1. Information We Collect
When you use PayLink, we collect information in the following categories:
- Account Information: Name, email address, phone number, and login credentials provided during registration.
- Employee Data: Information entered by your organization about employees and contractors, including names, addresses, Social Security numbers, pay rates, bank account details, and employment records.
- Time & Attendance Data: Clock-in/out times, GPS coordinates (if enabled), station identifiers, and schedule data.
- Financial Data: Payroll calculations, tax withholdings, deductions, and payment records.
- Usage Data: Browser type, IP address, pages visited, and feature usage patterns for service improvement.
2. How We Use Your Information
We use collected information solely to:
- Provide and operate the PayLink platform
- Process payroll calculations and generate reports
- Send service-related notifications (schedule changes, approvals, etc.)
- Maintain security and prevent unauthorized access
- Improve the Service and develop new features
- Comply with legal obligations
3. Data Storage & Security
Your data is stored on secure servers with the following protections:
- TLS/SSL encryption for all data in transit
- Encrypted database connections
- Role-based access controls
- Regular automated backups
- Server-side session management with secure cookies
- Security headers (HSTS, CSP, X-Frame-Options)
4. Data Sharing
We do not sell, rent, or share your personal data with third parties for marketing purposes. We may share data only in these circumstances:
- Service Providers: With vendors who help us operate the Service (hosting, email delivery), bound by confidentiality agreements.
- Legal Requirements: When required by law, subpoena, or government request.
- Business Transfer: In connection with a merger, acquisition, or sale of assets, with notice to affected users.
5. Sensitive Data
PayLink processes sensitive information including Social Security numbers, bank account details, and tax identification numbers. This data is:
- Encrypted at rest and in transit
- Accessible only to authorized users with appropriate role permissions
- Never displayed in full (masked in the user interface)
- Never included in error logs or diagnostic reports
6. Data Retention
We retain your data for as long as your account is active or as needed to provide the Service. Upon account termination, you may request a data export within 30 days. After that period, data will be deleted in accordance with our retention schedule, except where retention is required by law (e.g., tax records).
7. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access your personal data
- Correct inaccurate data
- Request deletion of your data
- Export your data in a portable format
- Opt out of non-essential communications
8. Cookies
PayLink uses essential cookies for session management and authentication. We do not use third-party tracking cookies or advertising cookies. Session cookies are httpOnly and secure.
9. Children's Privacy
PayLink is not designed for or directed at children under 16. We do not knowingly collect information from children under 16.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email or through the Service. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.
11. Contact Us
For privacy-related questions or requests, contact us at info@mypaylink.app.