Privacy Policy

Last updated: February 2026

1. Introduction

Sisu Shift ("we", "us", "our") is a healthcare scheduling platform operated in Finland. We are committed to protecting your personal data and complying with the EU General Data Protection Regulation (GDPR) and applicable Finnish data protection laws.

2. Data We Collect

• Account Information: name, email address, phone number, and role/title
• Shift & Schedule Data: work schedules, shift times, facility assignments, and team memberships
• Earnings Data: salary settings, hourly rates, tax rates, and calculated earnings
• Device Information: device type, operating system, app version, and crash reports
• Usage Data: app interactions and feature usage for service improvement
• Authentication Data: encrypted credentials and biometric authentication preferences

3. How We Use Your Data

Your data is used to provide and maintain the scheduling service, calculate earnings based on Finnish labor law, enable team collaboration and shift swapping, send notifications about schedule changes, improve app performance, and comply with legal requirements.

4. Data Storage & Security

Your data is stored on Supabase infrastructure within the European Union. All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Row Level Security ensures users can only access their own data.

5. Your GDPR Rights

You have the right to access, rectify, erase, port, restrict processing of, and object to the processing of your personal data. To exercise these rights, contact us at privacy@sisushift.net.

6. Contact

Data Controller: Sisu Shift
Email: privacy@sisushift.net