Seriously, just the idea of keeping ALL your company internal conversations on a 3rd party server is quite crazy, but to get access without even hacking anything.. I wonder if situations like this will result in business customers more carefully evaluating SaaS solutions that deal with sensitive data, because "in-house" solutions may be old school, but at least a) no one will suddenly terminate the service and b) all data is kept locally.
It beats me to see so many Microsoft and google teams. Don't they have their own tools to do this securely.
Leaking of business conversations can have serious implications on many areas from financial to legal. If an employee leaves the company how that will be handled.
They are leaking potentially confidential information to a third party company running the service, in this case Slack. For all you know they could be doing stock trades based on all the insider info they can glean from their chat traffic as their business model.
If the communication includes material insider information, like companies/products they are considering buying, and they are flinging it all over the internet so third parties can read and act on it the SEC can charge them.
If you use cloud services for company communication then you at least need to have provably secure encryption so only the people you want to see the conversation can.
Of course this criticism applies to all the suckers who use Google and Microsoft cloud services for their business.
>For all you know they could be doing stock trades based on all the insider info they can glean from their chat traffic as their business model.
From the Slack TOS:
>Your acceptance of this TOS gives us the permission to do so and grants us any such rights necessary to provide the service to you, only for the purpose of providing the service (and for no other purpose).
They _could_ be breaking the TOS (and thus the contract between you and the them), but I doubt it.
