Hi, we have questions related to deauthorization compliance.
Our app provides enhanced management tools and analytics for organizations that host events on Zoom. We hope that our app will help event organizers continue to host their events on Zoom, rather than migrating to a competing, all-in-one events platform.
The app is designed to be used by multiple people within an organization, using that organization’s Zoom account. As individuals within an org host events (consisting of Zoom meetings and/or webinars), we collect and analyze data from the associated Zoom meetings, making the data and insights available to other app users within the organization.
We’re wondering how to handle situations where an individual user within an org deauthorizes our app, while other users in the org continue to use the app.
To illustrate our question, imagine a scenario where there are three users of our application within the same organization. All have authorized and installed the app. The first user, Alice, is the organization’s Director of Events. The other two users, Bob and Charlie, work for Alice.
Alice, Bob and Charlie all host events for the organization, and they want to share analytics on their events with each other. Our app enables this. Alice, for example, can see detailed analytics for Bob and Charlie’s events. Our app provides the analytics using data stored in our database, obtained during the hosted events via the Zoom webhook and REST apis.
Now suppose that Bob leaves his role and decides to deauthorize our app, but the organization continues to use our app. If we are meant to subsequently delete all Bob’s data associated with his usage of our app, that would mean that Alice could no longer see analytics for the events that Bob hosted.
If the organization at large decides to deauthorize our app, it is clear to us that we should then delete all data associated with the organization’s usage of our app. Our questions lie one level deeper - when individuals within an org deauth our app, but the org wishes to continue using our app to analyze past events hosted by the individual who has deauthorized.
Perhaps an approach like this could be sensible:
If there’s only one user of our app within an organization, and that user deauths our app, we delete all associated data.
If there are multiple users of our app within an organization, and one of the users deauths our app, we confirm with our point of contact within the organization whether we should delete that user’s data.
We’re really excited about launching in the marketplace, and we hope to find a sensible approach together.
Thank you!