Slack · Slack Privacy Policy

International Data Transfers via SCCs

Medium severity
Share 𝕏 Share in Share

Why it matters

Cross-border data transfers of EU/UK personal data to the US must be legally justified under GDPR, and the adequacy of SCCs remains subject to regulatory and judicial scrutiny, creating ongoing compliance risk.

Consumer impact

Slack collects a wide range of personal data including your messages, files, profile information, location data, and usage patterns, and shares this with service providers, advertising partners, and Salesforce affiliates. While Slack states it does not sell personal data in the traditional sense, it acknowledges that certain data sharing arrangements may qualify as a 'sale' or 'sharing' under California law, which could affect how your data is used for advertising. You can opt out of the sale or sharing of your personal data by visiting Slack's privacy settings or submitting a request at https://slack.com/trust/privacy/privacy-policy.

Applicable agencies

  • FTC
    The FTC enforces compliance with cross-border data transfer frameworks including the EU-US Data Privacy Framework for US companies.
    File a complaint →

Provision details

Document information
Document
Slack Privacy Policy
Entity
Slack
Document last updated
March 24, 2026
Tracking information
First tracked
March 20, 2026
Last verified
March 20, 2026
Record ID
CA-P-001016
Document ID
CA-D-00192
Evidence Provenance
Source URL
https://slack.com/privacy-policy
Wayback Machine
View archived versions →
SHA-256
1a801f907c7c06d87fe28bd8d272d95e49e8860687f538ae969d61b298d09dcf
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: Slack | Document: Slack Privacy Policy | Record: CA-P-001016
Captured: 2026-03-20 06:00:16 UTC | SHA-256: 1a801f907c7c06d8…
URL: https://conductatlas.com/platform/slack/slack-privacy-policy/international-data-transfers-via-sccs/
Accessed: April 4, 2026
Classification
Severity
Medium
Categories
Data sharing

Other provisions in this document