Privacy Policy

How we collect, use, and protect your data

Last updated: 8/27/2025

Our Commitment to Privacy

At SelfDestruct App, we are committed to protecting your privacy and ensuring the security of your data. This policy explains how we collect, use, and safeguard your information when you use SelfDestruct.

What Data We Collect

Workspace Information

  • • Workspace name and ID
  • • Channel names and IDs
  • • User IDs (not usernames or personal information)
  • • Installation and configuration settings

Message Metadata

  • • Message timestamps
  • • Channel information
  • • Deletion status and history

Account Information

  • • Billing and payment information (processed by Stripe - never stored by us)
  • • Support communication history
  • • Usage analytics and performance metrics

What We Don't Collect

  • • Personal user information (names, emails, etc.)
  • • Direct messages or private channel content
  • • Any data not required for service operation

How We Use Your Data

Service Operation

  • • Execute message deletion policies
  • • Process billing and subscriptions
  • • Provide customer support

Service Improvement

  • • Analyze usage patterns
  • • Improve service performance
  • • Develop new features
  • • Ensure system reliability

Data Retention

Active Service Data

We retain workspace configuration and metadata for as long as your subscription is active and for 30 days after cancellation to allow for service restoration.

Billing Information

Billing records are retained for 7 years to comply with tax and accounting requirements.

Support Communications

Support tickets and communications are retained for 2 years to provide continuity of service.

Analytics Data

Aggregated usage analytics are retained for 3 years to improve our services.

Request Data Deletion

If your company would like your data removed from SelfDestruct, please email support@selfdestructapp.com from a verified organizational email. Include your Slack workspace ID (team_id) and a confirmation that you are authorized to request removal. We will acknowledge within 24 hours and complete removal within 7 business days unless a shorter timeline is required by law.

Data Security

Infrastructure Security

  • • AWS SOC 2 Type II compliant
  • • AWS ISO/IEC 27001 certified infrastructure
  • • End-to-end encryption in transit
  • • Data encrypted at rest
  • • Regular security audits

Access Controls

  • • Slack based authentication
  • • Regular access reviews
  • • Audit logging

Your Rights (GDPR)

Under GDPR, you have the following rights regarding your personal data:

Right to Access

Request a copy of all personal data we hold about you.

Right to Rectification

Request correction of inaccurate personal data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Portability

Request transfer of your data to another service provider.

How to Exercise Your Rights

To exercise any of these rights, please contact us at support@selfdestructapp.com. We will respond to your request within 30 days.

Vulnerability Disclosure

We welcome responsible disclosure of security issues. While we do not offer monetary bug bounties at this time, we appreciate reports and will acknowledge and respond to all good‑faith submissions.

Please send security reports to security@selfdestructapp.com. Include steps to reproduce, impacted components, and any proof of concept. We aim to triage within 72 hours and keep you updated on remediation.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: support@selfdestructapp.com

Company: SelfDestruct App