To ensure best security practice IdeaKeep now complies with GDPR.
If you're a longstanding user, please accept new policy and subscriptions from our bot


Privacy Shield Notice

Effective date May 25, 2018
IdeaKeep Privacy Shield Notice
IdeaKeep ("we", "our" or "us") operates the IdeaKeep website (here and after referred to as the "Website") and provides the IdeaKeep Slackbot and other services (referred together as the "Services").

This privacy policy notice is for this website ( and served by Animacode, LLC and is incorporated in our "Terms of Use".

Last Update 25th, May 2018.

Animacode, LLC
Kozhevnicheskaya st.,10, Moscow, Russia.
What Does This Privacy Policy Cover
When using our Services or accessing the Website, you may provide us with your personally identifiable information ("Personal Information"). This Privacy Policy describes how we collect and use the personal information you may provide on our Website or using our Services. It also describes the choices available to you regarding our use of your personal information.

Under the GDPR (General Data Protection Regulation) we control and / or process any personal information about you electronically using the following lawful bases.

You should know that processing any personal information we refer to lawful basis, GDPR and Russian privacy law.

Please revisit this page to have all actual information about our Data Protection and Privacy Policy.

Lawful basis: Consent

We use this basis to provide you with access to the information and features on this website, including helping us analyse its effectiveness for our business.

We process your information in the following ways: We use Google Analytics and associated Google tools to understand site usage. Cookies are used on the site to enable these uses.

Data retention period: We will continue to process your information under you withdraw consent or it is determined your consent no longer exists.

Sharing your information: We do not share your information with third parties without your prior consent.

If, as determined by us, the lawful basis upon which we process your personal information changes, we will notify you about the change and any new lawful basis to be used if required. We shall stop processing your personal information if the lawful basis used is no longer relevant.

If you provide us personal information about others, or if others give us your information, we will only use that information for the specific reason for which it was provided to us.

Be aware, that under the GDPR your rights are as follows:

  • the right to be informed - Individuals have the right to be informed about the collection & use of their personal data. We endeavour to provide such privacy information at the point of collection and additional information can be given upon request.
  • the right of access - Individuals have the right to access their personal data and supplementary information. The right of access allows individuals to be aware of and verify the lawfulness of the processing.

  • the right to rectification - GDPR gives individuals the right to have personal data rectified if it is inaccurate or incomplete.

  • the right to erasure - The broad principle underpinning this right is to enable an individual to request the deletion or removal of personal data where there is no compelling reason for its continued processing.

  • the right to restrict processing - Individuals have a right to 'block' or suppress processing of personal data.

  • the right to data portability - The right to data portability allows individuals to obtain and reuse their personal data for their own purposes across different services. It allows them to move, copy or transfer personal data easily from one IT environment to another in a safe and secure way, without hindrance to usability.Client requests to transfer data to alternate systems can be processed by individual arrangement.

  • the right to object - The right to object to processing of data would typically not be applicable with contractual fulfilment as the lawful basis of processing. Any directly received objections, complaints, concerns or feedback will be reviewed on an individual basis.

  • the right not to be subject to automated decision-making including profiling. This requirement is not applicable to IdeaKeep activities as no decision-making or profiling process is involved.

You also have the right to complain if you feel there is a problem with the way we are handling your data.

We handle subject access requests in accordance with the GDPR.

You can read our data protection policy below.

This Privacy Policy is also applicable to any personal information that our business partners, subsidiaries and affiliates may share with us or that we may share with them.


Be informed that only children aged 13 or over are able provide their own consent. For children under this age users need to provide us consent from whoever holds parental responsibility for the child. Children have the same rights as adults over their personal data.

We understand that children merit specific protection when we use their personal data for marketing purposes or creating personality or user profiles.

IdeaKeep process personal data. This personal data includes:

Basic Account Information

When you integrate IdeaKeep bot in your Slack team, the Slack API provides us information about your team and it's members, such as your name, username, timezone and profile pictures. This information is visible by them members of your Slack team but not anyone else.

Additional Information

You also may provide us with information during your conversations with IdeaKeep on Slack. If you email us, we may keep your message, email address and contact information to respond to your request. The additional information described in this section is also private.


Like many websites, we may use cookies and similar technologies to collect additional website usage data and to improve our Services, but we do not require cookies for many parts of our Services such as searching and looking at public user profiles. A cookie is a small data file that is transferred to your computer's hard disk. IdeaKeep may use both session cookies and persistent cookies to better understand how you interact with our Services, to monitor aggregate usage by our users and web traffic routing on our Services, and to customize and improve our Services. Most Internet browsers automatically accept cookies. You can instruct your browser, by changing its settings, to stop accepting cookies or to prompt you before accepting a cookie from the websites you visit. However, some Services may not function properly if you disable cookies.

Log Data

When you use our Services, we may receive information ("Log Data") such as your IP address, browser type, operating system, the referring web page, pages visited, location, your mobile carrier, device information (including device and application IDs), search terms, and cookie information. We receive Log Data when you interact with our Services, for example, when you visit our website, sign into our Services, interact with our emails or interact with IdeaKeep on Slack. We may also receive Log Data when you click on, view or interact with a link on our Services to a third-party application, such as when you choose to install another application through IdeaKeep. IdeaKeep uses Log Data to provide, understand, and improve our Services.


IdeaKeep uses a variety of third-party services to help provide our Services, such as hosting our site and blog, and to help us understand and improve the use of our Services, such as Google Analytics. These third-party service providers may collect information sent by your browser as part of a web page request, such as cookies or your IP address. Third-party ad partners may share information with us, like a browser cookie ID, website URL visited, mobile device ID, or cryptographic hash of a common account identifier (such as an email address).

