Privacy Policy
Last updated on: 18/09/2018
Shift One Inc ("Shift One") is committed to protecting the information provided by our clients/customers of our clients ("you" / "your" / "yourself") to enable us to offer the services via, our software titled "Shift One" ("Platform"). Shift One has provided this privacy policy ("Policy") to familiarize you with the manner in which Shift One uses and discloses information disclosed by you to Shift One.
The terms of the Policy shall govern your use of the Platform accessed through the Shift One website http://shiftone.com/ or through its mobile application. BY ACCESSING AND USING THE PLATFORM AND AVAILING THE SERVICES OFFERED BY Shift One ("SERVICES"), YOU AGREE TO THE TERMS OF THIS POLICY. BY CONSENTING TO AVAIL OUR SERVICES, YOU HEREBY CONSENT TO THE SHARING OF YOUR/YOUR CUSTOMER INFORMATION AS PROVIDED IN HEREIN. IF YOU DO NOT AGREE WITH THESE TERMS, PLEASE DO NOT ACCESS AND USE THE PLATFORM.
Shift One reserves the right, at its discretion, to change, modify, add or remove portions of this Policy at any time. Shift One recommends that you review this Policy periodically to ensure that you are aware of the current privacy practices.
Collection of Information
Shift One may collect the following information when you create your account with Shift One:
Name, email address, employee ID or similar information (“Customer Information”). However, Shift One does not require or seek the disclosure of any sensitive personal data / information such as passwords, financial information (details of bank account, credit card, debit card, or other payment instrument details), medical history and health records.
If you do not provide Customer Information that is classified as mandatory by Shift One, you may not be able to avail the Services offered by Shift One.
You represent that the Customer Information/data you provide from time to time is and shall be correct, current and updated and that, if you are a Client, prior to such disclosure of Customer Information to us, you have obtained all the rights, permissions and consents from your customers / proposed customers to provide such Customer Information for use by us in the manner provided herein. You also represent that your providing the Customer Information and Shift One’ consequent storage, collection, usage, transfer, access or processing of the same shall not be in violation of any third party agreement, laws, judgments, orders or decrees.
Shift One may also collect non-personal information, i.e., information that does not identify any individual, and includes session and usage data, log data and aggregate information collected through cookies. Data in cookies may be read to authenticate user sessions or provide other services. Shift One may install cookies or other similar data collection software in your computer system/device for such purpose and you hereby consent to the same.
With respect to non-personal information, you have the option of preventing your browser from accepting new cookies or disabling cookies altogether. Further, you can also disable or delete similar data used by browser add-ons by changing the add-on’s settings.
Additionally, Shift One may collect user images and videos only after obtaining their consent, particularly if they wish to use the TeamStream feature within the app or change their profile picture.
Cookies And Third Party Technologies
Shift One uses cookies and other identification technologies on our apps, websites, emails, and online ads for purposes described in this policy.
Cookies are small text files that are stored on your browser or device by websites, apps, online media, and advertisements. Shift One uses cookies and similar technologies for purposes such as:
Authenticating users
Remembering user preferences and settings
Determining the popularity of content
Analyzing app traffic and trends, and generally understanding the online behaviors and interests of people who interact with our services
Use of Information
Shift One collects only such Customer Information that Shift One believes to be relevant and is to provide the Services to you effectively. Shift One limits the disclosure of Customer Information to Shift One’ employees, independent contractors, affiliates, consultants, business associates, service providers and distributors, on a need-to-know basis, and only if the disclosure will enable such person / entity to provide Shift One with business, professional, or technical support to provide the Services.
Shift One does not rent, trade or sell the Customer Information in any manner, except as specified herein or if express consent is sought from you. The Customer Information will be kept confidential to the maximum possible extent and will be used to support your relationship with Shift One. The information so provided by you to Shift One or otherwise captured by Shift One may be used for a number of purposes connected with Shift One’ business operations which may include the following:
If you are a Client:
to contact you to seek feedback regarding the services offered to you;
to determine your net promoter score and to use the same for internal purposes of Shift One;
to facilitate real time conversations between you and and others;
to facilitate support of the platform
Customer Consent
You acknowledge that if you are a Client, prior to making any Customer Information available to Shift One, You shall obtain all the necessary consents from the customers / proposed customers for use of the Customer Information by Shift One in the manner stated herein. You (and not Shift One) shall be liable to such third parties for any claims of unauthorized access, disclosure / dissemination and use of such Customer Information. You further agree to indemnify Shift One from and against any and all losses, liabilities, damages, interest, penalties, cost and expenses (including reasonable attorney’s fees) incurred as a result of any such claims, suits, actions, judgments or causes of action or other proceedings brought by your customers/proposed customers against Shift One, pertaining to the use and disclosure of the Customer Information.
Information Security and Storage
Shift One uses reasonable security measures, at the minimum those mandated under the Information Technology Act, 2000 as amended from time to time to safeguard and protect the Customer Information. Shift One implements such measures, as stated above, to protect against unauthorized access to, and unlawful interception of, Customer Information. You accept the inherent security implications of providing information over Internet/ cellular / data networks and will not hold Shift One responsible for any breach of security or the disclosure of Customer Information unless Shift One has been grossly and wilfully negligent.
