We are using Zendesk in a regulated medical context. As such, we have a BAA with Zendesk to protect the PHI of our users per HIPPA regulation.
My ask is this:
We want to use the Facebook and Twitter channels - but I need a very clear - engineering level - explanation of what enabling the integration allows the two applications to share. Our primary concern is any data that Twitter may have access to via the API connection - as that is not a BAA'd tool. If, for example, the integration would enable Twitter to 'read' our user list in Zendesk - that would be a no-go.
If the tools do not grant any information to Twitter or Facebook, but just enable a messaging interface, that would be useful information.
May I have a link or any information you can get around how permissions work with these apps in Zendesk? I found a similar page where Twitter explains what third party apps will have access to: https://help.twitter.com/en/managing-your-account/connect-or-revoke-access-to-third-party-apps
PS I'm also writing in with a ticket.