Security & Privacy
What data does Configly access?
Configly reads 41 configuration types from the Zendesk API, covering business rules, ticket settings, routing, apps, and help centre content. Configly does not access ticket data, user conversations, attachments, or personally identifiable information.
The full list of configuration types accessed:
| Group | Configuration Types | Count |
|---|---|---|
| Objects & Rules | Triggers, Automations, Macros, Views, SLA Policies, Trigger Categories, Ticket Fields, Ticket Forms, Custom Statuses, Tags, Ticket Settings, Routing Attributes, Routing Attribute Values, Queues, Custom Objects, Custom Object Fields, Support Addresses, Dynamic Content | 18 |
| People | Groups, User Fields, Organisation Fields, Custom Roles | 4 |
| Channels | Webhooks, Targets, Sharing Agreements | 3 |
| Account | Brands, Schedules, Locales, Account Settings, OAuth Clients, Workspaces | 6 |
| Apps & Integrations | App Installations, Apps Owned, OAuth Global Clients, Resource Collections | 4 |
| Guide | Articles, Sections, Categories, Themes, User Segments, Permission Groups | 6 |
All data is encrypted in transit (TLS) and at rest. See our Security and Trust page for full details.
Is my data secure?
Yes. Security measures include:
- Controlled write access — Configly only writes to Zendesk when you explicitly use Apply Changes, with mandatory change reasons and full audit trail
- Encrypted storage — all credentials encrypted with AES-256-GCM
- OAuth tokens only — no passwords stored (for OAuth connections)
- Automatic token refresh — tokens are refreshed automatically before expiry
Can Configly make changes to my Zendesk?
Yes, but only when you explicitly choose to. The Apply Changes feature lets you push virtual edits from What-If Mode to your live Zendesk instance. Every apply requires a mandatory change reason, shows drift warnings if objects changed since your simulation, and logs a full audit trail. You can rollback any apply operation with one click. Configly never makes changes to Zendesk without your explicit confirmation.
Who can see my Zendesk configuration?
Only users in your Configly account. Each account is isolated — no one else can see your connections or data.
How do I revoke access?
Two ways:
- In Configly: Delete the connection
- In Zendesk: Go to Admin > Apps & Integrations > APIs > OAuth Clients and revoke Configly
Comments
0 comments
Please sign in to leave a comment.