Q

Publisher Attestation: The information on this page is based on a self-assessment report provided by the app developer on the security, compliance, and data handling practices followed by this app. Microsoft makes no guarantees regarding the accuracy of the information.

Last updated by the developer on: January 8, 2020

General information

Information provided by ModuleQ to Microsoft:

Information Response
App name Q
ID 72bb25c7-3644-4318-8249-a08e5493a520
Capabilities Bot, Tab
Office 365 clients supported Microsoft Teams
Partner company name ModuleQ
Physical address 20410 Town Center Lane Suite 270 Cupertino, CA 95014
URL of partner website https://moduleq.com
URL of Privacy Policy https://moduleq.com/privacy-policy/
URL of Terms of Use https://moduleq.com/terms-of-service/
Main telephone number 1 (408) 320-4729
Description of available licensing options, if any Q is available for private enterprise deployments.
Licensing contact support@moduleq.com
Licensing telephone number support@moduleq.com

Feedback

Questions or updates to any of the information you see here? Contact us!

How the app handles data

Information provided by ModuleQ on how this app collects and stores organizational data, and what control an organization has over this data.

Data access using Microsoft Graph

List any Microsoft Graph permissions this app requires, and for each, whether they are delegate or application permissions, the justification and purpose for this permission (what does the app use this information for?), and whether the app stores any of this information in its databases.

Permission Delegated/Application Justification/Purpose Is any of this data stored in app database(s)? Azure AD App ID
Calendars.Read Application Allows the application to read a user's calendar events in order to intelligently understand the user's business priorities. stores meeting data, except for the message body and any attachments 418a1ee4-ca76-4b38-b4b3-8cca25417a6c
Group.Read.All Delegated Allows the app to interact in a Team for sharing content. None 418a1ee4-ca76-4b38-b4b3-8cca25417a6c
Mail.Read Application Allows the application to read a user's mail in order to intelligently understand the user's business priorities stores email data, except for the message body and any attachments 418a1ee4-ca76-4b38-b4b3-8cca25417a6c
User.Read Delegated Allows the user to sign in and link their Office 365 account with their ModuleQ account user email and authentication tokens 418a1ee4-ca76-4b38-b4b3-8cca25417a6c
User.Read.All Delegated Allow the app to get the list of Teams that the user is a part of. Only used for Sharing None 418a1ee4-ca76-4b38-b4b3-8cca25417a6c

Non-Microsoft Services Used

If the app transfers or shares organizational data with non-Microsoft service(s), list the non-Microsoft service(s) the app uses, what data is transferred, and include a justification for why the app needs to transfer this information.

No

Data access via bots

If this app contains a bot or a messaging extension, it can access the roster (first name, last name, display name, email address) of any team member in a team or chat it's added to. Does this app make use of this capability?

Access team/chat roster? Justification/Purpose Is any of this data stored in app database(s)?
No N/A N/A

Telemetry data

Does any organizational information, including EUII (end-user identifiable information) and OII (organizational identifiable information), appears in this application's telemetry/logs? If yes, describe what data is present and what controls/processes an organization has in place to archive and/or delete it. If no, describe the controls/processes in place to prevent EUII and OII from appearing in telemetry/logs.

We log an internal user GUID and organizational names and domains. There are no archival or deletion controls at the moment.

Storing and securing organizational data

Describe where/how is this application's data is stored and how access to it is controlled. Is it encrypted? Who can access it? How do you ensure that only authorized systems/individuals can access it? Examples: 2FA for all admins, Privileged Access Management (PMA), partitioning service admin accounts from Azure AD/corporate user accounts, protected IP ranges between systems, etc.

Administrators can revoke a user's permissions granted to the application. User accounts are self-service for deletion capabilities. All other capabilities can be requested with our support team through support@moduleq.com

Organizational controls for data stored by partner

Describe any capabilities an organization's administrators have to control their information residing in partner systems, e.g. deletion, retention, auditing, archiving, end-user policy, etc.

Data is stored in the Microsoft Azure Cloud across multiple microservices according to their function. All user identifiable data is encrypted client-side with the AES-256 encryption before transmitting for storage. Data may be viewed by engineers for debugging purposes with approval from our senior management. Access to data is controlled via internal VPN.

Human review of organizational information

Are humans involved in reviewing or analyzing any organizational data that is collected or stored by this app?

Yes

Feedback

Questions or updates to any of the information you see here? Contact us!

Information from the Microsoft Cloud App Security catalog appears below.

Note

The information on this page is based on a self-attestation report provided by the app developer on the security, compliance and data handling practices followed by the app. Microsoft makes no guarantees regarding the accuracy of the information. Contact us if you believe information about an app is outdated.

View in a new tab

Feedback

Questions or updates to any of the information you see here? Contact us!