Viktor
Viktor is an AI employee that helps companies run smoother day to day. It can jump into your Slack conversations when you invite it, keep track of what's being discussed, and turn that into useful outcomes—like summaries, answers to questions, checklists, drafts, and recommendations.It can also work with the tools your business already uses (like sales, marketing, analytics, and productivity apps) so it can pull information together and help you stay organized. Viktor can handle routine, repeatable work on its own—like scheduled updates and proactive reminders—while leaving bigger, higher-impact actions for your team to approve.AI Disclaimer: Viktor uses AI to generate responses and perform tasks. While we strive for accuracy, AI-generated content may occasionally contain errors or inaccuracies. We recommend reviewing important outputs before acting on them.Pricing: Free to start ($100 in credits per workspace). Paid plans from $50/workspace/month. Enterprise available. https://www.getviktor.com/#pricing
Viktor will be able to view:
Viktor will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
ZETA AI, Inc.
Company headquarters location
United States
Terms of service
Privacy & data governance
Data retention policy
We retain Customer Data for Viktor (including connection credentials, basic workspace/user identifiers, workspace settings, files stored in Viktor, conversations and outputs generated in Viktor, scheduled tasks, approval decisions, and service logs) only as long as needed to provide the Service, meet contractual obligations, and comply with law. When an account is closed or we receive a validated deletion request, we delete Customer Data from active production systems typically within ~30 days; remaining copies are removed as encrypted backups age out on their normal rotation (currently ~35 days). Viktor does not store Slack message content or Slack channel history; any Slack data accessed via the API is processed transiently to perform requested actions. We do not use Customer Data for advertising, and we do not train our own or third-party foundation models on Customer Data.
Data archiving and removal policy
We maintain documented retention and disposal procedures for production systems, logs, and backups. Customer-initiated deletions (e.g., account closure or DSR requests) trigger account removal, deletion/anonymization of associated Customer Data, and de-provisioning of access credentials (including OAuth tokens). Backups are encrypted, used only for business continuity, and are automatically overwritten or purged at the end of their retention period. Where legally permitted, customers may request an export prior to deletion.
Data storage policy
Customer Data is stored in encrypted databases (AWS RDS PostgreSQL) and encrypted object storage (Cloudflare R2) in US regions. Data is encrypted in transit (TLS 1.2+/1.3) and at rest (AES-256 with cloud-provider key management). Access is restricted via private networking, RBAC, MFA, and logging.
Data center location(s)
United States
Data hosting details
Viktor is a cloud-hosted, multi-tenant SaaS running on AWS with additional managed services from Cloudflare, Modal, and Vercel. Systems are deployed in private subnets with no direct public access; only authenticated application services can access them.
Data hosting company
Amazon Web Services (AWS), Cloudflare, Modal, Vercel, Google Cloud Platform
App/service has sub-processors
yes
Guidelines for sub-processors
App/service uses large language models (LLM)
yes
LLM model(s) used
Anthropic (Claude Opus 4.6), Google (Gemini Flash 3.0)
LLM retention settings
Within Viktor, LLM prompts and outputs are stored only as long as needed to provide product functionality (e.g., to show previous drafts or conversation context) and are governed by our general data-retention policy described below.
LLM data tenancy policy
LLM processing is performed on enterprise, multi-tenant model endpoints operated by our AI providers; customer prompts and outputs are logically segregated by authentication scopes and customer identifiers.
LLM data residency policy
Viktor stores and routinely processes Customer Personal Data only in the United States, and our authorized sub-processors (including AI providers) are contracted to process data in US or equivalent locations.
Certifications & compliance
GDPR commitment
Data deletion request procedure
When we receive a data-deletion request (e.g., via support@getviktor.com or through the customer’s admin contact), we first authenticate the requester and confirm their authority and the scope of the request. Once validated, we log the request in our tracking system and initiate our formal data-retention and disposal procedure. We then delete or anonymize the relevant user/account data in our production databases and object storage, and revoke related OAuth tokens and access credentials. Deletions from active systems are typically completed within ~30 days; encrypted backups are retained only for a limited period for business-continuity purposes and are then overwritten or purged automatically as part of our backup rotation schedule. Customers receive confirmation once the request has been processed, and we handle all requests in line with GDPR/CCPA and other applicable data-protection laws.
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Supports Security Assertion Markup Language (SAML)
no
Has a dedicated security team
yes
Contact for security issues
security@getviktor.com
Has a vulnerability disclosure program
no
Has a bug bounty program
no
Requires third party authorization/connections
yes
Third party services used by this app
Modal, AWS, Cloudflare, Slack, Stripe, Google (Gmail/Drive/Calendar/Sheets/Docs), Microsoft (Outlook/OneDrive), HubSpot, Meta Ads, Google Ads, QuickBooks, Intercom, Notion, Customer.io, Moz, Baremetrics, BrightData, PostHog, LangSmith, Axiom, Browserbase
Uses token rotation
no