Privacy Policy
Last Updated: March 23, 2026
1. Introduction
Welcome to ShiftRova Pty Ltd (“ShiftRova”, “we”, “our”, or “us”). We are committed to protecting your personal information and your right to privacy. This policy describes how we collect, use, and share your personal information when you use our website, mobile applications, and workforce management services (collectively, the “Services”).
2. Information We Collect
We collect information that you voluntarily provide to us when registering for the Services, expressing an interest in obtaining information about us, or otherwise contacting us.
- Personal Information Provided by You: Names, phone numbers, email addresses, job titles, passwords, and organization details.
- Employee Data: Employers (our primary customers) input data regarding their employees, including shift schedules, hourly rates, GPS location data during clock-ins (if enabled), and employment compliance documentation.
- Payment Data: We collect data necessary to process your payment if you make purchases, such as your payment instrument number. All payment data is stored by our payment processor (Stripe).
- Usage Data: We automatically collect certain information when you visit, use or navigate the Services (e.g., IP address, browser characteristics).
3. How We Use Your Information
We use personal information collected via our Services for a variety of business purposes, including:
- To facilitate account creation and logon process.
- To provide and manage workforce scheduling, communications, and compliance tracking.
- To enforce our terms, conditions, and policies for business purposes.
- To respond to legal requests and prevent harm.
4. Location Tracking (GPS Geofencing)
If enabled by an organization administrator, the ShiftRova mobile app may collect precise geolocation data from employees when they explicitly use the “Clock In” or “Clock Out” functionalities. This data is used solely to verify attendance at the specified work site boundary. We do not continuously track employee locations in the background after they have clocked in.
5. Cookies & Local Storage
Cookies are small text files placed on your device by a website to help it function correctly and remember your preferences. In accordance with the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs), we are transparent about the cookies we use and the purpose of each one.
ShiftRova uses only strictly necessary and functional cookies. We do not use any advertising, tracking, or third-party analytics cookies.
| Cookie Name | Purpose | Type |
|---|---|---|
| next-auth.session-token __Secure-next-auth.session-token | Authenticates your login session, keeping you signed in while you use the platform. | Strictly Necessary |
| next-auth.csrf-token | Prevents cross-site request forgery (CSRF) attacks to protect your account security. | Strictly Necessary |
| next-auth.callback-url | Remembers where to redirect you after you have successfully logged in. | Strictly Necessary |
| sidebar_state | Remembers whether you have the navigation sidebar open or closed within the dashboard. | Functional |
| activeOrgId | Remembers which organisation account you last selected if you belong to multiple organisations. | Functional |
Because we only use strictly necessary and functional cookies, you can continue to use all features of the ShiftRova platform regardless of your cookie preferences. However, if you delete or block cookies via your browser settings, you will be required to log in again and your interface preferences will be reset.
You can manage or delete cookies at any time through your browser's settings. For more information, refer to your browser's help documentation.
6. Data Retention & Security
We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required by law (such as tax, accounting, or labor compliance requirements). We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process.
7. Contact Us
If you have questions or comments about this notice, you may email us at privacy@shiftrova.com or by post to:
ShiftRova Pty Ltd
Sydney, NSW
Australia