RuleMesh
view_kanban
Atlassian Forge App

RuleMesh for Jira

Transform GDPR regulations into prioritised engineering tasks inside Jira, mapped to AWS, Azure, and security controls (OWASP TOP 10, NIST-CSF). Engineers use AI coding agents to implement compliance requirements directly from bundle tickets.

Built For Your Team

Three roles, one workflow

code

Engineers

  • checkBundle tickets with implementation guidance
  • checkMCP commands for AI-assisted compliance
  • checkEvidence auto-tracking from coding agents
verified_user

DPOs / Compliance Officers

  • checkInteractive checklists with audit trails
  • checkEvidence verification workflow
  • checkFull regulatory traceability per item
admin_panel_settings

Jira Admins

  • checkOne-click site setup — no separate account needed
  • checkLicense management from within Jira
  • checkBacklog configuration and regeneration
Capabilities

Features

Getting Started

Site Registration

One-time setup connecting your Jira site to RuleMesh. No separate RuleMesh account required — the app auto-creates an organisation and FREE license for your site.

1

Open RuleMesh in Jira

A Jira administrator opens the RuleMesh project page. The app detects the site is not yet registered.

2

Connect to RuleMesh

Admin clicks "Connect to RuleMesh". The app registers the Jira site using the Forge-provided identity. An organisation and FREE license are auto-created.

3

Site key stored

A site key and webhook secret are stored securely in Forge Storage. All subsequent API calls use the site key.

4

Generate your backlog

Configure your environment (cloud provider, app type, data sensitivity) and generate a full GDPR compliance backlog in your Jira project.

Non-admin users see a message directing them to contact a Jira administrator. Admin turnover: if the original admin leaves, a new admin can take over via the transfer-admin flow — all data is preserved.

AI Coding Agents

MCP Integration

How evidence flows

terminalEngineer runs an MCP command on a bundle ticket
smart_toyCoding agent implements the requirement and calls report_evidence
cloud_uploadEvidence is stored in the RuleMesh API
syncEvery 5 minutes, the Jira app reconciles evidence events
fact_checkMatching checklist items are auto-updated with evidence signals
commentA structured "Evidence Found" comment is posted on the Jira ticket

Supported Agents

AgentConfig Location
Claude Code.claude/settings.json or claude_desktop_config.json
Cursor / VS Code.cursor/mcp.json or VS Code MCP settings
WindsurfAgent MCP configuration

See the MCP Server documentation for full setup instructions and configuration options.

Compliance Panel

Compliance Checklist

Every bundle ticket gets an interactive checklist in the Jira sidebar. The panel header shows a live progress lozenge (e.g., “4/7 answered”).

toggle_on

Status Tracking

Set each item to Yes, No, or N/A with a single click

chat_bubble

Comments

Add implementation notes or justifications per item

attach_file

Evidence Upload

Attach files directly to checklist items via Jira Attachments API

verified

Verification

A second person marks items as verified — human-only, no MCP agents

history

Audit Trail

Expandable chronological log showing who changed what and when

menu_book

Learn More

Modal showing the full regulatory chain: checklist item → IT requirement → source legal text

Technical Details

  • infoChecklist data is stored as Jira entity properties on each issue, with adaptive chunking for large bundles (32KB entity property limit).
  • infoOld tickets (pre-v7.0) get their checklist initialised on first panel open — no migration needed.
Project Overview

Dashboard

inventory_2

Bundles

check_circle

Done

pending

Active

radio_button_unchecked

To Do

warning

High Risk

verified

Verified

Dashboard Tabs

The dashboard organises compliance data across five focused views.

TabContent
OverviewMetric cards + bundle list with progress bars, risk badges, and status
Risk MatrixStacked bar visualisation of risk levels across all bundles
ReportsEvidence timeline with date, bundle, and signal type filters
IntelligenceRegulatory intelligence feed with severity filtering (INTEL tier)
MCPMCP setup instructions, API key display, agent connection guide
Plans

License Tiers

FeatureFREEFREE + INTEL
Price$0+$299/year
GDPR requirements / month100Unlimited
Projects15
Compliance Checklistcheck_circlecheck_circle
MCP Integrationcheck_circlecheck_circle
Evidence Trackingcheck_circlecheck_circle
Regulatory Intelligenceremovecheck_circle
Version Trackingremovecheck_circle

Upgrade from within Jira. Clicking “Upgrade” generates a secure one-time token (15-minute TTL) and redirects to the RuleMesh pricing page. The license updates automatically after payment.

Infrastructure

Data & Security

Data Storage

database
Forge Storage

Bundles, backlog state, site keys, licenses

database
Jira Entity Properties

Checklist data per ticket (32KB, chunked)

database
Jira Attachments

Evidence files

database
RuleMesh API

Compliance data, evidence signals, license

Security

  • shieldSite authentication via X-Site-Key header
  • shieldWebhook authentication via HMAC-SHA256 signing
  • shieldAll data encrypted at rest (AWS RDS, DynamoDB)
  • shieldData hosted in EU (Frankfurt)
  • shieldData retention: 30 days post-uninstall, then deleted
Get Started Free

Install RuleMesh for Jira and generate your GDPR compliance backlog in minutes.