Privacy Policy for EasyShiftHQ
Effective Date: October 15, 2025
EasyShiftHQ ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal data when you use our SaaS platform at easyshifthq.com, in accordance with the General Data Protection Regulation (GDPR).
1. Who We Are
Website: https://easyshifthq.com
Service Type: Software-as-a-Service (SaaS)
Audience: Business users, including EU residents
Contact Email: contact@easyshifthq.com
2. What Personal Data We Collect
We collect the following types of personal data:
- Name
- Email address
- IP address
- Payment information
- Cookies and usage data
3. How We Collect Data
We collect your personal data through:
- Signup forms
- Account registration
- Cookies and tracking tools (via analytics)
- Payment processing systems
- Email delivery services
4. Why We Collect Your Data
We process your personal data for the following purposes:
- To provide and manage our services
- To offer customer support
- To process payments
- To improve and personalize user experience
- To analyze how our services are used (analytics)
5. Legal Basis for Processing (Under GDPR)
We process your personal data based on the following legal grounds:
- Your consent (e.g. accepting cookies, subscribing to emails)
- Performance of a contract (e.g. using our platform as a registered user)
- Legitimate interests (e.g. improving platform functionality)
- Legal obligations (e.g. financial recordkeeping)
6. Consent and Your GDPR Rights
We obtain explicit user consent where required, particularly for:
- Cookie usage
- Marketing communications
As a user, you have the following rights under GDPR:
- Right to access – Know what personal data we hold about you
- Right to rectification – Correct inaccurate or incomplete data
- Right to erasure – Request deletion of your data ("right to be forgotten")
- Right to restrict processing – Limit how we use your data
- Right to data portability – Receive your data in a transferable format
- Right to object – Object to how your data is used
- Right to withdraw consent – At any time, where applicable
You can exercise your rights by contacting us at contact@easyshifthq.com.
7. Sharing of Data with Third Parties
We share user data only for functional purposes, with trusted third-party service providers:
| Provider | Purpose | Location |
|---|---|---|
| PostHog | Product analytics | USA |
| Vercel | Website and usage analytics | USA |
| Stripe | Payment processing | USA |
| Resend | Transactional emails | USA |
All third-party providers are vetted and required to comply with data protection laws and implement adequate safeguards.
8. International Data Transfers
Your personal data may be stored or processed in the United States. When data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses (SCCs)
- Security certifications and audits
- Contracts ensuring GDPR compliance
9. Data Security Measures
We take your data security seriously and have implemented:
- End-to-end encryption
- Row-level security
- Role-based access control (RBAC)
- Access management protocols
- Security certifications and audit logs
These measures help protect your data from unauthorized access, alteration, or disclosure.
10. Data Retention
We only keep personal data as long as necessary. Specifically:
- User accounts are deleted after 12 months of inactivity
- Analytics and cookie data is stored in accordance with our cookie policy
If you wish to delete your data sooner, contact us anytime.
11. Policy Updates
We may update this Privacy Policy from time to time. When we do:
- We will post the new policy on this page
- You may receive a notification (if required or if significant changes are made)
We recommend checking this page periodically.
12. Contact Us
If you have questions about this Privacy Policy or want to exercise your rights, contact us at: