Privacy Policy
Last Updated: July 24, 2025
1Introduction
Welcome to RobinRelay. We are committed to protecting your privacy and providing a secure, transparent service. This Privacy Policy explains our policies and procedures on the collection, processing, and disclosure of your information when you use our Slack integration service (the "Service") and informs you of your privacy rights.
By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.
2Definitions
For the purposes of this Privacy Policy:
- •Company (referred to as "We", "Us", or "Our") refers to RobinRelay.
- •Service refers to the RobinRelay Slack application and its associated automation and agentic framework.
- •You means the company or other legal entity that has installed and is using the Service.
- •Personal Data is any information that relates to an identified or identifiable individual (e.g., a Slack User ID).
- •Sub-processor means a third-party data processor engaged by us, who has or potentially will have access to or process Service Data.
3Information We Process
Our Service is designed for data minimization. We only process the information necessary to execute the automation features provided by our backend systems. This includes:
Slack Information
When you connect RobinRelay to your Slack workspace, we may process data made available through the Slack API as required by our backend systems. This includes Slack User IDs, usernames, channel information, and the content of messages or alert payloads that trigger our backend systems.
Operational and Execution Logs
We automatically generate and store logs about the automation processes that have been executed, including their status (success/failure) and the data they processed. This is used for operational monitoring and troubleshooting.
Information Processed by Sub-processors
As part of our configured backend processes, data may be sent to secure infrastructure providers (our Sub-processors) that support our cloud hosting, storage, and processing needs. Large Language Model (LLM) processing is performed using enterprise-grade AI infrastructure hosted in secure, access-controlled environments. All Sub-processors are contractually bound to meet strict data security and compliance standards.
4How We Use Your Information
We use the information we process for the sole purpose of operating the RobinRelay service. This includes:
- •To provide, operate, and maintain the Service.
- •To process and execute the automated backend processes that are part of our Service.
- •To monitor the performance and health of the Service.
- •To troubleshoot issues, provide customer support, and ensure security.
- •To improve the functionality of our Service.
Important: We do not use your data for marketing, advertising, or selling to other third parties. All data processing is fully automated and scoped to the context of resolving technical alerts or incidents. We do not access customer data manually unless explicitly authorized for troubleshooting purposes.
5Data Security
We take the security of your data very seriously and have implemented a multi-layered, defense-in-depth security architecture. Our security measures include:
End-to-End Encryption
All data is encrypted in transit (TLS 1.2+) and at rest (AES-256), including interactions between services and with our Sub-processors.
Zero Trust Access Control
Administrative access requires strong authentication via Microsoft Entra ID and multi-factor authentication (MFA).
Network Security
Our infrastructure is hosted within a private network, isolated from the public internet with multiple layers of Web Application Firewalls (WAFs).
Secure Secret Management
All credentials and API keys are stored in Azure Key Vault with strict Role-Based Access Control (RBAC) and full auditing.
6Data Retention
We have a clear data retention policy to ensure we do not hold onto your data longer than necessary.
Operational and Execution Logs: 90 days
Live execution logs and associated data are retained for 90 days for operational and troubleshooting purposes. After this period, data is automatically and permanently deleted.
Database Backups: 7 days
For disaster recovery purposes, automated database backups are retained for 7 days on a rolling basis.
7Information Sharing and Disclosure
We will not disclose your data to any third party except as outlined below:
With Sub-processors
We may share your information with trusted third-party Sub-processors that provide secure cloud infrastructure, storage, and processing capabilities. All Sub-processors are vetted for compliance with relevant data protection standards (e.g., SOC 2, ISO 27001).
Business Transactions
If the Company is involved in a merger, acquisition, or asset sale, your data may be transferred. We will provide notice before your Personal Data is transferred and becomes subject to a different Privacy Policy.
Law Enforcement
Under certain circumstances, we may be required to disclose your data if required to do so by law or in response to valid requests by public authorities.
8Your Data Rights
You have the right to request access to, correction of, or deletion of your data. You may make such requests by contacting us using the information below. Please note that we may need to retain certain information when we have a legal obligation or a legitimate business purpose to do so.
9Changes to this Privacy Policy
We may update Our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy and updating the "Last Updated" date.
10Contact Us & Data Deletion Requests
If you have any questions about this Privacy Policy, you can contact us:
By email:
founders@robinrelay.aiData Deletion Requests
To request deletion of your data, please send an email to founders@robinrelay.ai with the subject line "Data Deletion Request" and include:
- • Your Slack workspace name
- • The email address associated with your account
- • Specific data you want deleted (or "all data" for complete removal)
We will process your request within 30 days and confirm completion via email.