Travel Agent
Meet your new Travel Agent — an embedded AI assistant that streamlines every step of business travel, right inside Slack. From booking to payment to real-time updates, it eliminates the back-and-forth that frustrates travelers, office managers, and finance teams alike.
Here’s what the Travel Agent can do for you:
:airplane: Book smarter — find and book policy-compliant flights and hotels, right from Slack.
:brain: Stay informed — access on-demand insights about your travel and Payhawk policies anytime.
:gear: Handle changes automatically — travel updates, cancellations, and modifications are managed in real time with minimal effort.
Getting started is easy — just sign in to your Payhawk account.This application integrates large language models (LLMs) to deliver AI-powered functionality, including conversations and automated suggestions. Due to the nature of machine learning, responses may sometimes be inaccurate or incomplete. We do not use your data to train any public or third-party models.
Here’s what the Travel Agent can do for you:
:airplane: Book smarter — find and book policy-compliant flights and hotels, right from Slack.
:brain: Stay informed — access on-demand insights about your travel and Payhawk policies anytime.
:gear: Handle changes automatically — travel updates, cancellations, and modifications are managed in real time with minimal effort.
Getting started is easy — just sign in to your Payhawk account.This application integrates large language models (LLMs) to deliver AI-powered functionality, including conversations and automated suggestions. Due to the nature of machine learning, responses may sometimes be inaccurate or incomplete. We do not use your data to train any public or third-party models.
Travel Agent will be able to view:
Travel Agent will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
Payhawk
Company headquarters location
United Kingdom
Terms of service
Privacy & data governance
Data retention policy
We retain Personal Data for as long as needed to provide our Payhawk Services and to comply with our legal obligations, resolve disputes and enforce our agreements (unless we are instructed otherwise). Retention periods will be determined to take into account the type of information that is collected and the purpose for which it is collected, bearing in mind the requirements applicable to the situation and the need to destroy outdated, unused information at the earliest reasonable time. Under applicable regulations, we may keep records containing Users' Personal Data, compliance related data, communications and anything else as required by applicable laws and regulations. We may rectify, replenish or remove incomplete or inaccurate information, at any time and at our own discretion.
Data archiving and removal policy
Personal data is retained only as long as necessary for service provision and legal compliance, and upon service termination or client request, Payhawk will delete or return all personal data-unless retention is required by law-with deletion completed within five years if chosen by the client.
Data storage policy
Payhawk stores customer data securely using leading cloud providers such as Amazon AWS and Google Cloud Platform, both of which are certified to international standards like ISO 27001, PCI DSS, and SOC 1/2. All data is encrypted at rest with industry-standard AES-256 encryption and in transit using TLS 1.2 or higher, ensuring confidentiality and integrity throughout its lifecycle. Payhawk is compliant with GDPR and other relevant regulations, employs robust access controls and regular security assessments, and is officially certified by the Spanish Tax Agency (AEAT) for digital document storage. The company’s infrastructure is designed for high availability, resilience, and disaster recovery, with continuous monitoring and regular penetration testing to maintain the highest standards of data protection.
App/service has sub-processors
no
App/service uses large language models (LLM)
yes
LLM model(s) used
Gemini
LLM retention settings
LLM data residency policy ensures that any data processed by Gemini is stored in the same geographic region as the rest of our customer data, fully aligning with our existing data residency and compliance requirements.
LLM data tenancy policy
Data isn’t used for training. Data isn’t sold or used for ads, and privacy controls are provided. Users can manage data retention and sharing settings.
LLM data residency policy
Our use of Gemini does not store customer data; Gemini Apps Activity and data retention is disabled, ensuring that customer conversations and inputs are not saved or used for model improvement
Certifications & compliance
Data deletion request procedure
Payhawk handles data deletion requests in accordance with data protection laws and its agreements with clients. When a data subject (user) or client requests deletion of personal data, Payhawk will notify the client and assist in facilitating the request, provided it is legally permissible. Clients must submit a written request for data deletion, after which Payhawk will either delete or return all personal data, except where retention is required for legal or regulatory reasons; if deletion is chosen, all personal data will be deleted within five years from termination or expiration of services. Payhawk also provides certification of deletion upon client request and ensures that any deletion or restriction actions are carried out within agreed timelines and in compliance with applicable laws.
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Supports Single Sign On (SSO) with the following providers
Payhawk supports SSO via SAML 2.0 with major providers like Okta, Azure AD, Google Workspace, JumpCloud, and OneLogin, allowing secure, seamless user authentication integrated with your organization’s identity management system
Supports Security Assertion Markup Language (SAML)
yes
Has a dedicated security team
yes
Contact for security issues
security@payhawk.com
Has a vulnerability disclosure program
yes
Vulnerability disclosure program URL
Vulnerability disclosure program covers Slack app
no
Has a bug bounty program
no
Requires third party authorization/connections
no
Uses token rotation
no