Atlassian says this policy covers how it collects, uses, shares, and protects personal information when you use its services or interact with it.
- •The policy applies to Atlassian as a controller of personal information, not when it processes data only on a customer’s behalf.
- •If your employer or another organization provides the Atlassian account, that organization controls your personal information and manages the account.
- •When acting for a customer, Atlassian says it follows that customer’s instructions under the Data Processing Addendum.
- •Atlassian says it is not responsible for the privacy or security practices of customer organizations using its services.
- •To learn how a customer organization uses your data or to exercise related rights, you should contact that organization directly.
- •The policy says you have choices about how Atlassian uses your information, including options to object and to access or update certain information.
- •If you do not agree with this privacy policy, Atlassian says you should not access or use its services or otherwise interact with its business.
- •People in the EEA, UK, or United States are directed to regional disclosures for additional privacy details that may apply.
