Slack
Certifications & attestations
| Certification | Status | Source | Last verified |
|---|---|---|---|
| SOC 2 Type II Listed on Slack's security page. SOC 2 report is not public; the companion SOC 3 report is downloadable there. | Verified | vendor source ↗ | June 10, 2026 |
| ISO 27001 Certificate PDF (2025) downloadable from the security page. Also holds ISO 27017, 27018, 27701, and 42001. | Verified | vendor source ↗ | June 10, 2026 |
| FedRAMP (Moderate) Standard Slack is FedRAMP Moderate authorized; GovSlack is separately JAB High authorized. | Verified | vendor source ↗ | June 10, 2026 |
→ Direct answer: Does Slack have SOC 2?
Subprocessors
Subprocessor extraction for Slack is pending. The vendor publishes a list here: source ↗
Hosting & data residency
- InfrastructureAmazon Web Services
- Data residencyData residency lets organizations choose the country or region where encrypted data at rest is stored (confirmed on Slack's security page, 2026-06-10).
Trust documents & links
- Trust centerhttps://slack.com/trust
- Security pagehttps://slack.com/trust/security
- DPAnot yet recorded
- Status pagehttps://slack-status.com
Security incidents & disclosures
No incidents on record in the public sources we track, as of June 10, 2026. Absence of a record is not a guarantee — see methodology.
Change history
2026-06-10
Vendor added to StackPosture — initial snapshot from published trust documentation. Verification pass pending.
2026-06-10
Verification pass: SOC 2 Type II, ISO 27001, and FedRAMP Moderate confirmed against Slack's published security page and the FedRAMP marketplace. ISO 27017/27018/27701/42001 also observed.