Darktrace for Slack
The Darktrace Security Module for Slack provides coverage over access, user modification, channel modification and platform administration within Slack. Activity is retrieved from the Slack Audit Logs API, returned information is therefore limited to the events that Slack makes available and the data recorded as part of each log event. Typically, the following events will be surfaced in the Threat Visualizer:ο Modifications to users including creation, deletion, guest creation and role changes. ο User logins, logouts and changes to authentication settings.
ο Changes to channels including creation, deletion and membership.
ο Administrative activities on workspaces and organization.
ο File actions such as downloads and sharing.
ο Changes to channels including creation, deletion and membership.
ο Administrative activities on workspaces and organization.
ο File actions such as downloads and sharing.
Permissions
Darktrace for Slack will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
Darktrace Limited
Company headquarters location
United Kingdom
Terms of service
Privacy & data governance
Data retention policy
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.
Details of retention periods for different aspects of your personal data can be requested via our Data Privacy Officer.
Data archiving and removal policy
With Darktrace, all data is stored locally, whether in an organization’s cloud or on site at their offices. Data can be retained for
a maximum of 4 weeks, and by being stored on a rolling buffer, the data is automatically deleted as space requires. However,
storage length can be decreased, and the data viewed can be anonymized if required. This maximizes the control each company
has over its own data. If this data needs to be stored for longer, an organization can choose to export it.
Data storage policy
Your personal data is securely stored by Darktrace on the Darktrace servers located in Cambridge, United Kingdom. Darktrace has set up systems and processes to prevent unauthorized access or disclosure of your personal data. Slack data will remain local to each client with a Darktrace appliance.
As a global company, we have international sites and users all over the world. When you give us personal data, that data may be used, processed or stored anywhere in the world, including countries outside the European Economic Area (“EEA”). It may also be processed by staff operating outside the EEA, who work for us or for one of our suppliers. Darktrace places substantial importance on protecting the confidentiality of personal information and seeks the cooperation of all its suppliers in furthering this goal. Darktrace will only transfer personal information to a supplier where the supplier has provided assurances that they will provide at least the same level of privacy protection as is required by this Policy. Where Darktrace has knowledge that a supplier is using or sharing personal information in a way that is contrary to this policy, Darktrace will take reasonable steps to prevent or stop such processing.
App/service has sub-processors
no
Certifications & compliance
GDPR commitment
Data deletion request procedure
Data deletion can be requested and sanctioned through our legal team. Data can be retained for
a maximum of 4 weeks, and by being stored on a rolling buffer, the data is automatically deleted as space requires. However,
storage length can be decreased, and the data viewed can be anonymized if required. This maximizes the control each company
has over its own data. If this data needs to be stored for longer, an organization can choose to export it. Client can choose to wipe their appliance, which is located on their network, to delete all captured data.
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Supports Single Sign On (SSO) with the following providers
Okta
Supports Security Assertion Markup Language (SAML)
yes
Has a dedicated security team
yes
Contact for security issues
security@darktrace.com
Has a vulnerability disclosure program
yes
Vulnerability disclosure program URL
Vulnerability disclosure program covers Slack app
yes
Has a bug bounty program
no
Requires third party authorization/connections
no
Uses token rotation
no