Thank you for choosing to be part of our community at Unique Punch. We take your privacy very seriously and are committed to protecting it. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Unique Punch mobile application.
Collection of Information
Personal Data
When you use our app, we collect the following personal information:
- Identification: We capture a photograph at the start and end of your shift to verify your identity and location.
- Location Data: We collect your location data at the start and end of your shift to ensure you are at the designated work location.
Usage Data
We may collect data related to how you use the app, including how many hours you've worked, your role, and other operational data necessary for the functionality of the app.
Use of Information
We use the information we collect for various purposes, including to:
- Monitor the usage of the service.
- Assess the hours you've worked, your role, and calculate pay accordingly.
- Verify your identity and location for the shift you are working.
Retention of Data
Punch in/out pictures, location and usage data are stored securely and are only accessible by authorized personnel for auditing purposes. This allows verification of your presence at the work location if questions arise.
Disclosure of Data
We will not share your personal information with any third parties unless required by law or with your explicit consent.
Security of Data
We are committed to protecting your data and employ robust security measures, leveraging the capabilities of Firebase, our backend platform. These measures include:
- Secure Authentication: Firebase Authentication provides secure user authentication solutions, including email/password, with built-in protection against common vulnerabilities.
- Data Encryption in Transit and at Rest: Firebase uses industry-standard encryption protocols, such as TLS/SSL, to secure data transmitted between your device and our servers. Data stored in Firebase services, like Cloud Firestore and Realtime Database, is also encrypted at rest.
- Role-Based Access Control (RBAC): Firebase Security Rules allow us to define granular access control, ensuring that users can only access the data they are authorized to view or modify.
- Infrastructure Security: Firebase runs on Google Cloud Platform's secure infrastructure, which benefits from Google's extensive investments in security, including physical security, network security, and vulnerability management.
- Regular Security Updates and Patching: Firebase and Google Cloud Platform undergo continuous security monitoring and receive regular updates and patches to address potential vulnerabilities.
- Data Center Security: Google's data centers employ strict physical security measures, including biometric access controls, surveillance, and environmental safeguards.
- Compliance Certifications: Firebase and Google Cloud Platform adhere to numerous industry compliance certifications, demonstrating their commitment to security and privacy standards (e.g., ISO 27001, SOC 2).
- Secure Server Infrastructure: We utilize secure servers provided by Google Cloud Platform, which are designed to resist unauthorized access and maintain data integrity.
- Data Backup and Recovery: Firebase provides data backup and recovery capabilities, helping to protect against data loss.
Your Rights
You have the right to access, update, or delete your personal information at any time by contacting us.
Changes to this Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by updating the "Last Updated" date of this Privacy Policy.
Contact Us
If you have questions or comments about this Privacy Policy, please contact us at: