Privacy Policy

1. Who uses Shiftend

Shiftend is a workplace tool licensed by restaurants. Two categories of people use the Service:

• Restaurant operators (owners, general managers, FOH/BOH managers) — administer their restaurant, configure integrations, and view reports.
• Restaurant staff — view their assigned training, certifications, daily Pre-Shift briefings, and resources via the Shiftend Team mobile app or web staff portal.

When you use Shiftend through your employer, your employer is the data controller for the operational information you submit (shift notes, acknowledgments, certifications). Shiftend processes that information on their behalf.

2. Information we collect

From you directly

• Account information — name, email address, password (hashed and stored by our authentication provider Clerk), assigned role, restaurant assignment.
• Profile metadata — position, department, hire date, certifications you upload (Smart Serve, Food Handler, etc.).
• Acknowledgments and content interactions — timestamps when you mark training material as read, pin items, or view resources.
• Push notification token — if you grant the Shiftend Team mobile app permission to send notifications, we store an Expo push token tied to your account so we can deliver cert-expiry, onboarding, and Pre-Shift alerts.

From your restaurant's integrations

• POS data — sales totals, item-level sales counts, voids, discounts (Silverware POS uploads or future API).
• Labour data — schedules, time punches, payroll categories (Push Operations).
• Reservations — guest counts, party size, channel (OpenTable).

These uploads are scoped to the restaurant that licenses Shiftend. Other restaurants cannot see them.

Automatically

• Device + technical info — browser type, OS, IP address, request timestamps. Used for security, abuse prevention, and basic operational metrics.
• Crash reports and performance — aggregate error traces from the mobile app and web. We do not collect screen recordings or screenshots.

3. How we use your information

• To provide the Service — sign-in, deliver training content, run scheduled reports, send shift-end summaries.
• To send notifications you've opted in to (push notifications, email reports).
• To detect and prevent unauthorized access or abuse.
• To respond to support requests.
• To improve the Service in aggregate. We do not sell personal information. We do not use customer content to train AI models.

4. Third parties we share information with

Shiftend uses a small set of vetted vendors to operate the Service. We share only what each vendor needs to do their job:

• Clerk (clerk.com) — authentication, password and multi-factor management.
• Resend (resend.com) — transactional email delivery (password resets, invitations, daily shift-end reports).
• Cloudflare R2 — object storage for Team Hub files (training documents, cert images).
• Railway (railway.app) — application hosting for the API + database.
• Vercel (vercel.com) — application hosting for the web dashboard and marketing site.
• Expo (expo.dev) — push notification delivery to iOS and Android devices.
• Anthropic(anthropic.com) — when a restaurant uses an AI feature (forecasting summaries, alert explanations), the relevant aggregated metrics are sent to Anthropic's Claude API for inference. Anthropic does not train on inputs by default.

We do not sell, rent, or trade personal information to advertisers or data brokers.

5. Data retention

• Active account data— retained while your restaurant's subscription is active.
• Deactivated accounts— your role on the team is archived. Operational records you authored (acknowledgments, shift notes, content uploads) are retained for the restaurant's historical attribution. You can request deletion of your personal profile fields by contacting us.
• Push tokens — revoked the moment Apple/Google reports the device is unreachable, or 90 days after last seen.
• Restaurant subscription cancelled — operational data is exportable for 90 days after cancellation, then permanently deleted from our systems and storage backups within 180 days total.

6. Your rights

Depending on your jurisdiction (PIPEDA in Canada, GDPR in the EEA, CCPA in California), you may have rights to access, correct, delete, or port your personal information. Contact us at privacy@shiftend.ai and we will respond within 30 days.

You can disable push notifications at any time from your device settings. You can sign out of the mobile app from the Home tab (top-right) — your device's push token is revoked on sign-out.

7. Children's privacy

Shiftend is a workplace tool intended for adults (typically 18+). We do not knowingly collect personal information from children under 13. Restaurants that employ minors must comply with their jurisdiction's labour and privacy laws when assigning Shiftend accounts.

8. Security

We apply industry-standard safeguards: encryption in transit (TLS), encryption at rest for object storage, role-based tenant isolation on every API endpoint, audit logging for sensitive actions, and off-site encrypted database backups. No system is impervious; report suspected vulnerabilities to security@shiftend.ai.

9. International transfers

Our infrastructure is hosted in the United States (Railway us-east4, Vercel global edge). If you are located outside the United States, your information will be transferred to and processed in the United States, which may have different data protection rules than your jurisdiction.

10. Changes to this policy

We may update this Privacy Policy as the Service evolves. Material changes will be announced in-product (banner on dashboard sign-in) and via email to administrators at least 30 days before they take effect. The "Last updated" date at the top of this page reflects the most recent version.

11. Contact us

Privacy questions, data subject requests, or anything else: privacy@shiftend.ai.