Google Drive (original) (raw)
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Company headquarters location
United States
Privacy & data governance
Data retention policy
Customers can choose their retention settings directly through their workspace. The default retention setting for Customer Data is to keep everything for as long as the workspace exists.
Data archiving and removal policy
Upon customer deletion, Slack deletes customer data from our production environments within 24 hours and backups are deleted within 14 days.
Data storage policy
Customer Data is stored redundantly at multiple locations in our hosting provider’s data centers to ensure availability. We have well-tested backup and restoration procedures, which allow recovery from a major disaster. Customer Data and our source code are automatically backed up nightly. The Operations team is alerted in case of a failure with this system. Backups are fully tested at least every 90 days to confirm that our processes and tools work as expected.
Data center location(s)
United States, France, Japan, Australia, Canada, United Kingdom
Data hosting details
Cloud Storage
App/service has sub-processors
yes
Guidelines for sub-processors
App/service uses large language models (LLM)
no
Certifications & compliance
ISO/IEC-27001 certification
ISO/IEC-27017 attestation
ISO/IEC-27018 attestation
Data deletion request procedure
HIPAA compliant
yes
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Supports Single Sign On (SSO) with the following providers
Okta, Google
Supports Security Assertion Markup Language (SAML)
yes
Has a dedicated security team
yes
Contact for security issues
Has a vulnerability disclosure program
yes
Vulnerability disclosure program URL
Vulnerability disclosure program covers Slack app
yes
Has a bug bounty program
yes
Requires third party authorization/connections
yes