DoControl for Slack Enterprise
About DoControlDoControl is a SaaS Security solution offering comprehensive visibility, threat detection, and remediation for SaaS data overexposure, insider threats, and over-permissioned third-party OAuth applications, across major SaaS ecosystems. Unlike traditional API-CASB and DLP solutions, DoControl integrates business and security context for swift response to threats and effective insider risk management. DoControl for Slack EnterpriseDoControl extends its DLP integration for Slack to the Enterprise Grid, providing a robust solution tailored for large and intricate organizations. DoControl for Slack Enterprise discovers, classifies, and protects business-critical information in real-time and historically, accessed and shared by both internal employees and third-party collaborators. The solution covers all of the organization’s workspaces - including all direct messages, group messages, public & private channels, and file uploads. Key Benefits* Comprehensive coverage across all Slack workspaces and message types
* Securing all Slack user communication, including web, mobile and desktop applications
* Contextual analysis minimizes false positives
* Automated workflows ensure consistent and customizable enforcement
* Intuitive end-user engagement for operational efficiencyAbout DoControl SaaS DLPDoControl combines comprehensive contextual analysis with Natural-Language Processing (NLP) for real-time scanning, ensuring a nuanced assessment of risks. Gathering security and business context from sources like EDP, IDP, HRIS, end-user interactions, and the SaaS application itself, DoControl distinguishes between standard business practices and genuine security threats.
DoControl’s Unified Solution for SaaS SecurityReal-time monitoring with context-based alerts
DoControl alerts security teams in real-time via email, Slack or the company’s SIEM/Incident Management tools, on sensitive data sharing violations, based on the security policy defined. DoControl tracks audit logs, monitoring user logins and alerting on geographic violations or anomalies detected. Granular enforcement with automated security workflows
DoControl's automated workflows ensure consistent enforcement and risk remediation for violations detected on Slack. Customizable without coding, these workflows come with pre-defined templates, covering scenarios like encryption key sharing prevention and auto-deletion of files or messages in external channels.Maximum efficiency with end-user engagement
DoControl's bot for Slack proactively engages with end-users on behalf of Security and IT teams. It identifies and mitigates outdated or inappropriate sharing activities, streamlining sharing approvals through an intuitive UI. This engagement empowers users, fostering a security mindset and reducing organizational exposure over time.
* Securing all Slack user communication, including web, mobile and desktop applications
* Contextual analysis minimizes false positives
* Automated workflows ensure consistent and customizable enforcement
* Intuitive end-user engagement for operational efficiencyAbout DoControl SaaS DLPDoControl combines comprehensive contextual analysis with Natural-Language Processing (NLP) for real-time scanning, ensuring a nuanced assessment of risks. Gathering security and business context from sources like EDP, IDP, HRIS, end-user interactions, and the SaaS application itself, DoControl distinguishes between standard business practices and genuine security threats.
DoControl’s Unified Solution for SaaS SecurityReal-time monitoring with context-based alerts
DoControl alerts security teams in real-time via email, Slack or the company’s SIEM/Incident Management tools, on sensitive data sharing violations, based on the security policy defined. DoControl tracks audit logs, monitoring user logins and alerting on geographic violations or anomalies detected. Granular enforcement with automated security workflows
DoControl's automated workflows ensure consistent enforcement and risk remediation for violations detected on Slack. Customizable without coding, these workflows come with pre-defined templates, covering scenarios like encryption key sharing prevention and auto-deletion of files or messages in external channels.Maximum efficiency with end-user engagement
DoControl's bot for Slack proactively engages with end-users on behalf of Security and IT teams. It identifies and mitigates outdated or inappropriate sharing activities, streamlining sharing approvals through an intuitive UI. This engagement empowers users, fostering a security mindset and reducing organizational exposure over time.
Permissions
DoControl for Slack Enterprise will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
DoControl
Company headquarters location
United States
Terms of service
https://www.docontrol.io/legal/terms#:~:text=As%20between%20Customer%20and%20DoControl,use%2C%20verifying%20the%20authenticity%20and
Privacy & data governance
Data retention policy
Customer data is stored for as long as the engagement or contract is active, or for the period of time defined in each customer’s master services agreement. Customers can submit a data deletion request for all or some of the data stored and processed within the Production environment and used for delivering DoControl’s services. In case the customer decided to leave and close his account, DoControl will accept requests for restore/download all customer data within a 35 days retention. Requests for data deletion should be filed by the following channels: 1. support@docontrol.io 2. Intercom An approval should be obtained from customers in case confidential data is intended to be retained beyond its retention period. Such information will be tagged accordingly by DoControl. https://www.docontrol.io/privacy
Data archiving and removal policy
All data has backups for 35 days. Customer data is stored for as long as the engagement or contract is active, or for the period of time defined in each customer’s master services agreement.
Data storage policy
All storages is encrypted at rest using AWS KMS and backup for 35 days.
Data center location(s)
United States
Data hosting details
AWS
Data hosting company
aws
App/service has sub-processors
no
App/service uses large language models (LLM)
yes
LLM model(s) used
We use an internally hosted LLM for research purposes. It’s not trained or stores any data.
LLM retention settings
No data is saved
LLM data tenancy policy
N/A
LLM data residency policy
N/A
Certifications & compliance
SOC attestation
Data deletion request procedure
Upon request, when the customer decided to leave with a retention of 35 days. Requests for data deletion should be filed by the following channels: 1. support@docontrol.io 2. Intercom
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Executive summary is available to potential customers upon request
yes
Supports Single Sign On (SSO) with the following providers
Google connect, OKTA, JumpCloud, ForgeRock, OneLogin
Supports Security Assertion Markup Language (SAML)
no
Has a dedicated security team
yes
Contact for security issues
security@docontrol.io
Has a vulnerability disclosure program
no
Has a bug bounty program
no
Requires third party authorization/connections
no
Uses token rotation
no