Privacy Policy

We take your privacy seriously. This policy explains how we collect, use, and protect your data.

Contents

Overview

Welcome to Zap ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Slack application "Zap".

By using Zap, you agree to the collection and use of information in accordance with this policy. We will not use or share your information with anyone except as described in this Privacy Policy.

Last updated: April 20, 2025

Data Collection

Information We Collect

We collect the following types of information when you use Zap:

  • Slack workspace information (workspace name, ID, team domain)
  • User information (user ID, display name,)
  • Any messages you send or forward to channels that Zap is added to (including threads and attachments)
  • Files (PDFs, DOCX, TXT) you upload in channels that Zap is added to
  • Usage data (features used, commands executed, timestamps)

How We Collect Information

We collect information in the following ways:

  • When you install Zap, you go through Slack’s OAuth flow and explicitly grant the scopes (permissions) we request.
  • After installation, Zap only reads or writes data in the channels (and direct messages) where you’ve explicitly added it. We do not access any other channels or workspace data.
  • Zap does not automatically access conversation data; it only retrieves data when a command such as /zap-ask is invoked.

Important Note:

We only collect and temporarily store data from the specific Slack channels where you’ve explicitly added Zap. All data is held securely for a maximum of 20 days—after that period it’s automatically purged. At any time, individual users and workspace administrators have full control to delete their data immediately.

Data Usage

We use the information we collect to:

  • Provide, maintain, and improve Zap's functionality
  • Process and respond to your queries and requests in real-time
  • Analyze conversation history to provide relevant answers
  • Generate summaries of conversations when requested
  • Analyze documents to extract information when requested

Important Note:

We do NOT use your conversations, messages, or document content to train any AI models. All processing is performed solely to deliver the features you request, and no data is incorporated into any model-training pipelines.

Data Sharing

We may share your information in the following circumstances:

  • Send contextual data to our LLM provider for real-time answer generation (contextual inference only; we do not train on your data) but only when user invoke a command (e.g. “/zap-ask”)

We never sell or disclose your data to any other third parties for any purpose.

Security

We implement appropriate security measures to protect your information:

  • We enforce strict, role-based access controls. Only authorized personnel and systems can access your data
  • User and workspace administrators have full control to delete data at any time via commands.
  • Secure infrastructure with industry-standard protections

User Rights

User have the following rights regarding their data:

  • Delete your personal information
  • Object to or restrict processing of your data

Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy.

By default, we retain:

  • Workspace information: For as long as Zap is installed
  • Message content: For 20 days after processing
  • Document content: For 20 days after processing