Meet global standards for privacy and security

Compliance

Slack adheres to GDPR, CCPA and other privacy and security regulations. We also have policies and controls to help you to manage security threats, keep your data safe and meet your compliance obligations.

Do you need help finding the information that you need to complete your security or privacy questionnaire? We’ve organised our compliance resources so that you can demonstrate Slack’s ability to meet your organisation's requirements.

Read our white paper on compliance

Meet specific industry regulations and international security and data privacy standards

HIPAA logo

Health Insurance Portability and Accountability Act (HIPAA)

Slack can be configured for HIPAA compliance, including electronically protected health information (e-PHI).

FINRA logo

Financial Industry Regulatory Authority (FINRA)

Slack is FINRA 17a-4 configurable so your team can collaborate and still meet your compliance requirements.

FedRAMP logo

Federal Risk and Authorization Management Program (FedRAMP)

Slack is FedRAMP Moderate authorised so that organisations in the public sector can use our platform in a compliant manner.

Federal Education Rights and Privacy Act (FERPA)

Slack supports its educational customers and their unique compliance responsibilities.

TISAX logo

Trusted Information Security Assessment Exchange

Scope ID SXHCTZ
Assessment ID AYGRC8
TISAX and TISAX results are not intended for the general public.

Frequently asked questions

We are committed to helping our customers and users to understand and, where applicable, comply with the General Data Protection Regulation (GDPR). For more information, please see our commitment page.

The GDPR does not require EU data to reside in the European Union. Slack’s Data processing agreement and the EU Model Clauses will continue to ensure compliance for EU personal data transfers outside of the EU.

We’re committed to helping Slack customers and users to understand and exercise their rights under the California Consumer Privacy Act (CCPA). On this page, we clarify Slack’s role and obligations under the CCPA and provide additional information to help our customers to meet their compliance needs.

Slack offers data processing addenda that supplement the customer terms of service or any MSA.

This page provides important information about the identity, location and role of Slack Subprocessors.

Slack'sOur Modern slavery statement can be found here

Yes, you can make this request using our Privacy and security form

We do! Please see our Security white paper or visit our Security page for more information.