Last updated June 2026

Pinguin is built to be secure, and trusted.

Pinguin runs inside Slack to help you broadcast with confidence. Here's the short version of how we handle your data.

Minimal access

We only touch Slack data needed to send, schedule, and report on broadcasts you create.

Your workspace, isolated

Every record is scoped to your Slack team. No cross-workspace access, ever.

No resale. No ads.

We don't sell your data, run ads, or use workspace content to train AI.

Hosted in the UK

Production runs on Fly.io in London, with encrypted persistent storage.

What we store

Only what's needed to run broadcasts, analytics, and scheduling, scoped to your workspace.

  • Broadcasts you send (content, destinations, delivery status)
  • Audience lists and sender profiles you create
  • Scheduled broadcasts until they're delivered
  • OAuth tokens to keep Pinguin connected to your workspace

What we don't store

Reactions and replies are fetched live from Slack when you view analytics, not hoarded on our side.

  • Full Slack message history or unrelated DMs
  • Emails, passwords, or payment details
  • Third-party analytics or tracking data

Slack permissions

Bot scopes only. No email, admin, or user token scopes.

  • channels:readList public channels when building audience lists
  • groups:readList private channels the bot has been invited to
  • channels:joinJoin public channels in an audience list before posting
  • channels:historyRead thread replies on broadcasts for analytics
  • groups:historyRead thread replies in private channels for analytics
  • chat:writePost and update broadcast messages
  • chat:write.customizeSend under a custom name and avatar
  • users:readLook up display names and photos when sending as yourself
  • files:readAttach images uploaded through Slack to broadcasts
  • reactions:readShow reaction counts in broadcast analytics
  • commandsHandle the /broadcast slash command

Events: app_home_opened only, to render the Pinguin Home tab.

How we protect your data

Encrypted in transit

HTTPS everywhere. Slack over TLS, Socket Mode over WSS.

Secure install

OAuth 2.0 with CSRF protection. Secrets live in Fly.io, never in code.

Least privilege

Bot scopes only. Posts to channels you choose, nothing else.

You're in control

Delete data in-app, or revoke access by uninstalling from Slack.

Questions about security?

Reach us at hello@usepinguin.com. Infrastructure: Fly.io (London) & Slack.

Start broadcasting, today.

Add Pinguin to your Slack workspace and broadcast to hundreds of channels, it's free!

Add to Slack· Free!