Email newsletter

If you give us your email address, we may send you our email newsletter or other content we think is relevant to you such as weekly digest. You can unsubscribe from these communications at any time using the preference management links at the bottom of the email.

Our email marketing may contain tracking facilities. Subscriber activity is tracked and stored for future analysis and evaluation. The kind of thing we look at includes the opening of emails, forwarding of emails, clicking of links within our emails, as well as the times, dates and frequency of activity. We do this to refine future email campaigns and make sure our emails are as relevant and useful as possible.

We play by the rules, so make sure we follow the Data Protection Legislation (DPA/GDPR) when we're producing the newsletter. No personal details are passed on to third parties nor shared with companies or people outside of IdeaKeep.

Your Consent
We may share or disclose your information at your direction, such as when you authorize a third-party web client or application to access your IdeaKeep account.

Service Providers

We engage service providers to perform functions and provide services to us in the United States and abroad. We may share your private personal information with such service providers subject to confidentiality obligations consistent with this Privacy Policy, and on the condition that the third parties use your private personal data only on our behalf and pursuant to our instructions.

Law and Harm

Notwithstanding anything to the contrary in this Policy, we may preserve or disclose your information if we believe that it is reasonably necessary to comply with a law, regulation or legal request; to protect the safety of any person; to address fraud, security or technical issues; or to protect IdeaKeep's rights or property. However, nothing in this Privacy Policy is intended to limit any legal defenses or objections that you may have to a third party's, including a government's, request to disclose your information.

Business Transfers and Affiliates

In the event that IdeaKeep is involved in a bankruptcy, merger, acquisition, reorganization or sale of assets, your information may be sold or transferred as part of that transaction. This Privacy Policy will apply to your information as transferred to the new entity. We may also disclose information about you to our corporate affiliates in order to help provide, understand, and improve our Services and our affiliates' services.

Non-Private or Non-Personal Information

We may share or disclose your non-private, aggregated or otherwise non-personal information after we have removed any private personal information (such as your name or your company name).

GDPR contains explicit provisions about documenting processing activities.

IdeaKeep will require written confirmation instructions for all processing activities in order to ensure documented traceability of instructions from any data controller.

It is our intention to ensure that all records and the information contained therein is:

  • Accurate - records are always reviewed to ensure that they are a full and accurate representation of the transactions, activities or practices that they document

  • Accessible - records are always made available and accessible when required (with additional security permissions for select staff where applicable to the document content)

  • Complete - records have the content, context and structure required to allow the reconstruction of the activities, practices and transactions that they document

  • Compliant - records always comply with any record keeping legal and regulatory requirements

  • Monitored – staff, company and system compliance with this Data Retention Policy is regularly monitored to ensure that the objectives and principles are being complied with at all times and that all legal and regulatory requirements are being adhered to.
Data protection by design and default.

Under the GDPR, there is a general obligation to implement technical and organisational measures to show that you have considered and integrated data protection into your processing activities.

The GDPR requirements sit within the broader subject of Information Security Management (ISM), which is an area that IdeaKeep regards to be a critical part of the business operations.


GDPR requires personal data to be processed in a manner that ensures its security. This includes protection against unauthorised or unlawful processing and against accidental loss, destruction or damage. It requires that appropriate technical or organisational measures are used.

This general requirement is incorporated within our management systems and operational processes.

International transfers.

The GDPR imposes restrictions on the transfer of personal data outside the European Union, to third countries or international organisations. These restrictions are in place to ensure that the level of protection of individuals afforded by the GDPR is not undermined.

The GDPR provides derogations from the general prohibition on transfers of personal data outside the EU for certain specific situations. A transfer, or set of transfers, may be made where the transfer is:

  • made with the individual's informed consent;

  • necessary for the performance of a contract between the individual and the organisation or for pre-contractual steps taken at the individual's request;

  • necessary for the performance of a contract made in the interests of the individual between the controller and another person;

  • necessary for important reasons of public interest;

  • necessary for the establishment, exercise or defence of legal claims;

  • necessary to protect the vital interests of the data subject or other persons, where the data subject is physically or legally incapable of giving consent; or

  • made from a register which under UK or EU law is intended to provide information to the public (and which is open to consultation by either the public in general or those able to show a legitimate interest in inspecting the register).

We should inform you that some of you personal data could be transfer and storage in Russia. However, we can guarantee security level which fit with all GDPR clauses.

Adequate Safeguards.

You may transfer personal data where the organisation receiving the personal data has provided adequate safeguards. Individuals' rights must be enforceable and effective legal remedies for individuals must be available following the transfer.

Data breaches.

The GDPR will introduce a duty on all organisations to report certain types of data breach to the relevant supervisory authority and, in some cases, directly to the individuals affected.

We will report any breach to a Client's personal data as soon as possible (<24 hours) after an event has been confirmed.

Where a defined notifiable breach has occurred, we will report this to the competent authority within 72 hours of being made aware. IdeaKeep will support in gathering the necessary information, and notifying individuals where required.

If you are a registered user of our Services, we provide you with tools and account settings to access or modify the personal information you provided to us and associated with your account. The profile information that we receive from Slack can be modified through your Slack account, our records will be updated immediately and none of the previous information will be saved. You can also permanently delete your IdeaKeep account by emailing us at
We may revise this Privacy Policy from time to time. The most current version of the policy will govern our use of your information and will always be at If we make a change to this policy that, in our sole discretion, is material, we will notify you via an email to the email address associated with your account. By continuing to access or use the Services after those changes become effective, you agree to be bound by the revised Privacy Policy.

If you still have any questions or offers, contact us
Made on