Privacy Policy & End User Data Agreement

Last Updated: 15/01/2026

1. Introduction

Welcome to TightShip. We respect your privacy and are committed to protecting your personal data. This policy describes how we collect, use, and share your information when you use our web and mobile applications.

This policy applies to two types of users:

  1. The Subscriber (Employer): The entity or individual who purchased the service.

  2. The End User (Employee): Individuals enrolled in the service by the Subscriber.

2. Our Relationship to Your Data

It is vital to understand our role in handling your data:

  • For the Employer: We act as a Data Processor. You control the data; we provide the tools to manage it.

  • For the Employee: Your Employer is the Data Controller. We process your data under their instructions. If you have questions about why your data is collected or how your employment contract relates to this app, please contact your Employer.

3. Data We Collect

We collect data to provide features such as Time Tracking, Task Management, Policy Compliance, and Internal Messaging.

A. Information Provided by Users

  • Identity Data: Name, email address, phone number, and employee ID.

  • Employment Data: Job title, department, and shift patterns.

  • Policy & Training Data: Records of policies reviewed, acknowledgement timestamps, and quiz scores to verify comprehension.

  • Task Data: Information input into task descriptions, completion status, and natural language comments.

B. Feature-Specific Data (High Sensitivity)

To function correctly, the App collects specific data points that may act as evidence of attendance or compliance.

  • Location Data (GPS): When starting or ending a shift, the App may request a precise GPS fix. This is used to verify you are physically present at the work location.

  • Photographic Verification (Selfies): The App may require a photo when clocking in/out. This is processed to verify the identity of the person performing the action.

  • IM & LLM Interactions: We process the content of messages sent via our internal messenger. This includes queries sent to our AI (Large Language Model) assistant.

C. Technical Data

  • Device Information: IP address, device type, operating system, and unique device identifiers.

  • Usage Logs: Login times, button clicks, and error logs.

4. How We Use Your Data

We use your data for the following purposes:

  1. Workforce Management: To accurately record working hours, calculate payroll (by the Employer), and track task completion.

  2. Compliance & Safety: To ensure employees have read and understood safety policies and company handbooks.

  3. AI Assistance: To provide automated answers to common questions via our LLM. Note: Data shared with the AI is processed to generate helpful responses.

  4. Security: To prevent fraud and unauthorized access.

5. Employee Obligations & Acceptable Use

This section is intended to supplement the End User’s employment contract regarding the specific use of TightShip. By using this application, the End User acknowledges the following:

A. Integrity of Time Records

The App serves as the formal record of attendance.

  • GPS & Geo-fencing: You agree to allow the App to access your location only during the specific moment of clocking in or out.

  • Identity: You agree that any photo taken by the App for verification purposes must be of you, taken in real-time.

  • Prohibited Conduct: Using GPS spoofing tools, submitting pre-recorded photos, or sharing login credentials to allow another to clock in for you is strictly prohibited. The Employer reserves the right to treat the falsification of these digital records as gross misconduct.

B. Use of Communication Tools

  • Professionalism: The IM and Task comment systems are for professional use only.

  • AI Interactions: Do not share highly sensitive personal health information or financial data with the AI Chatbot.

  • Monitoring: You acknowledge that the Employer has the right to review all tasks, comments, and messages sent through the platform to ensure compliance with company policy.

6. Data Sharing and Disclosure

We do not sell your personal data. We share data only in the following circumstances:

  • With the Employer: All data generated by Employees is accessible to the Employer.

  • Service Providers: We use third-party vendors for hosting (e.g., AWS/Azure), AI processing (e.g., OpenAI/Anthropic), and map services (e.g., Google Maps/Mapbox).

  • Legal Requirements: We may disclose data if required by law (e.g., a subpoena).

7. Data Retention

  • Employers: We retain your account data as long as your subscription is active.

  • Employees: Your data is retained according to your Employer’s retention policies. If you leave your job, your Employer is responsible for archiving or deleting your data.

8. Your Rights

Depending on your location (e.g., EU, UK, California), you have rights regarding your data (Access, Correction, Deletion).

  • Employees: Please direct all data subject requests to your Employer (the Controller). We will assist them in fulfilling the request.