lock

Encryption

All data is encrypted in transit and at rest. In transit, data is only accessible via TLS/SSL, and at rest, data is encrypted.

verified_user

Data security

Our team can only access the data they need to do their job and we store your data with cloud providers who have top-tier physical security controls.

lan

Availability

We use kubernetes across multiple availability zones with our cloud providers to ensure high availability.

query_stats

Monitoring

Our metrics, logging and alerting notify out on-call team about potential incidents so they can be resolved quickly.

integration_instructions

Development

We only release software after thorough testing and validation in development and staging environments.

security

Account security

Users login with Slack, Microsoft and Google, who's accounts allow MFA and SSO for additional security.

Data Sources

Our users can link their Don't Interrupt account to third-party services. We've detailed what we can access and what we use from each third-party service.
Slack

We can access

  • Read: Profile, offline/online and email address
  • Read: Do not disturb settings
  • Read: Team name and logo
  • Read: Messages to the bot
  • Read: Actions performed on app home
  • Update: Status text and icon
  • Update: Online/offline availability
  • Update: Do not disturb settings
  • Update: Bot writes messages in app home
  • Update: App home after an action

We cannot access

  • Messages in any channel other than app home
  • Any other unauthenticated user in the workspace
  • Send messages as the user
Microsoft Teams

We can access

  • Read: Profile and email address
  • Read: Presence and availability
  • Read: Status text and icon
  • Update: Presence and availability
  • Update: Status text and icon

We cannot access

  • Messages in any channel
  • Any other unauthenticated user in the workspace
  • Send messages as the user
Google Calendar

We can access

  • Read: Profile and email address
  • Read: Shared or owned calendars
  • Read: Events on calendars

We cannot access

  • Change/update/delete users calendars
  • Change/update/delete users calendar events
  • Access calendars not owned or shared with the user
Outlook

We can access

  • Read: Profile and email address
  • Read: Shared or owned calendars
  • Read: Events on calendars

We cannot access

  • Change/update/delete users calendars
  • Change/update/delete users calendar events
  • Access calendars not owned or shared with the user
Zoom

We can access

  • Read: Profile/li>
  • Read: Events the user owns
  • Read: Events the user attends

We cannot access

  • Change/update/delete users events
  • Access calendars not owned or shared with the user
Alexa

We can access

  • Read: Profile
  • Read: Intents

We cannot access

  • Listening to audio
  • Full text of the users speech
Stripe

We can access

  • Read: Payment type and last 4 digits of payment card
  • Read: Status of subscription
  • Read: Payment history for invoicing
  • Update: Share your email, name and team
  • Update: Create subscriptions

We cannot access

  • Raw payment/banking information
Paypal

We can access

  • Read: Payment type and last 4 digits of payment card
  • Read: Status of subscription
  • Read: Payment history for invoicing
  • Update: Create subscriptions

We cannot access

  • Raw payment/banking information
EmailOctopus

We can access

  • Update: Share your email and name when signing up

We cannot access

  • Any additional user information
  • Send emails when you're unsubscribed

Policies

All of our security-related policies

FAQ

The most frequently asked questions we receive. If you have more questions, please contact support.
Short answer is no. We can only see the messages that mention the Don't Interrupt bot, or sent in the Don't Interrupt apps messages tab.
See our Vulnerability Management Policy /security/vulnerability-management
Don't Interrupt is only run by a single person doing all roles. Whilst there isn't a security team, security is taken very seriously.
Currently, as above, Don't Interrupt is run by a single person and therefore we have no pursued any specific certifications. We do follow GDPR and other legal requirements as outlined in our Privacy Policy and Terms of Service.