Gong
Gong’s Revenue Intelligence Platform captures your customer interactions across phone, web conferencing, and email, and uses AI to deliver insights that help your team win more deals.Using the Gong for Slack app, you'll get these insights in Slack in real-time! Get alerts when important key terms are mentioned on calls—think competitors, the latest limited-time promotion, and particular features—keeping your fingers on the pulse of your buyer, and ensuring your team is on-message.
Permissions
Gong will be able to view:
Gong will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
Gong.io
Company headquarters location
United States
Terms of service
Privacy & data governance
Data retention policy
Gong employs data protection and privacy by design, combining enterprise-grade security features with comprehensive audits of our policies, applications, systems, and networks. Our certifications include SOC 2 Type II, ISO 27001, and EU/Swiss-US Privacy Shield, to name a few. Gong Customers may configure a data retention duration (3 years by default), and Customer data is purged from Gong systems subsequent to contract termination.
Data archiving and removal policy
Gong Customers may configure a data retention duration (3 years by default), and Customer data is purged from Gong systems subsequent to contract termination.
Data storage policy
All customer data (including call recordings and transcripts) is encrypted at rest and in transit. System passwords are encrypted using AWS KMS with restricted access to specific production systems. Stored data is encrypted on a disk using a 256-bit AES cipher. We use industry-standard PostgreSQL, Elastic Search and Mongo DB data storage systems hosted at AWS and/or by the respective vendors.
Data access and authorizations are provided on a need-to-know basis, and based on the principle of least privilege. Access to the AWS production system is restricted to authorized personnel, and is carried out using VPN with Active Directory authentication.
Data center location(s)
United States
Data hosting details
Cloud hosted
Data hosting company
AWS
App/service has sub-processors
no
Certifications & compliance
SOC attestation
ISO/IEC-27001 certification
Privacy Shield notice
GDPR commitment
Data deletion request procedure
Gong provides its customers with a dedicated API for handling deletion requests by their consumers/data subjects, and also enables its customers to export records from their account.
Other requests to exercise data subject/consumer rights are handled by our CS and Privacy teams.
HIPAA compliant
yes
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Date of latest pen test
2020-02-13
Executive summary is available to potential customers upon request
yes
Supports Single Sign On (SSO) with the following providers
Okta, Ping Identity, Rippling, etc.
Supports Security Assertion Markup Language (SAML)
yes
Has a dedicated security team
yes
Contact for security issues
security@gong.io
Has a vulnerability disclosure program
yes
Vulnerability disclosure program URL
Vulnerability disclosure program covers Slack app
yes
Has a bug bounty program
no
Bug bounty program URL
Requires third party authorization/connections
no
Uses token rotation
no