Privacy Policy

We collect and process personal data only to the extent necessary for using the app and fulfilling your work-related tasks. The following data may be collected:

• Registration data: name, email address, employee ID, username, employee photo, qualifications, department, and position
• Usage data: logins, in-app behavior, IP address
• Communication data: contents of messages and emails sent through the app
• Location data: location information
• Camera access: photos and videos, including metadata (e.g., timestamp)
• Audio functions: voice recordings, ambient sounds, and metadata (e.g., timestamp, recording duration)
• Push notifications: device information (e.g., device type, OS, unique device ID), and usage data (e.g., interactions with notifications, time of receipt and display)

The collected data are used for the following purposes:

• Provision and administration of the app
• Ensuring IT security and smooth operation of the app
• Camera: logging and documentation of events
• Audio: recording and sending of “speech-to-text” messages (dictation function)
• Push notifications: important updates about assignments, missed shifts, new features
• Internal communication between employees
• Communication with customers
• Optimization and further development of app functionalities
• Compliance with legal obligations and corporate policies

Your personal data are processed based on the following legal grounds:

• Performance of a contract or pre-contractual measures (Art. 6 (1) lit. b GDPR)
• Protection of legitimate interests of the company (Art. 6 (1) lit. f GDPR)
• For camera/audio access and push notifications: consent under Art. 6 (1) lit. a GDPR. You may withdraw your consent at any time by disabling camera permissions in the app or device settings.

Your personal data are shared only within the company and with the following external service providers and third parties, where necessary:

• Hetzner Online GmbH: Our app is hosted on servers operated by Hetzner Online GmbH, Industriestraße 25, 91710 Gunzenhausen, Germany, in data centers located in Nuremberg and Falkenstein. Personal data collected in the app are stored on these servers, including IP addresses, metadata, contact information, names, app access logs, and other app-generated data. Hosting is based on contract fulfillment (Art. 6 (1) lit. b GDPR) and our legitimate interest in secure, efficient, and professional service provision (Art. 6 (1) lit. f GDPR).
• Backblaze, Inc.: Encrypted backups are transmitted to Backblaze, Inc., 201 Baldwin Ave, San Mateo, CA 94401, USA. This ensures data loss prevention and service availability. Data processing is based on our legitimate interest (Art. 6 (1) lit. f GDPR) in maintaining system security and reliability.
• Sentry (Functional Software Inc.): We use Sentry, operated by Functional Software Inc., 132 Hawthorne Street, San Francisco, CA 94107, USA, for error reporting, debugging, and monitoring application stability. Data processing is based on our legitimate interest (Art. 6 (1) lit. f GDPR) in ensuring reliable and secure software performance.
• Firebase (Google LLC): We use Firebase, a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, for generating pseudonymized push notifications. Data processing is based on our legitimate interest (Art. 6 (1) lit. f GDPR).
• Other external service providers and third parties: This may include customers (for shift or event log reporting), law enforcement, or supervisory authorities where legally required to protect public safety or prosecute crimes, as well as other parties in compliance with statutory obligations.

Our app/web interface uses cookies. These are small text files automatically generated by the app or web interface and stored on your device (laptop, tablet, smartphone, etc.) when you use it. Cookies do not harm your device and do not contain viruses, Trojans, or other malware.

Cookies store information related to your specific device but do not directly identify you personally.

We use session cookies to make the app easier to use and to recognize that you have already visited specific pages. These cookies are deleted automatically when you close the app.

Additionally, we use temporary cookies to improve usability. These remain stored for a defined period so that your settings and entries are remembered on your next visit.

Processing of data through cookies is necessary to safeguard our legitimate interests under Art. 6 (1) lit. f GDPR.

We implement technical and organizational measures to protect your data against unauthorized access, loss, or misuse. This includes encrypted transmission and access restrictions following the latest security standards.

Your personal data are stored only as long as necessary to fulfill the stated purposes or to comply with statutory retention obligations.

You have the right to:

• Access information about your stored data
• Request correction of inaccurate data
• Request deletion of your data, provided there are no legal retention obligations
• Request restriction of data processing
• Request data portability
• Object to data processing where it is based on legitimate interests

We reserve the right to amend this privacy notice to reflect changes in legal requirements or data processing practices. The latest version can always be found in the app under “Privacy Notice.”