OnSurvey
OnSurvey lets HR teams design and distribute surveys that are one-time, scheduled, or event-driven. Employees receive notifications in Slack and can complete surveys natively within Slack or in a browser. All responses are securely stored within customer's Workday tenant and the customer has complete ownership of the data. OnSurvey does not have access to this data. This app allows users to complete surveys and provide timely feedback in a convenient manner.
Permissions
OnSurvey will be able to view:
OnSurvey will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
Onward Software Solutions
Company headquarters location
United States
Terms of service
Privacy & data governance
Data retention policy
Because we do not store survey data or user responses on our infrastructure, our retention period for such data is zero. Data is held in volatile memory only for the milliseconds required to process the transmission to Workday. Once the API call to Workday is successfully completed, the data is purged from our temporary processing layer. System logs are anonymized and retained for [e.g., 30 days] solely for troubleshooting and security auditing purposes.
Data archiving and removal policy
We do not maintain databases of user-submitted content; therefore, we do not perform data archiving. All long-term storage, archival, and lifecycle management of survey data are governed by the customer’s existing Workday data retention configurations. When a survey is completed, the "source of truth" is exclusively the Workday tenant.
Data storage policy
Our app utilizes a "zero-persistence" architecture. Survey responses submitted via Slack are transmitted using secure, encrypted protocols directly to the customer’s designated Workday tenant. No survey response data, personally identifiable information (PII), or metadata is stored on our servers or within the Slack infrastructure. We act solely as a secure conduit to ensure data residency remains entirely within your Workday environment.
App/service has sub-processors
no
App/service uses large language models (LLM)
no
Certifications & compliance
Data deletion request procedure
As we do not store survey responses or employee data on our servers, we cannot directly delete data once it has been transmitted to Workday. Users wishing to exercise their "Right to be Forgotten" or request data deletion should contact their organization’s Workday Administrator. If we receive a request for data deletion, we will coordinate with the customer to confirm that the app’s connection to their Slack workspace is severed, ensuring no further data transmission occurs.
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Supports Single Sign On (SSO) with the following providers
Okta, Entra ID
Supports Security Assertion Markup Language (SAML)
yes
Has a dedicated security team
yes
Contact for security issues
support@onwardb.com
Has a vulnerability disclosure program
no
Vulnerability disclosure program covers Slack app
yes
Has a bug bounty program
no
Requires third party authorization/connections
no
Uses token rotation
no