Slack · Slack Terms of Service

Data Processing Addendum (DPA) Incorporation

High severity
Share 𝕏 Share in Share

Why it matters

Organizations subject to GDPR or CCPA must ensure they have an executed DPA with Slack; without it, their use of Slack for personal data processing may not comply with applicable privacy law.

Consumer impact

If you use Slack through your employer, your organization — not you — controls your workspace data, including messages and files, and can access or delete them. Slack retains rights to use aggregated and de-identified data derived from your usage to improve its services. You can review Slack's Privacy Policy at https://slack.com/privacy-policy to understand what personal data Slack collects and how it is used.

Applicable agencies

  • FTC
    The FTC enforces data protection obligations for US companies and has authority over cross-border data transfer compliance representations.
    File a complaint →

Provision details

Document information
Document
Slack Terms of Service
Entity
Slack
Document last updated
March 24, 2026
Tracking information
First tracked
March 20, 2026
Last verified
March 20, 2026
Record ID
CA-P-001012
Document ID
CA-D-00191
Evidence Provenance
Source URL
https://slack.com/terms-of-service
Wayback Machine
View archived versions →
SHA-256
1338781ea2040d3dc8d914006f1f542a74ec2b2d587b765b08561a14ebe8bfd8
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: Slack | Document: Slack Terms of Service | Record: CA-P-001012
Captured: 2026-03-20 06:03:08 UTC | SHA-256: 1338781ea2040d3d…
URL: https://conductatlas.com/platform/slack/slack-terms-of-service/data-processing-addendum-dpa-incorporation/
Accessed: April 4, 2026
Classification
Severity
High
Categories
Privacy rights

Other provisions in this document