Add to Slack

Privacy Policy

Last updated: December 3, 2025

1. Introduction

CRED AI Agent for Slack ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Slack application.

2. Information We Collect

2.1 Information from Slack (Third-Party Data)

When you install and use CRED AI Agent for Slack, we collect the following third-party data from Slack:

  • Workspace Information: Your Slack workspace ID and team information
  • User Information: User IDs and email addresses (when provided by Slack through OAuth)
  • Message Content: Messages and content you send to the bot in channels or direct messages
  • File Attachments: Files and attachments you share with the bot (PDFs, CSVs, Excel files, images)
  • Channel Data: Channel and conversation information where the bot is used

How we manage this data: This data is collected through Slack's OAuth API and is stored securely on our servers to enable the app's functionality. We only collect data necessary for the app to function.

2.2 Information from CRED Platform (Third-Party Data)

The app connects to your CRED account via OAuth to provide intelligent insights. We access the following data from the CRED platform:

  • Company Data: Company and market data from your CRED instance, including company profiles, financial data, and market intelligence
  • User Account Data: User account information associated with your CRED account (name, email, account settings)
  • Platform Data: Data and insights generated through CRED's predictive intelligence platform, including lists, opportunities, and custom data you've created
  • Access via MCP: The app accesses CRED's database via Model Context Protocol (MCP) to enable querying and creating data through natural language

How we manage this data: This data is accessed through CRED's API and OAuth authentication. We do not store your CRED credentials; instead, we use secure OAuth tokens to access your CRED account data only when you interact with the bot.

3. How We Use Your Information

We use the collected information to:

  • Provide and maintain the Slack integration service
  • Process your messages and queries to generate AI-powered responses
  • Analyze and process files you upload (PDFs, CSVs, Excel files, images)
  • Connect to your CRED account to retrieve relevant business intelligence data
  • Improve our services and develop new features
  • Respond to your requests and provide customer support
  • Ensure security and prevent fraud

4. Data Processing and AI

AI Disclaimer

CRED AI Agent uses artificial intelligence to process and generate responses. While we strive for accuracy, AI-generated content may occasionally contain inaccuracies or errors. Please verify critical information through official sources.

Your messages and files are processed using AI models to provide intelligent responses. This processing includes:

  • Natural language understanding and generation
  • File content extraction and analysis
  • Integration with CRED's predictive intelligence models
  • Data enrichment and contextualization

5. Data Storage and Security

5.1 How We Store Third-Party Data

We store third-party data collected from Slack and accessed from CRED in the following manner:

  • Storage Location: Data is stored on secure servers with appropriate access controls
  • Encryption: All data is encrypted in transit (using TLS/SSL) and at rest (using industry-standard encryption)
  • Access Controls: Only authorized personnel with proper authentication can access stored data
  • Data Retention: Data is retained only as long as necessary to provide our services or as required by law. When you uninstall the app, we delete your data within 30 days

5.2 Security Measures

We implement appropriate technical and organizational measures to protect your information:

  • Data is encrypted in transit and at rest
  • Access controls and authentication mechanisms
  • Regular security audits and monitoring
  • Compliance with SOC 2 and GDPR requirements
  • Secure OAuth token management for third-party integrations

Your data is stored securely and retained only as long as necessary to provide our services or as required by law. When you uninstall the app from Slack, we will delete your stored data within 30 days, except where we are required to retain it by law.

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only:

  • With your CRED account to provide integrated services
  • With service providers who assist in operating our services (under strict confidentiality agreements)
  • When required by law or to protect our rights
  • In connection with a business transfer (merger, acquisition, etc.)

7. Your Rights

You have the right to:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data
  • Object to processing of your data
  • Data portability
  • Uninstall the app at any time (which will stop data collection)

To exercise these rights, please contact us at the information provided below.

8. Third-Party Services and Data Management

CRED AI Agent for Slack integrates with the following third-party services and manages their data as follows:

  • Slack: For messaging and workspace integration. We collect and store data from Slack (messages, files, workspace info) as described in Section 2.1. This data is used solely to provide the app's functionality. See Slack's Privacy Policy for their data practices.
  • CRED Platform: For business intelligence and data access. We access your CRED account data via OAuth and MCP as described in Section 2.2. We do not store your CRED credentials; we use secure OAuth tokens. See CRED's Privacy Policy for their data practices.
  • AI Service Providers: For processing messages and generating responses. Your messages and files may be processed by third-party AI service providers to generate responses. These providers are bound by strict confidentiality agreements and do not retain your data beyond what is necessary for processing.

Data Sharing with Third Parties: We do not sell your data to third parties. We only share data with the third-party services listed above as necessary to provide the app's functionality. All third-party service providers are required to maintain appropriate security measures and are bound by confidentiality agreements.

9. Children's Privacy

Our service is not intended for users under the age of 18. We do not knowingly collect personal information from children.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

For more information about CRED's overall privacy practices, please visit ourmain Privacy Policy.