Skip to main content
Skip table of contents

Frequently Asked Questions

Where is the app hosted and by whom?

The Microsoft 365 Embedded app is hosted by monday.com on their monday-code platform.

monday-code is their low-code development platform that enables third parties to host and run server-side monday apps securely.

It provides a secure, reliable, and scalable hosting solution to help contribute to widespread app usage. Apps hosted with monday-code are upheld to stringent enterprise-level compliance and security measures, ultimately giving large customers the confidence they need to install the app.

Does the app store any of our data?

For the Share Link feature: We store no data. The URL of the embedded files are stored within your own monday.com instance.

For the Secure Embed feature: We store access tokens within monday.com’s infrastructure using their secure storage mechanisms. We also store metadata related to the file or folder within your own monday.com instance.

All files are transmitted directly from Microsoft to your browser without the knowledge of our services.

If we stop using the app, what happens to all of the previously linked content in monday.com?

Links should continue to work, but content will no longer be embedded within monday.com.

Access tokens stored within monday.com’s infrastructure can all be deleted by an admin user at any time before the app is uninstalled.

See Revoking access to Microsoft 365.

We recommend that you delete the access tokens before you stop using the app.

Are there any other requirements for your app to work with our monday.com implementation and Microsoft 365?

No.

Is all data inflight and stored encrypted within the service?

Our data is transmitted encrypted over TLS. Your data is transmitted directly from Microsoft to your browser and is encrypted over TLS.

Is there any logging/auditing available?

No. We do not log any details of your files.

What happens when the person who have shared content with monday.com leaves the organisation? Is that shared content tied to the individual or the Tenant?

This is entirely based on the sharing within Microsoft 365. If it's still available and accessible, monday.com users will see it embedded in monday.com.

Do we need a particular level/version of monday.com?

All versions of monday.com are supported.

Do we need a particular level/version of Microsoft 365?

See Which Microsoft 365 product plans does the app support?

If the app is offline, how will that impact users working on monday.com?

They will not be able to view the content. However, the app is served at the edge by content delivery network (CDN) from the monday.com infrastructure.

Is there any protection built into the app to prevent ‘bad content’ someone shares?

No. Our app simply embeds content from Microsoft 365, so any strategy your organisation uses to secure your Microsoft 365 content and prevent breaches of the https://www.microsoft.com/en-us/servicesagreement/ will impact the embedded content in monday.com .

All content stored on Microsoft 365 is subject to the Code of Conduct, which is detailed in the https://www.microsoft.com/en-us/servicesagreement/. As such, storage of any nefarious content is likely to be a breach of the Microsoft Services Agreement.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.