Zoho CRM

Publisher Attestation: The information on this page is based on a self-assessment report provided by the app developer on the security, compliance, and data handling practices followed by this app. Microsoft makes no guarantees regarding the accuracy of the information.

Last updated by the developer on: September 3, 2019

General information

Information provided by Zoho Corporation Pvt Ltd to Microsoft:

Information Response
App name Zoho CRM
ID 003a8a54-9d27-41cd-9c28-aec5875a3497
Capabilities Bot, Tab, Messaging Extension
Office 365 clients supported Microsoft Teams
Partner company name Zoho Corporation Pvt Ltd
Physical address ZOHO Corporation Pvt. Ltd. 4141 Hacienda Dr, Pleasanton,CA 94588
Contact information for this app support@zohocrm.com
URL of partner website https://www.zoho.com/
URL of Teams application info page https://www.zoho.com/crm/help/microsoft-teams-integration.h...
URL of Privacy Policy https://www.zoho.com/privacy.html
URL of Terms of Use https://www.zoho.com/crm/zohocrm-terms.html
Main telephone number (888) 900-9646
Description of available licensing options, if any Available licensing option in Zoho CRM is Free,Standard,Professional,Enterprise,Ultimate,CRM Plus . For more information on licensing , please refer the link https://www.zoho.com/crm/zohocrm-pricing.html.
Licensing contact 1(888) 900 9646
Licensing telephone number https://www.zoho.com/crm/resources/support-plans.html

Feedback

Questions or updates to any of the information you see here? Contact us!

How the app handles data

Information provided by Zoho Corporation Pvt Ltd on how this app collects and stores organizational data, and what control an organization has over this data.

Data access using Microsoft Graph

List any Microsoft Graph permissions this app requires, and for each, whether they are delegate or application permissions, the justification and purpose for this permission (what does the app use this information for?), and whether the app stores any of this information in its databases.

Permission Delegated/Application Justification/Purpose Is any of this data stored in app database(s)? Azure AD App ID
User.Read Delegated Sign in and read user profile User properties like first_name, last_name, email address. f6d7187a-b437-4eca-bbc5-c1331609fe07
email Delegated View user's email address UserPrincipaName is stored for user indentification f6d7187a-b437-4eca-bbc5-c1331609fe07
profile Delegated View user's basic profile f6d7187a-b437-4eca-bbc5-c1331609fe07
Files.Read.Selected Delegated Allows the user to import Office365 file to Zoho CRM. UserPrincipalName is stored for user identification f6d7187a-b437-4eca-bbc5-c1331609fe07
Files.Read.All Delegated Allows the user to import Office365 file to Zoho CRM. f6d7187a-b437-4eca-bbc5-c1331609fe07
Files.Read Delegated Allows the user to import Office365 file to Zoho CRM. f6d7187a-b437-4eca-bbc5-c1331609fe07
offline_access Delegated Maintain access to data you have given it access to f6d7187a-b437-4eca-bbc5-c1331609fe07
Calendars.ReadWrite Delegated Allows the user to sync Office365 events with Zoho CRM. Calendar Folder Id is stored to sync the contacts from Zoho CRM to Microsoft & vice-versa. Calendar information like event_name, event_location, participant_details are stored. f6d7187a-b437-4eca-bbc5-c1331609fe07
Contacts.ReadWrite Delegated Allows the user to sync Office365 contacts with Zoho CRM. Contacts Folder Id is stored to sync the contacts from Zoho CRM to Microsoft & vice-versa. Contact information like first_name, last_name, email address are stored. f6d7187a-b437-4eca-bbc5-c1331609fe07
User.ReadBasic.All Delegated Read all users' basic profiles User properties like first_name, last_name, email address. f6d7187a-b437-4eca-bbc5-c1331609fe07

Telemetry data

Does any organizational information, including EUII (end-user identifiable information) and OII (organizational identifiable information), appears in this application's telemetry/logs? If yes, describe what data is present and what controls/processes an organization has in place to archive and/or delete it. If no, describe the controls/processes in place to prevent EUII and OII from appearing in telemetry/logs.

We don't collect EUII / PII in telemetry and logs. We have scripts in place to look for and alert for fixing any such data being visible

Storing and securing organizational data

Describe where/how is this application's data is stored and how access to it is controlled. Is it encrypted? Who can access it? How do you ensure that only authorized systems/individuals can access it? Examples: 2FA for all admins, Privileged Access Management (PMA), partitioning service admin accounts from Azure AD/corporate user accounts, protected IP ranges between systems, etc.

Audit logs are available for all create, update delete operations to the customers administrators. Regarding deletion and retention, please refer to the respective sections in our privacy policy.

Organizational controls for data stored by partner

Describe any capabilities an organization's administrators have to control their information residing in partner systems, e.g. deletion, retention, auditing, archiving, end-user policy, etc.

Customer can select the data that needs to be encrypted via EAR (Encryption At Rest)with certaat restrictions.Passwords will be hashed by default. Logical access to the servers is provided through an isolated & dedicated network and is highly secured and

Human review of organizational information

Are humans involved in reviewing or analyzing any organizational data that is collected or stored by this app?

Not specified.

Feedback

Questions or updates to any of the information you see here? Contact us!

Information from the Microsoft Cloud App Security catalog appears below.

Note

The information on this page is based on a self-attestation report provided by the app developer on the security, compliance and data handling practices followed by the app. Microsoft makes no guarantees regarding the accuracy of the information. Contact us if you believe information about an app is outdated.

View in a new tab

Feedback

Questions or updates to any of the information you see here? Contact us!