Maze
Create a project, choose a Slack channel and receive notifications in real-time as users complete your mazes. Running multiple projects? No problem! You can add as many projects to a channel as you would like, or you can integrate with multiple channels.
Maze will be able to view:
Maze will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
Maze Design Limited
Company headquarters location
United Kingdom
Terms of service
Privacy & data governance
Data retention policy
Maze will retain Customer Data in accordance with the EU General Data Protection Regulation 2016/679 of the European Parliament and of the Council (“GDPR”).
Data archiving and removal policy
Maze will remove Customer Data in accordance with the EU General Data Protection Regulation 2016/679 of the European Parliament and of the Council (“GDPR”).
Data storage policy
Maze will store Customer Data in accordance with the EU General Data Protection Regulation 2016/679 of the European Parliament and of the Council (“GDPR”).
Data center location(s)
United States
App/service has sub-processors
yes
Guidelines for sub-processors
App/service uses large language models (LLM)
yes
LLM model(s) used
OpenAi,Anthropic
LLM retention settings
No data used for training
LLM data tenancy policy
No data used for training
LLM data residency policy
No data used for training
Certifications & compliance
SOC attestation
Data deletion request procedure
When a customer requests Maze to delete personal data, we first verify the identity of the customer requesting the data deletion. We then ask for the reason behind the data deletion, whether it falls under Article 17(1) of GDPR or not, and any additional information or documentation to support the request. We then ask the customer to describe the data that they wish to have deleted, to help us identify the data. The next step is to check whether we are required to comply with the request, or if we can take the defence under Article 17(3) and Recital 65 of the GDPR. If we have valid ground to refuse to comply with the request, we communicate to the concerned customer without undue delay the valid, specific reasons of the refusal. If there is no valid ground to refuse the request, we inform the internal team to mark all the customer’s personal data and assess what the implication of the data deletion would be. We immediately communicate with all third parties, processors and subprocessors to delete all personal data shared by us of the customer. We make sure we have all the data requested by the customer. If we don’t have the requested data, we inform the customer that the requested data was not collected. An internal log of the actions taken is maintained for each data deletion request. Lastly, we start the process of deleting the requested data and we inform the subject as we move forward.
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Date of latest pen test
2025-08-01
Executive summary is available to potential customers upon request
yes
Supports Single Sign On (SSO) with the following providers
Okta, OneLogin
Supports Security Assertion Markup Language (SAML)
no
Has a dedicated security team
yes
Contact for security issues
thomas@maze.design
Has a vulnerability disclosure program
yes
Vulnerability disclosure program URL
Vulnerability disclosure program covers Slack app
yes
Has a bug bounty program
no
Requires third party authorization/connections
no
Uses token rotation
no