Privacy Policy
Last updated: August 27, 2025
Overview
Drama Guard helps teams reduce drama patterns in Slack by providing privacy-first coaching and anonymized organizational insights. This Privacy Policy explains what information we collect, how we use it, how we share it, and the choices and rights available to you.
Who we are
Drama Guard operates the service available at dramaguard.io and the Slack application. If you have questions about this policy, contact us at privacy@dramaguard.io.
Information we collect
- Workspace and account information. From Slack we may receive workspace and user identifiers, workspace name, team domain, and member profile fields permitted by Slack and your admin.
- Message and channel context. In channels where our app is invited, we process message content and context necessary to detect drama patterns and provide coaching. Direct message scanning is off by default and can be disabled organization‑wide.
- Derived features. To honor minimal data principles, we prefer storing features/labels derived from messages (e.g., drama role scores) rather than raw text when possible, according to your admin’s retention settings.
- Usage and diagnostics. Events such as nudge interactions, response times, error logs, and device/browser metadata for the web dashboard.
- Support communications. Information you provide when you contact us (name, email, company, and the content of your message).
- Website data. Basic logs for security and performance. We do not use cross‑site advertising cookies.
How we use information
- Provide and operate the Slack app and web dashboard.
- Deliver private coaching nudges and suggested rewrites to authors.
- Generate anonymized and k‑anonymous insights for teams and organizations.
- Maintain security, prevent abuse, and troubleshoot issues.
- Improve the accuracy and usefulness of detection and coaching features.
- Communicate with admins and users about updates, security, and support.
Legal bases (EEA/UK)
- Contract necessity to provide the service to your workspace.
- Legitimate interests in improving safety, quality, and reliability.
- Consent where required (e.g., optional features or marketing communications).
- Legal obligations such as responding to lawful requests.
Data retention
Workspace admins can choose retention between 0–30 days for message‑related data. A “0‑day streaming” mode processes data transiently and stores only derived features where feasible. Support and operational records are kept as long as necessary for the purposes described, then deleted or anonymized. Backup copies are deleted on a rolling schedule.
How we share information
- Service providers (processors). We may use trusted vendors for hosting, logging/monitoring, analytics, email delivery, and customer support. These providers are bound by contractual confidentiality and data protection obligations.
- Integrations. We exchange necessary data with Slack via Slack’s APIs according to your workspace permissions and settings.
- Legal and safety. We may disclose information if required by law or to protect users, our services, or the public from harm.
We do not sell personal information.
International data transfers
If data is transferred internationally, we use appropriate safeguards, such as Standard Contractual Clauses where applicable.
Security
We use industry‑standard security measures, including encryption in transit and at rest, access controls, audit logging, and least‑privilege practices. SOC 2 Type II is on our compliance roadmap.
Your rights and choices
Depending on your location, you may have rights to access, correct, delete, restrict, or object to processing of your personal data, and to data portability. You can exercise these rights by contacting your workspace admin or privacy@dramaguard.io. You may also have the right to lodge a complaint with your local data protection authority.
For California residents, the California Consumer Privacy Act (as amended) provides additional rights, including the right to know, delete, correct, and opt‑out of certain sharing. We do not sell personal information or share it for cross‑context behavioral advertising.
Slack‑specific privacy controls
- Only channels where the app is invited are analyzed.
- Direct message scanning is off by default and can be disabled entirely.
- Admins can configure retention (0–30 days) and privacy preferences.
- Users can pause or opt out of nudges in accordance with workspace policy.
Children’s privacy
The service is not directed to children and should not be used by individuals under the age of 16.
Changes to this policy
We may update this Privacy Policy from time to time. We will post the updated version on this page and adjust the “Last updated” date. Material changes will be communicated through the service or by email where appropriate.
Contact us
Questions or requests about this policy can be sent to privacy@dramaguard.io.