Slack Bot Challenge.me Guide to GDPR
At bot-challenge.me, we take data privacy and security seriously. We are fully GDPR-compliant and committed to protecting the data of our users within the European Union (EU) and beyond. This page outlines how we comply with the General Data Protection Regulation (GDPR) and how you can manage your data.
What is GDPR?
The General Data Protection Regulation (GDPR) is an EU regulation designed to enhance data privacy and security for individuals. It grants users greater control over their personal data and requires businesses to process data transparently and securely.
What Personal Data Do We Collect?
We practice minimal data collection and only store what is necessary for bot-challenge.me to function within Slack.
We collect:
✔️ Slack Workspace ID – To connect and operate the bot within your Slack environment.
✔️ Slack User ID – To identify participants in challenges without storing personal data.
We DO NOT collect:
❌ Names
❌ Email addresses
❌ Any personally identifiable information
Why Do We Collect This Data?
We collect this data solely to provide our service, allowing teams to engage in challenges and track participation within Slack. We do not share, sell, or use this data for marketing purposes.
Where is Data Stored?
We store all data on Google Cloud Platform (GCP) servers within the EU to ensure compliance with GDPR regulations:
📍 Application Server: Google Cloud (Warsaw, Poland)
📍 Database: MongoDB Atlas (Belgium, hosted on GCP)
All data is encrypted in transit and at rest for maximum security.
How We Process Data
We only process user data when necessary to:
🔹 Provide our service (e.g., tracking challenge participation).
🔹 Improve performance and user experience.
🔹 Comply with legal obligations.
User Rights Under GDPR
As an EU-based user, you have the right to:
✅ Access your data – Request a copy of the data we store.
✅ Correct inaccuracies – Update or correct any incorrect data.
✅ Request deletion – Ask us to remove your data permanently.
✅ Withdraw consent – Stop using bot-challenge.me and revoke permissions at any time.
How to Request Data Access or Deletion
If you want to access, modify, or delete your data, please contact us at security@bot-challenge.me.. We process all GDPR requests within 30 days as required by law.
Data Security Measures
🔒 We use Slack OAuth 2.0 authentication – no passwords are stored.
🔒 We encrypt all data at rest and in transit.
🔒 We store all data on secure EU-based servers.
Removing bot-challenge.me from Slack
If you wish to stop using bot-challenge.me, you can remove the bot from your Slack workspace at any time. This will automatically prevent any further data collection.
For more information or GDPR-related inquiries, feel free to contact us.