Pando
Pando enables you to take control of your career progression journey. With the Pando for Slack integration, you can get real-time notifications about feedback, achievements, assessments, and more.Please note that this app utilizes a Large Language Model (LLM) to provide responses. While we strive for accuracy, the nature of LLMs means that there is a potential for generating incorrect or inappropriate responses. Users should exercise their own discretion and verify information independently.About us
Pando is the first equitable and scalable career progression platform. We believe in democratizing career progression by leveling the playing field and giving all employees control over their career development.Pando brings transparency and accountability to career development, so every employee has a clear and achievable path with real-time visualization of level, career trajectory, and progress. We provide our customers with structure and scalability using built-in, well-defined, actionable career paths and competencies for all roles and functions. And we deliver real-time data that helps our customers build a culture of growth, equity, and high performance.
Pando is the first equitable and scalable career progression platform. We believe in democratizing career progression by leveling the playing field and giving all employees control over their career development.Pando brings transparency and accountability to career development, so every employee has a clear and achievable path with real-time visualization of level, career trajectory, and progress. We provide our customers with structure and scalability using built-in, well-defined, actionable career paths and competencies for all roles and functions. And we deliver real-time data that helps our customers build a culture of growth, equity, and high performance.
Permissions
Pando will be able to view:
Pando will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
Pando
Company headquarters location
United States
Terms of service
Privacy & data governance
Data retention policy
Pando HR shall retain data as long as the company has a need for its use, or to meet regulatory or contractual requirements. Once data is no longer needed, it shall be securely disposed of or archived. Data owners, in consultation with legal counsel, may determine retention periods for their data. Retention periods shall be documented in the Data Retention Matrix in Appendix B to this policy.
Data archiving and removal policy
Data classified as restricted or confidential shall be securely deleted when no longer needed. Pando HR shall assess the data and disposal practices of third-party vendors in accordance with the Third-Party Management Policy. Only third-parties who meet Pando HR requirements for secure data disposal shall be used for store and process restricted or confidential data.
Pando HR shall ensure that all restricted and confidential data is securely deleted from company devices prior to, or at the time of disposal.
Data storage policy
Confidential data is subject to the following protection and handling requirements:
- Access for non-preapproved-roles requires documented approval from the data owner
- Access is restricted to specific employees, roles and/or departments
- Confidential systems shall not allow unauthenticated or anonymous access
- Confidential Customer Data shall not be used or stored in non-production systems/environments
- Confidential data shall be encrypted in transit over public networks
- Mobile device hard drives containing confidential data, including laptops, shall be encrypted
- Mobile devices storing or accessing confidential data shall be protected by a log- on password or passcode and shall be configured to lock the screen after five (5) minutes of non-use
- Backups shall be encrypted
- Confidential data shall not be stored on personal phones or devices or removable media including USB drives, CD's, or DVD's
- Paper records shall be labeled "confidential" and securely stored and disposed Hard drives and mobile devices used to store confidential information must be
securely wiped prior to disposal or physically destroyed
- Transfer of confidential data to people or entities outside the company shall only be done in accordance with a legal contract or arrangement, and the explicit written permission of management or the data owner
Data center location(s)
United States
App/service has sub-processors
yes
Guidelines for sub-processors
App/service uses large language models (LLM)
yes
LLM model(s) used
OpenAI gpt-4o
LLM retention settings
30 days of retention, per OpenAI default policy (https://platform.openai.com/docs/models/how-we-use-your-data)
LLM data tenancy policy
single tenancy
LLM data residency policy
USA
Certifications & compliance
Data deletion request procedure
Any requests to exercise User rights for data deletion be directed to the Owner (barbra@pando.com). These requests can be exercised free of charge and will be addressed by the Owner as early as possible and always within one month.
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Date of latest pen test
2022-02-28
Executive summary is available to potential customers upon request
yes
Supports Single Sign On (SSO) with the following providers
Jumpcloud
Supports Security Assertion Markup Language (SAML)
no
Has a dedicated security team
no
Contact for security issues
support@pando.com
Has a vulnerability disclosure program
no
Has a bug bounty program
no
Requires third party authorization/connections
no
Uses token rotation
no