The Customer Information will primarily be stored in electronic form. However, certain data can also be stored in physical form. Shift One may store, collect, process and use the Customer Information in countries other than the Republic of India but under full compliance with applicable laws. Shift One may enter into agreement with third parties (in or outside of India) to store the Customer Information. These third parties may have their own security standards to safeguard the Customer Information and Shift One will on commercial reasonable basis require such third parties to adopt reasonable security standards to safeguard the Customer Information.
Shift One shall not be responsible for any breach of security or for any actions of any third parties that receive the Customer Information.
Notwithstanding anything contained in this Policy or elsewhere, Shift One shall be under no liability whatsoever in case of occurrence of a force majeure event, including in case of non-availability of any portion of the Platform and/or Services occasioned by act of God, war, disease, revolution, riot, civil commotion, strike, lockout, flood, fire, failure of any public utility, man-made disaster, infrastructure failure, technology outages, failure of technology integration of partners or any other cause whatsoever, beyond the control of Shift One. Further, in case of a force majeure event, Shift One shall not be liable for any breach of security or loss of data uploaded by you to the Platform.
Access, Correction and Deletion
If you wish to have the Customer Information that you have provided to Shift One amended or deleted, you can always do so by sending a request to us on the e-mail id support@shiftone.com. Shift One may retain back-up and other data for as long as required by applicable laws and normal business prudence.
General Provisions
Unless stated otherwise, the Policy applies to all Customer Information provided by you to Shift One. Shift One may make changes to this Policy, from time to time at Shift One's sole discretion or on account of changes in law.
In case of an amalgamation, merger, acquisition or business transfer between Shift One and a third party, Shift One shall have the right to transfer all Customer Information provided by You to the acquirer.
Special Information For EU Users
Beginning May 25, 2018, the processing of personal data of users in the European Union is subject to the EU General Data Protection Regulation ("GDPR"). This section provides information as relates to EU users' rights, and Shift One's responsibilities, under this regulation.
EU User Rights
If you are a Shift One user in the EU, you have the following rights with respect to Shift One's handling of your personal information. To exercise these rights, please see below.
Users outside the EU may also request explanation, correction, deletion or copies of their personal data.
Explanation and copies of your data
You have the right to request an explanation of the information that Shift One has about you and how Shift One uses that information.
You also have the right to receive a copy of the information that Shift One collects about you if collected on the basis of consent or because Shift One requires the information to provide the services that you request.
Correction
If Shift One has information about you that you believe is inaccurate, you have the right to request correction of your information. Please see the section titled "Explanation, Copies and Correction" below for more information on correcting, or requesting correction of, your information.
Deletion
Users may request deletion of their accounts at any time. Users may request deletion by contacting the Controller on whose behalf Shift One is having the conversation with you. We may retain certain information about you as required by law and for legitimate business purposes permitted by law.
Objections and complaints
Users in the EU have the right to object to Shift One's processing of personal data, including for marketing purposes based on profiling and/or automated decision making. Shift One may continue to process your information notwithstanding the objection to the extent permitted under GDPR.
Users in the EU also have the right to file a complaint relating to Shift One's handling of your personal information with the Data Protection Officer. Their contact information is as follows:
You may also submit questions, comments or complaints to Shift One's Data Protection Officer.
Grounds for Processing
The GDPR requires that companies processing the personal data of EU users do so on the basis of specific legal grounds. As described below, Shift One processes the information of EU users based on one or more of the grounds specified under the GDPR:
The processing is necessary to provide the services and features you request
Shift One must collect and use certain information in order to provide its services. This includes:
User profile information that is necessary to enable communications with you about your interaction with the brand, and to enable the brand to gain insights from the response provided.
Transaction information, which is necessary to group the conversations and derive analytical insights from them.
Collection and use of this information is a requirement for using Shift One's apps.
The processing is necessary to protect the vital interests of our users or of others
Shift One may process personal information, including disclosing data with law enforcement authorities in case of threats to the safety of users or of others.
The processing is necessary for Shift One's legitimate interests
Shift One collects and uses personal information to the extent necessary for its legitimate interests. This includes collecting and using information:
To maintain continuous conversation with the user on an interaction with the brand.
To avoid repeated conversation requests in case of frequent interactions.
To provide customer support.
For research and analytical purposes. This includes, for example, analyzing usage trends to improve the user experience and enhance the service and product offering of our client.
To enforce Shift One's Terms of Service.
The processing is necessary for the legitimate interests of other persons or parties
Shift One collects and uses personal information to the extent necessary for the interests of other persons or the general public.
Shift One may also process personal information when necessary in regards to a substantial public interest, on the basis of applicable laws.
Consent
Shift One may collect and use your information on the basis of your consent. You may revoke your consent at any time. If you revoke your consent, you will not be able to use any service or feature that requires collection or use of the information we collected or used on the basis of consent.
Shift One relies on consent in connection with data collections or uses that are necessary to enhance the user experience, to enable optional services or features, or to communicate with you. If you are an EU user, the following types of data collections or uses are done on the basis of your consent.
Device Information (Customers)
Notifications: SMS and email (Customers)
Notifications: Alerts and emails (Brand Managers)
Please see the Choice & Transparency section below for further information about these data collections and uses, how to opt in or out of them, and the effect of opting out of these on your use of Shift One's apps.
Shift One may also collect personal information about you through voluntary surveys. Your responses to such surveys are collected on the basis of consent, and will be deleted once no longer necessary for the purposes collected.