Privacy Policy

This policy explains what StaffShiftr collects, how we use it, and your choices. StaffShiftr is a workforce-scheduling tool and is not designed to hold patient information — see our Terms.

What we collect

• Account data: your name, work email, password hash, and organization.
• Provider profiles: names, roles, credentials, FTE, optional email/phone for shift alerts, and scheduling preferences.
• Scheduling data: shifts, assignments, requests, swaps, and the audit log of admin actions.
• Usage & device data: basic logs needed to operate and secure the Service.

How we use it

Solely to provide the Service: building and publishing schedules, sending shift and schedule notifications you opt into (email, SMS, push), payroll-hours export, and securing and improving the product. We do not sell your data.

Subprocessors

We rely on a small set of vendors to run the Service:

• Vercel — application hosting;
• Neon — PostgreSQL database;
• Anthropic — the AI scheduling assistant (processes only the text you submit to it);
• Resend (email) and Twilio (SMS) — only when you enable those notifications.

Tenant isolation

Each organization’s data is scoped to that organization. We design access controls so one group cannot read or modify another group’s data.

Data retention, export & deletion

We keep your data while your account is active. Owners can export their organization’s data and request deletion of the organization, after which we delete it from active systems within a reasonable period (backups age out on their normal cycle).

Security

Passwords are hashed, data is encrypted in transit, and access is tenant-scoped and role-based. No system is perfectly secure, but we work to protect your data and to notify you of incidents as required by law.

Your choices

You can update your profile, opt out of non-essential notifications, export your data, and request deletion. For requests, contact your organization’s owner or us directly.

Contact

Questions or requests: upliftmedicinefl@gmail.com.