Pivot
Pivot is the ultimate modern S2P (source-to-pay) platform, powering leading tech companies worldwide.Natively integrated with all your stack tools, fueled by AI, and built around a top-notch UX, Pivot solves the adoption problem within your company, makes all support teams collaborate seamlessly, and provides procurement teams with powerful tools to extract data and make meaningful decisions.With our integration for Slack, you can create dedicated Slack collaboration channels to manage your purchase requests without even logging into Pivot! You can start a request, approve, comment, upload files, and receive approval reminders directly in Slack, making the procurement process a breeze for both requesters and validators.
Pivot will be able to view:
Pivot will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Privacy & data governance
Data retention policy
Pivot will keep your personal data for as long as necessary to achieve the purposes for which it was gathered. This may include retaining your information to deliver services, meet business needs and legal obligations, resolve disputes, and enforce our rights and agreements.
Data archiving and removal policy
After your account is terminated or deactivated, Pivot will remove your customer data, but may keep your contact details, user profile, and other personal information in our records. Once the purpose for collecting your data no longer applies and there is no business or legal reason to retain it, Pivot will securely delete your data. If you wish to request the deletion of your personal information before our retention period ends, please contact us at support@pivotapp.ai.
Data storage policy
• Data storage: Once you submit information through Pivot app, your data is securely managed. We apply various security measures to protect the confidentiality and integrity of your personal data such as: automatic data backups, encryption at rest and in transit, token-based authentication, RBAC access control, multi-tenant storage. • Certifications: At Pivot, we are ISO 27001, SOC 2 and GDPR compliant, as well as Penetration Testing certified, ensuring that we adhere to security standards and best practices.
Data center location(s)
Ireland
Data hosting details
Cloud hosted
Data hosting company
Heroku - AWS
App/service has sub-processors
yes
Guidelines for sub-processors
App/service uses large language models (LLM)
no
Certifications & compliance
SOC attestation
ISO/IEC-27001 certification
GDPR commitment
Data deletion request procedure
At Pivot, our procedure to handle data deletion requests ensures compliance with data protection laws as GDPR. You can submit your data deletion request to support@pivotapp.ai or via an Intercom form available on our website (https://pivotapp.ai) and in Pivot app (https://app.pivotapp.ai). We will apply some verifications and handle the data deletion within one month. Data deletion requests are free of charge.
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Date of latest pen test
2024-08-01
Executive summary is available to potential customers upon request
no
Supports Single Sign On (SSO) with the following providers
Google SSO, OKTA (SAML2.0), Microsoft Azure AD (OpenID Connect), Cloudflare Access (SAML2.0)
Supports Security Assertion Markup Language (SAML)
yes
Has a dedicated security team
yes
Contact for security issues
support@pivotapp.ai
Has a vulnerability disclosure program
no
Has a bug bounty program
no
Requires third party authorization/connections
no
Third party services used by this app
Pivot application connects to several third-party APIs such as: Slack, ERPs, HRIS, Payment processor, Search, OCR, Emailing, Currency converter, Workflow Engine..
Uses token rotation
no