Legal
Effective: May 1, 2026 · Last updated: May 1, 2026
We collect what we need to run ShiftSee: your account info, shift history, messages, payment metadata, and app usage data. We use it to operate the Platform, process payments, prevent fraud, and improve the service. We do not sell your data. We share it with necessary service providers (Stripe for payments, cloud hosts, support tools). You have rights to access, correct, and delete your data — the details depend on where you live (EU, Canada, California, elsewhere). We retain financial records for 7 years (tax law), account data for 2 years after deletion, and operational logs as needed for fraud prevention.
Detail below.
SHIFTSEE, INC. — PRIVACY POLICY. Effective Date: May 1, 2026.
ShiftSee, Inc. ("ShiftSee," "we," "our," or "us") provides this Privacy Policy to explain how we collect, use, disclose, retain, and safeguard personal information when you use our platform, website, mobile apps, and related services (the "Platform").
By creating an account or using the Platform, you agree to this Privacy Policy. If you do not agree, you must not use ShiftSee.
ShiftSee, Inc. · 1111B S Governors Ave STE 37819 · Dover, DE 19904, USA · support@shiftsee.com
We do not purchase third-party consumer profiles or marketing data.
We use the information we collect to operate, maintain, and improve the Platform; facilitate shift matching and communication; authenticate Users and manage accounts; process payments and payouts; verify clock-in and clock-out activity; prevent fraud, abuse, and unsafe behavior; provide customer support; resolve time or payment disputes; operate ratings and trust features; enforce our Terms of Service; meet legal, regulatory, and tax obligations; and develop new features and enhancements.
We never sell personal information for money, and we do not "share" personal information for cross-context behavioral advertising as those terms are defined under California privacy law.
ShiftSee uses automated systems, including machine-learning models, to detect fraud and abuse, analyze reliability metrics (lateness, no-shows, cancellations), recommend shift matches, maintain Platform safety and integrity, and produce analytics. AI Systems may categorize, score, or rank Users. AI outputs may be incomplete or inaccurate. Users acknowledge that AI outputs are informational only. Where applicable law grants rights regarding automated decision-making (including GDPR Article 22 and BC PIPA), you may exercise those rights as described in §§8–10.
For Users in the European Economic Area and United Kingdom, our lawful bases are: contract performance (to provide the Platform and process shifts and payments); legitimate interests (security, fraud prevention, analytics, dispute resolution, and Platform improvement; we balance our interests against your rights); consent (where explicitly required, e.g., non-essential cookies, marketing communications); legal obligations (regulatory, tax, accounting, and law-enforcement compliance); vital interests (safety-related disclosures).
To enable shift coordination, messaging, ratings, and confirmations, certain information is visible to other Users. Public profile information includes first name, last initial, city, rating, roles, and shift history. Full last names, contact details, and specific addresses are never visible to Users who are not actively connected and transacting with you.
We share data with service providers who operate parts of our business. As of the effective date above, these include:
These providers process data on our behalf under written agreements with confidentiality and security obligations.
We may disclose data when required by subpoenas, court orders, or other valid legal processes; investigations by law enforcement or regulators; enforcement of our Terms of Service; or protection of the rights, safety, or property of ShiftSee, Users, or the public.
If ShiftSee undergoes a merger, acquisition, investment, restructuring, or asset sale, personal data may be transferred as part of the transaction, subject to the acquirer honoring this Privacy Policy or providing substantially similar protection.
ShiftSee is a Delaware corporation with operations in the United States and Canada. If you are outside these countries, your information will be transferred to and processed in the US or Canada, which may have different data protection laws than your country. For transfers from the European Economic Area, United Kingdom, and Switzerland, we use appropriate safeguards, including the European Commission's Standard Contractual Clauses. Copies available on request at support@shiftsee.com.
We retain data for different periods depending on category and legal requirements:
Users in the EEA and UK have the following rights: Access (request a copy of personal data), Rectification (request correction of inaccurate data), Erasure (request deletion of certain data, subject to legal retention obligations), Restriction (request that we limit processing), Objection (object to processing based on legitimate interests, including direct marketing), Data portability (receive your data in a structured, machine-readable format), Withdraw consent (where processing is based on consent), Lodge a complaint (with your local data protection authority), Object to automated decision-making (under GDPR Article 22).
To exercise these rights, email support@shiftsee.com. We may require identity verification and will respond within 30 days.
California residents have rights under the CCPA as amended by the CPRA: right to know, right to delete, right to correct, right to opt out of "sale" or "sharing" of personal information, right to limit use of sensitive personal information, right to non-discrimination. ShiftSee does not sell or share personal information for cross-context behavioral advertising.
Categories collected (last 12 months): identifiers (name, email, phone, IP); commercial information (shift history, payment metadata); internet or network activity (Platform usage); geolocation (approximate and, with permission, precise); professional or employment-related information (roles, experience); inferences drawn from the above (reliability scores, match recommendations).
To exercise your rights, email support@shiftsee.com. We will verify your identity before responding.
Canadian Users are protected by the Personal Information Protection and Electronic Documents Act (PIPEDA) federally, and by provincial privacy laws where applicable (BC PIPA, Alberta PIPA, Quebec). Canadian Users have the right to access, correct, withdraw consent (subject to legal/contractual obligations), and complain to ShiftSee's Privacy Officer or to the Office of the Privacy Commissioner of Canada (priv.gc.ca) or your provincial commissioner.
ShiftSee's Privacy Officer email: privacy@shiftsee.com. We respond within 30 days as required by PIPEDA.
ShiftSee uses cookies, pixels, local storage, and similar technologies to authenticate Users and maintain sessions (strictly necessary), remember preferences (functional), analyze Platform usage (analytics), and prevent fraud and abuse (security). Users may disable non-essential cookies through browser settings or our cookie preferences tool (where available). Disabling strictly necessary cookies will impair Platform functionality. For EU and UK Users, we present a cookie consent banner on first visit.
Most browsers offer a "Do Not Track" (DNT) feature. There is currently no industry-standard response to DNT signals. ShiftSee does not currently respond to DNT signals, but we do honor the California "Global Privacy Control" (GPC) signal as a valid opt-out for California residents.
We use commercially reasonable measures to protect personal data, including encryption in transit (TLS) and at rest, secure password storage (salted hashes), access controls and employee training, fraud detection and monitoring systems, and security audits. No platform can guarantee absolute security. If we become aware of a data breach affecting your personal information, we will notify you as required by applicable law.
ShiftSee is strictly 18+. We do not knowingly collect personal information from anyone under 18. If we learn that a minor has created an account, we will delete it immediately. Parents or guardians who believe their minor has used the Platform may contact support@shiftsee.com.
We may update this Privacy Policy from time to time. If material changes are made, we will notify Users by email or in-app notification at least 14 days before the changes take effect. Continued use of the Platform after the effective date of any change constitutes acceptance.
You also have the right to lodge a complaint with your local data protection authority. EU: your country's supervisory authority (list at edpb.europa.eu). UK: Information Commissioner's Office (ico.org.uk). California: California Privacy Protection Agency (cppa.ca.gov). Canada: Office of the Privacy Commissioner of Canada (priv.gc.ca) or your provincial commissioner.
