The monday marketplace features ready-made, easy-to-use apps that build upon monday's capabilities and fit the unique needs of your business’s workflows, processes, and projects.
As always, with great power comes great responsibility. Here are some privacy tips to keep in mind when you're installing apps by external developers in the apps marketplace.
Who can install external apps
Only account admins can install monday apps. If a non-admin wants to install an app, they can request that an admin install the app for them by clicking Request to add on the specific app's page in the marketplace:
The admin will then receive a notification with the approval request.
Explore the apps in the apps marketplace
Selected apps can be found in the apps marketplace for you to explore and install. Apps that were built by external developers will have the name of the app developer on the right side of the app listing. If the developer is a monday partner, the developer name will be listed under the app's name with a green shield badge. Each developer has an email contact for support, installation, and sales queries.
Certain developers also submit detailed information about their security and privacy practices. If the app has submitted this information, it will be linked here on the description page:
Review the app's security & compliance
Apps that meet our specific data protection and security standards criteria will feature a green shield badge:
This means that the app is either:
- hosted on monday code, which is our secure hosting infrastructure, and that the developer has confirmed that no data is shared outside of monday.com
- OR the app is certified for SOC 2 and attests to GDPR, ensuring alignment with global data security standards.
However, it is still important for you to review the app and ensure that it meets your specific data privacy and security requirements beyond the scope of the ones mentioned above.
To get the full picture of an app's security, click on the Security & Compliance tab:
Here you'll find a list of questions and answers provided by the app developer pertaining to various aspects of an app's security, privacy, and more. If you still don't feel confident and have all the information you need prior to adding the app to your account, you can contact the developer directly.
Note: If an app's security questionnaire is not filled out, it does not mean that app is not secured. It means that the app developer did not share that specific data with us. You can reach out to the developer directly to ask for more information.
Approve the app's permissions
Every app requires specific permissions from your monday.com account. Each of the app's permissions (or scopes) are specific to one part of the platform (for example, boards, or updates, or teams) and can be categorized as either read access or write access. When an admin installs an app, they will see a list of the permissions that the desired app is requesting and be able to approve (or cancel) the installation.
Define your organization's approach
Build an approach or policy for installing apps based on your organization's data management practices. Some factors to consider include:
- Which teams will benefit most from the app?
- Does your IT or legal team need to approve this app before you start using it?
- Does the app have additional licensing costs? Do you have to assign a budget for them?
Keeping all these factors in mind when considering which apps to download will ensure that your organization manages its data securely.
Reach out to the app developer
If you have any questions about an app or want to learn more about its data management policies, reach out to the developer. They will be able to clarify any specific questions you might have about their app.
You can locate the developer's website and the option to contact their support either on the righthand side of the app page, or at the bottom.
Review the security standards of our apps marketplace
To be included in our marketplace, all apps must comply with a basic set of security standards. To learn more about our relationships with our marketplace partners, you can read our Privacy and security policy as well as our Marketplace Partner Agreement here.
If you have any questions, please reach out to our team right here. We’re available 24/7 and happy to help.
Comments