Back to Home

Privacy Policy

Effective: September 15, 2025
Last Updated: September 15, 2025
Table of Contents
1. Introduction2. Information We Collect3. How We Collect Information4. How We Use Your Information5. Information Sharing and Disclosure6. Data Retention7. Data Security8. Your Rights and Choices9. Cookies and Tracking Technologies10. Third-Party Integrations11. International Data Transfers12. Children's Privacy13. California Privacy Rights (CCPA)14. European Union Privacy Rights (GDPR)15. Updates to This Privacy Policy16. Contact Information17. Consent
1Introduction

Daily Standup Bot ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Daily Standup Bot application (the "Service"), including our web application and Slack integration.

2Information We Collect

2.1 Personal Information

Account Information:
  • Name
  • Email address
  • Profile image (optional)
  • User role (Admin, TeamAdmin, user)
  • Account creation and update timestamps
Authentication Data:
  • Session tokens and authentication credentials
  • Google OAuth tokens (if using Google sign-in)
  • Password (encrypted) for email/password authentication
  • Session information including IP address and user agent
Slack Integration Data:
  • Slack user ID
  • Slack workspace information
  • Direct message content for standup submissions
  • Slack profile information (name, email from Slack profile)

2.2 Standup and Work-Related Information

  • Daily standup responses and answers
  • Question templates and custom questions
  • Standup completion status and timestamps
  • Team membership information
  • Reminder preferences and settings
  • Weekly performance rankings and scores

2.3 Technical and Usage Data

  • IP addresses
  • Browser type and version
  • Operating system information
  • Device information
  • Request logs and timestamps
  • Error logs and system metrics
  • Performance monitoring data
  • HTTP request patterns and response times

2.4 Communication Data

  • Email communications (invitations, password resets, reminders)
  • Slack messages related to standup submissions
  • System notifications and alerts
  • Reminder messages
3How We Collect Information

3.1 Direct Collection

  • User registration and profile setup
  • Standup submissions through web interface or Slack
  • Account settings and preferences
  • Team management activities

3.2 Automatic Collection

  • System logs and metrics through Winston logger and Prometheus metrics
  • Session data through Better Auth
  • Request tracking through middleware
  • Error monitoring and performance metrics

3.3 Third-Party Integrations

  • Google OAuth: Profile information when signing in with Google
  • Slack API: User profile, workspace data, and direct messages
  • Resend Email Service: Email delivery status and metrics
4How We Use Your Information

4.1 Core Service Functionality

  • Facilitate daily standup submissions and tracking
  • Send automated reminders via email or Slack
  • Generate team reports and analytics
  • Manage user roles and team assignments
  • Provide leaderboards and performance metrics

4.2 Communication

  • Send standup reminders at your preferred time
  • Deliver system notifications about team activities
  • Send account-related emails (password resets, invitations)
  • Share standup reports in designated Slack channels

4.3 System Operations

  • Monitor application performance and system health
  • Troubleshoot technical issues and errors
  • Maintain security and prevent unauthorized access
  • Optimize application performance

4.4 Analytics and Insights

  • Generate team productivity reports using AI analysis
  • Track completion rates and submission patterns
  • Identify inactive users and engagement metrics
  • Provide administrative dashboards and statistics
5Information Sharing and Disclosure

5.1 Internal Sharing

  • Team Members: Standup responses are shared within your designated teams
  • Administrators: Admin and TeamAdmin roles have access to team analytics and reports
  • AI Processing: Standup content is processed by Google Gemini AI for report generation

5.2 Third-Party Services

We share information with the following service providers:

  • Slack: Integration for message delivery and user identification
  • Google: OAuth authentication and AI processing services
  • Resend: Email delivery service
  • Grafana/Loki: Log aggregation and monitoring (if configured)
  • PostgreSQL/Neon: Database hosting and storage

5.3 Legal Requirements

We may disclose your information if required by law or in good faith belief that such action is necessary to:

  • Comply with legal obligations or court orders
  • Protect and defend our rights or property
  • Prevent fraud or security threats
  • Protect the safety of users or the public
6Data Retention

Account Data

  • • Active accounts: Retained while active
  • • Deleted accounts: Removed within 30 days

Standup Data

  • • Responses: Retained for analytics
  • • Historical data: Up to 2 years

System Logs

  • • Application logs: Up to 90 days
  • • Security logs: Up to 1 year

Communications

  • • Email logs: 1 year
  • • Slack messages: Per Slack policy
8Your Rights and Choices

8.1 Access and Portability

  • Request a copy of your personal data
  • Download your standup history and responses
  • Access your account settings and preferences

8.2 Correction and Updates

  • Update your profile information through account settings
  • Correct inaccurate personal information
  • Modify reminder preferences and notification settings

8.3 Deletion and Opt-Out

  • Delete your account and associated data
  • Opt out of reminder notifications
  • Remove yourself from teams
  • Disconnect Slack integration

8.4 Communication Preferences

  • Choose between email and Slack notifications
  • Set reminder times and frequencies
  • Opt out of non-essential communications
16Contact Information

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

Address

Kigali, Rwanda

Data Protection Officer

dpo@sevenx.com

Legal Notice

This Privacy Policy is designed to comply with major privacy regulations including GDPR, CCPA, and general privacy best practices. However, you should have this reviewed by legal counsel familiar with your specific jurisdiction and business requirements before implementation.