Privacy First

How NoiseGate protects your Slack workspace

NoiseGate operates on the principle of least privilege. We ingest only the Slack data you authorise, encrypt it in transit and at rest, and delete it as soon as summaries are delivered or you uninstall the app.

What We Collect

  • Slack messages, threads, and channel metadata required to generate summaries.
  • Workspace identifiers, installation details, and bot/user tokens provided by Slack OAuth.
  • Configuration data such as keyword rules, DND preferences, and notification settings.
  • Operational telemetry (timestamps, status codes) used for reliability and support diagnostics.

How We Use It

  • Generate on-demand and automated summaries that your team explicitly requests.
  • Deliver keyword alerts and DND recaps to authorised recipients in your workspace.
  • Monitor product health, detect abuse, and improve summarisation quality metrics.
  • Never sell data or grant third parties access outside the processors you authorise (e.g., Clerk, Supabase).

Security safeguards

Our security posture evolves with Slack platform requirements and industry best practices.

  • AES-256-GCM encryption at rest for Slack tokens, refresh tokens, and sensitive configuration.
  • Mutual TLS for all Slack and NoiseGate traffic, plus signed event verification (Slack signatures).
  • Scoped secrets with least-privilege access and automatic revocation on uninstall.
  • Manual and automated deletion workflows covering workspace data, user data, and backups.

Access & Portability

Workspace owners can request an export of stored configuration and summary metadata at any time.

Rectification

Update keyword rules, retention preferences, or workspace contacts via the dashboard or support email.

Deletion

Uninstalling the app or emailing support triggers token revocation and cascading deletion within minutes.

Support

Contact support@noisegate.io with regulatory questions, DPA requests, or to appoint a data representative.