General Data Protection Regulations question

[SueChaplain]

Hi

We are using slackin to automate invites to our slack workspace and it's been working well - thank you! At the moment we are needing to be mindful of the new GDPR regulations that come into effect in Europe (storage of user personal data). I've had some difficulty viewing the log files for our instance to see what information is recorded, but slackin does seem to know if a user has previously requested an invite. This suggests the storage of the email address. Is there any way to prevent email addresses being stored please? Is there any other user information held in the instance logs please (IP addresses etc)?

Thanks

[SueChaplain]

I have just discovered that you can find a list of Accepted Invitations in the slack workspace, which suggests that slackin is using an API to query whether someone has already received one. Perhaps no personal data is being stored by slackin?

Please can someone confirm so I can close this issue? Thanks :)

[ad-m]

no personal data is being stored in slackin. See https://github.com/rauchg/slackin/blob/master/lib/slack-invite.js#L12-L42 for details how slackin verify whether someone has already received one (it doesn't, it pass error up).