Security at Slack
We take security seriously here at Slack, and we are proud to exceed the industry standard when it comes to protecting your organization.
Compliance certifications and regulations

NIST 800-171
Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations

SOC 2
(Type Ⅱ)
Trust Services Principles

ISO/IEC 27017
Security Controls for the Provision and Use of Cloud Services

HIPAA
Health Insurance Portability and Accountability Act

EU/US Privacy Shield
Swiss/US Privacy Shield
Data Privacy Practices

CSA
Cloud Security Alliance
Slack and the EU General Data Protection Regulation (GDPR)
Slack is committed to helping our users understand the rights and obligations under the General Data Protection Regulation (GDPR), which took effect on May 25, 2018.
We have introduced tools and processes to ensure our compliance with requirements imposed by the GDPR and to help our customers comply as well.
To learn more about our GDPR compliance, please read our GDPR Policy.
Security features
Data encryption in transit and at rest
SAML-based SSO
SCIM provisioning
Granular app management
Custom message retention
Support for Data Loss Prevention (DLP), Enterprise Mobility Management (EMM), and e-Discovery
(Slack Enterprise Grid only)
Our partners









Security whitepaper
Learn about how Slack ensures the security of your data in our care, and how you can best use Slack to improve security at your company.

SOC 3 Report
Review the independent auditor's public report of Slack's internal controls for security, availability and confidentiality.

Meet Slack’s CSO
Find out what the team is working on in this Q&A with our CSO, Geoff Belknap.
Security questions or issues?
Read more about Security Practices, Privacy Policy, Terms of Service, and GDPR Policy.
Contact us