Your privacy matters to us
This Privacy Policy describes how we collect, use, store, and protect employee and organizational data when you use our Chandramari Global Platform (“Service”). The platform is designed to help businesses manage employees, attendance, scheduling, task allocation, payroll insights, and related workforce operations. By using the Service, you agree to the collection and use of information as outlined in this policy.
To operate and improve our workforce management platform, we collect different categories of data from employees and company administrators.
This may include employee name, email address, phone number, employee ID, and other HR-related information required for account creation and verification.
We collect email and password (encrypted) or OAuth account details (Google login) to securely authenticate users. No plain-text passwords are stored.
Facial images are captured only after users provide explicit consent through a mandatory pre-capture consent screen. Users must tap “I Consent” to proceed. If consent is declined, facial capture is completely disabled with no alternative method. Captured facial images are processed using AWS Rekognition to generate facial biometric identifiers. Facial images are securely stored using Cloudinary. AWS Rekognition and Cloudinary act solely as data processors and do not use face data for their own purposes.
All facial images and generated biometric identifiers are securely tagged with the user’s unique account ID to ensure correct association with the respective employee and prevent unauthorized use.
Facial images and biometric identifiers are retained only for the duration of the user’s active account. Upon account deletion, all associated facial images and biometric identifiers are permanently deleted from our systems and third-party processors.
When users choose to connect their Google Calendar, the app uses the Google Calendar API to read events related to work schedules and attendance and to create, update, or modify meetings and reminders related to work shifts or attendance. Calendar data is accessed strictly for these purposes and is not stored permanently outside the user’s account.
We use AWS Rekognition for facial image processing and biometric identifier generation, Cloudinary for secure storage of facial images, and Google Calendar API for reading and writing calendar events related to scheduling, attendance verification, and meeting creation.
Users are clearly informed in-app and through this Privacy Policy about what data is collected, how it is processed, the third-party processors involved, and their rights to decline data collection or revoke consent at any time.
The app uses background location access to allow users to mark their attendance within specific office or worksite premises. Location data ensures that attendance can only be recorded when the user is physically present in the authorized area. This feature helps maintain accurate and reliable attendance records. Location data is used only for attendance verification and not stored or shared for any other purpose.
If connected, we may access Google Calendar data to sync meetings, reminders, and shift schedules. Only events relevant to attendance or work schedules are accessed.
We automatically collect data such as device type, IP address, browser, timestamps, and interaction logs to improve system performance, security, and user experience.
We use collected data to operate, secure, and improve our platform, including: • Employee onboarding and account authentication • Attendance tracking and biometric verification • Location-based validation for field employees • Managing work schedules, tasks, leave requests, and payroll data • Syncing and scheduling meetings via Google Calendar • Sending notifications, reminders, and updates • Monitoring usage to detect unauthorized access or fraud • Improving performance, analytics, and workforce insights
We implement industry-standard security practices to protect personal and company data, including encryption, access control, and secure cloud storage. However, no system is 100% secure, and we cannot guarantee absolute protection against breaches.
We use cookies, tokens, and similar technologies to maintain user sessions, improve performance, and enable secure login. You may disable cookies in your browser, but some features may stop working.
We may integrate with or use third-party platforms (such as Google APIs, cloud hosting, and analytics providers). These services may process limited user data only for the purpose required and are bound by strict confidentiality and data protection agreements.
Employees have the right to view, request correction, restrict processing, or request deletion of their data where applicable. Certain data required for employment, compliance, or attendance records may not be eligible for deletion. Requests may be processed through the employer or through our support team.
We retain employee and company data only as long as required for business, legal, or audit purposes. Biometric and location data are retained strictly for attendance and verification records unless otherwise requested by the employer.
We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated 'Last Updated' date. Continued use of the platform after changes implies acceptance of the new terms.
If you have questions regarding this Privacy Policy or how your data is handled, please contact us at info@shiftertech.com
This Privacy Policy is provided for transparency regarding how employee and organizational data is handled within our Chandramari Global Platform. Your organization may have additional legal or contractual obligations related to employee privacy. We recommend reviewing this policy with legal counsel to ensure compliance with regional data protection laws and workplace regulations.