Privacy Policy

1. Introduction

ClockIn+ ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our attendance management platform.

2. Information We Collect

2.1 Personal Information

When you register for ClockIn+, we collect:

• Full name and email address
• Organization name and details
• Password (encrypted)
• Employee/member identification numbers (optional)

2.2 Attendance Data

When you use the Service, we collect:

• Check-in and check-out timestamps
• Location data (if geofencing is enabled)
• Device information for QR code scanning
• Session participation records

2.3 Automatically Collected Information

• IP address and browser type
• Device identifiers
• Usage patterns and feature interactions
• Cookies and similar tracking technologies

3. How We Use Your Information

We use the collected information to:

• Provide and maintain the ClockIn+ service
• Process attendance records and generate reports
• Send service-related notifications and updates
• Improve our service and develop new features
• Respond to customer support requests
• Detect and prevent fraud or abuse
• Comply with legal obligations

4. Data Sharing

We do NOT sell your personal data. We may share data with:

• Your Organization: Administrators can view attendance data of their members
• Service Providers: Third-party vendors who assist in operating our service (hosting, email)
• Legal Requirements: When required by law or to protect our rights

5. Data Security

We implement industry-standard security measures:

• Encryption of data in transit (TLS/SSL) and at rest
• Secure password hashing (bcrypt/Argon2)
• Regular security audits and penetration testing
• Access controls and authentication mechanisms
• Multi-tenant data isolation

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security of your data.

6. Data Retention

We retain your data as follows:

• Active accounts: Data retained while account is active
• Deleted accounts: Data deleted within 30 days of account deletion
• Attendance records: Retained based on your organization's settings (up to 7 years for compliance)
• Backup data: Purged within 90 days of deletion

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data ("Right to be Forgotten")
• Portability: Export your data in a machine-readable format
• Object: Opt-out of certain data processing activities
• Withdraw Consent: Revoke previously given consent

To exercise these rights, contact us at privacy@clockinplus.com.

8. Cookies

We use cookies and similar technologies for:

• Essential Cookies: Required for the Service to function
• Authentication: Keep you logged in securely
• Preferences: Remember your settings
• Analytics: Understand how you use the Service (optional)

You can manage cookie preferences in your browser settings. Disabling essential cookies may affect Service functionality.

9. Children's Privacy

ClockIn+ is not intended for users under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected data from a minor, please contact us immediately.

10. International Data Transfers

Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place, such as Standard Contractual Clauses, to protect your data during international transfers.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Service. The "Last updated" date at the top indicates when the policy was last revised.

12. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us: