With the 2018 introduction of the General Data Protection Regulation (GDPR) across Europe it is our obligation to make clear, in plain English, how we manage the data that our customers and users provide to us.
This document aims to give a clear, simple, breakdown of our role, the data we and our clients collect, and your rights. If any of this doesn’t make sense, or you have concerns, please contact us via support@revelapp.io.
For the purposes of this document, we need to make a few definitions to ensure clarity.
Platform refers explicitly to the Revel software that we provide access to.
Users refers to people who have either signed up to use Revel via revelapp.io or through the Slack app store.
Revel is a Software as a Service (SaaS) provider that supplies the Revel bot for Slack. Our clients are normally businesses or organisations who wish to use the Revel to use Slack to manage projects.
In order to provide our service we collect and hold information that broadly falls into three categories as described in this section. This information may come from the client or directly from the users themselves.
We hold information about our users in order that we can supply a service, and where relevant manage any contractual relationship. This information includes:
We sometimes collect and store information users in order to provide the service. This information includes:
Broadly speaking, we follow best practices and store your data on an environment hosted by Heroku. Heroku have extensive documentation on their security and legal compliance available on their website at https://www.heroku.com/compliance.
In order to both operate the platform and our business as a whole we need to involve some third party suppliers and platforms. We have detailed each, and the reason we use them below. We may use more third parties than this, however these are the ones that would potentially see personal information.
4.2.1 In order to provide the platform
4.2.2 In order to operate our business
We will need to keep hold of your data while you as a User are active (not deleted). The primary reason for this is Revel is a Revel projects hold information about team members and information about a project. For example your to be listed in the 'Team members' lists, Revel needs to hold your username and Slack user ID.
There are two conditions where your data will be deleted: You or the Revel account owner elect to delete your user details on the Revel platform, by contacting us via support@revelapp.io. The Tenant administrator or Client requests to close down their Revel account and remove all data, by contacting us via support@revelapp.io
After processing your request to delete data, it will almost immediately be made inactive, meaning your data will not be visible to any other User within the Revel web app or Slack bot (unless added again by you or another user). Then, within 30 days Revel Platform will automatically delete your data entirely from our platform, including backups.
GDPR provides for several rights for individuals, if you wish to exercise any of these right we request that you contact us via support@revelapp.io where will arrange for the required work to be undertaken.
In order to service rights requests in the timeframe required by the law, we may not be able to provide data in a specific format defined by the user making the request. We will, however, aim to provide the data in a machine readable format (such as CSVs) to enable portability.
If your request is excessively complex to fulfill we may need to charge a fee to cover the extra time required, as permitted by the law.