SailPoint Gov for Slack
Users are distributed worldwide, the number of applications used are constantly increasing and the lines between who can access these applications and who should access these apps are increasingly getting blurred. SailPoint Gov for Slack enables users to get the access they need to stay productive right from within the tool they use the most, all while maintaining strict governance and compliance controls.With SailPoint Gov for Slack, users can:
• Make role or application requests right within Slack using the slash command or shortcuts button
• Cancel an access request if you don't need it
• Approve or deny new access requests in 1 click and add comments if needed
• Get notified when an access request is approved or denied along with comments
• Get notified about certification campaign events (generation, start, sign-off, end) (Admin users only)
• Reset password--
Slash commands:
•
•
•
•
Global shortcuts:
• Create an access request
• Make role or application requests right within Slack using the slash command or shortcuts button
• Cancel an access request if you don't need it
• Approve or deny new access requests in 1 click and add comments if needed
• Get notified when an access request is approved or denied along with comments
• Get notified about certification campaign events (generation, start, sign-off, end) (Admin users only)
• Reset password--
Slash commands:
•
/sailpoint login Login to Identity Security Cloud to connect account•
/sailpoint create Create an access request•
/sailpoint reset Reset password•
/sailpoint help Help command Global shortcuts:
• Create an access request
Permissions
SailPoint Gov for Slack will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
SailPoint Technologies, Inc
Company headquarters location
United States
Terms of service
Privacy & data governance
Data retention policy
Data in a customer’s Identity Security Cloud production or test instance is retained as long as they remain a customer (i.e. for the duration of the subscription term). The customer can update or delete data at any time. SailPoint leverages Amazon Web Services (AWS) for hosting the Identity Security Cloud service. SailPoint provides fully automated fail-over and advanced backup and recovery measures to support the high availability service. All data is backed up automatically without requiring any interaction by the Identity Security Cloud customer. AWS performs daily incremental backups of the Identity Security Cloud production database using an S3 Storage service which stores the backup information in a location with five tiered redundancy of data. 30 days of backups are retained at all times.
Data archiving and removal policy
We comply with all regulatory guidelines when it comes to data removal requests. On termination or expiration of the Agreement, Customer may wish to instruct SailPoint to delete or return all Customer Personal Information (including copies) from SailPoint's systems in accordance with applicable law. SailPoint will, after a recovery period of up to 30 days following such expiry or termination, comply with this instruction as soon as reasonably practicable, where technically feasible. Customer shall be responsible for retrieving any remaining Customer Personal Information it wishes to retain before the end of the recovery period. SailPoint shall not be required to delete or return Customer Personal Information to the extent (i) SailPoint is required by applicable law or order of a governmental or regulatory body to retain some or all of the Customer Personal Information; and/or (ii), Customer Personal Information it has archived on back-up systems, which Customer Personal Information SailPoint shall securely isolate and protect from any further processing, except to the extent required by applicable law.
Data storage policy
We store data required for the integration encrypted at rest in the AWS region in which our customer using the integration resides. All data is backed up automatically without requiring any interaction by the Identity Security Cloud customer. AWS performs daily incremental backups of the Identity Security Cloud production database using an S3 Storage service which stores the backup information in a location with five tiered redundancy of data. 30 days of backups are retained at all times.
App/service has sub-processors
yes
Guidelines for sub-processors
App/service uses large language models (LLM)
no
Certifications & compliance
Data deletion request procedure
On termination or expiration of the Agreement, Customer may wish to instruct SailPoint to delete or return all Customer Personal Information (including copies) from SailPoint's systems in accordance with applicable law. SailPoint will, after a recovery period of up to 30 days following such expiry or termination, comply with this instruction as soon as reasonably practicable, where technically feasible. Customer shall be responsible for retrieving any remaining Customer Personal Information it wishes to retain before the end of the recovery period. SailPoint shall not be required to delete or return Customer Personal Information to the extent (i) SailPoint is required by applicable law or order of a governmental or regulatory body to retain some or all of the Customer Personal Information; and/or (ii), Customer Personal Information it has archived on back-up systems, which Customer Personal Information SailPoint shall securely isolate and protect from any further processing, except to the extent required by applicable law.
HIPAA compliant
yes
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Supports Single Sign On (SSO) with the following providers
SailPoint SSO (Identity Security Cloud)
Supports Security Assertion Markup Language (SAML)
yes
Has a dedicated security team
yes
Contact for security issues
security-research@sailpoint.com
Has a vulnerability disclosure program
yes
Vulnerability disclosure program URL
Vulnerability disclosure program covers Slack app
yes
Has a bug bounty program
no
Requires third party authorization/connections
no
Uses token rotation
no