Privacy Policy - Updated June 1, 2025
1. Introduction
NextShift provides a comprehensive task management software designed to optimize project workflow and enhance productivity for businesses and individual users alike ('Customers', 'Users', or 'you'). Our platform, NextShift, integrates advanced task management features with intuitive interfaces to facilitate effective planning, tracking, and execution of tasks and projects (collectively, the 'Services'). This Privacy Policy outlines how NextShift processes personal information, including business contact details and other types of personal information that are submitted to us via our Services or collected, stored, used, disclosed, inferred, acquired, or processed by us in the course of developing, improving, or delivering our Services.
2. Information We Collect
Information Customers and Users Submit to Us
Customers and their Users may provide a variety of information to us through the Service. This includes:
- Users' own contact and other personal information, such as name, email address, telephone number, job title, employer, and location
- Information about our Customers' business contacts, such as their contacts list or customer list; including for instance, name, email address, telephone number, job title, employer, and location
- Other personal information, such as website visitor IP addresses, that our Customers submit to us through their use of our Service
If we provide a payment option to Customers, we may collect payment data. For our usage-based billing system, Customers may need to provide payment and/or credit card information, and other information to validate their payment method and identity. For approved organizations using invoice billing, we may collect additional business information including company details, billing addresses, and authorized contact information. We will use that information to fulfill payment processing and invoicing requirements.
Information We Collect from Marketing and Sales Activities
You provide your personal information to us when you voluntarily fill in forms on our Website, such as when you request a demo or contact sales. This personal information may include:
- First and last name
- Company name
- Job title
- Work email address
- Country and/or state
- Phone number
- Content of your request
3. How We Use Your Information
- Service Provision: To provide, evaluate, and improve the Service
- Account Management: To verify your identity and establish your account
- Service Communications: To send you important updates about new features, service improvements, and technical notifications related to NextShift
- Technical Support: To analyze how the Service is used and to troubleshoot technical issues
- Security: To detect and address fraud, security, or technical issues
- Legal Compliance: To comply with legal obligations and protect our rights and those of our users
4. Data Sharing Policy
We may only disclose your personal information in the following limited circumstances:
- Legal Requirements: When required by law, court order, or legal process
- Safety and Security: To protect the safety and security of our users and prevent fraud
- Business Transfers: In connection with a merger, acquisition, or sale of our business (subject to the same privacy protections)
- Service Providers: To essential service providers who help us operate our platform (authentication, hosting, and AI services as detailed below)
5. Third-Party Service Providers
Authentication Service Provider (Auth0)
We use Auth0, a third-party authentication service provided by Auth0 Inc. (a subsidiary of Okta Inc.), to manage user authentication, registration, and account management. When you create an account, log in, or otherwise interact with our authentication system, your information is processed by Auth0.
Information processed by Auth0 includes:
- Email address and password (Auth0 stores password hashes, not actual passwords)
- Name (if provided)
- Profile information
- IP addresses and device information
- Login timestamps and activity
- Authentication methods used
Auth0 Security: Auth0 implements industry-standard security measures and is SOC 2 Type II certified. Data transferred between our service and Auth0 is encrypted using industry-standard protocols.
Auth0 Privacy Policy: For detailed information about Auth0's privacy practices, please review Auth0's Privacy Policy.
AI Service Provider (Anthropic Claude)
We use Anthropic's Claude AI service to provide AI-powered report generation features within NextShift. When you use AI features, your data may be processed by Claude AI.
Claude AI Data Processing:
- Data sent to Claude AI is used solely to generate your requested reports and responses
- Anthropic does not train their models on customer data from commercial services
- Customer content is processed securely and temporarily for service provision
- Data transmission is encrypted and follows industry security standards
Claude AI Privacy Information: For comprehensive details about Anthropic's privacy practices, please review:
6. Data Storage and Location
Data Residency
Primary Data Storage: All customer data, cached information, attachments, and shift information are stored on servers located in Australia (AWS Sydney region).
Application Servers: Our application servers currently operate from Singapore for optimal performance across the Asia-Pacific region.
International Data Processing
Your personal information may be processed internationally in the following limited circumstances:
- Authentication: Auth0 may process authentication data across their global infrastructure (see Auth0's privacy policy for details)
- AI Processing: When using AI features, data may be temporarily processed by Anthropic's Claude AI service, which may involve processing outside Australia (see Anthropic's privacy policy for details)
We ensure all international data processing partners maintain appropriate data protection standards and comply with applicable privacy laws.
7. Security
We take the security of your personal information seriously and implement a variety of security measures to maintain the safety of your personal data. These measures include, but are not limited to:
- Encryption of data in transit and at rest
- Regular software updates and security patches
- Secure server configurations and access controls
- Organization-level data isolation
- Regular security assessments and monitoring
Please help protect your account by using a strong, unique password and keeping your login credentials confidential.
8. User Rights
Users have certain rights regarding their personal data under applicable data protection laws. These rights include:
- Access: The right to access your personal information
- Correction: The right to correct inaccurate personal information
- Deletion: The right to delete your personal information
- Data Portability: The right to transfer your personal information
- Objection: The right to object to certain processing of your data
If you wish to exercise any of these rights, please contact us at support@NextShift.co.
9. Cookies and Tracking Technologies
Our website uses cookies and other tracking technologies to enhance your browsing experience and to collect information about your interaction with our site. You have the option to accept or decline cookies through your browser settings. This may prevent you from taking full advantage of the website.
10. Changes to This Policy
This Privacy Policy may be modified from time to time as our business practices and legal requirements evolve. If this Privacy Policy is modified, we will provide notice of the change by posting the updated Privacy Policy on this website and including the effective date of the update.
If you disagree with the Privacy Policy or any changes to it, you should delete your account and avoid providing any information to us.
11. Contact Us
If you have any requests, questions, comments, or concerns regarding our Privacy Policy or practices, please contact us:
Email: support@NextShift.co
Address:
NextShift
Sunshine Coast, Australia, 4558