ShiftCoach

Privacy Policy

Last updated: May 2026

1. Introduction

Shift Coach (“we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share information when you use our website, mobile applications, and related services (together, the “Services”).

If you do not agree with this policy, please do not use the Services.

2. Who we are

The data controller for personal information processed through the Services is Shift Coach.

Contact: shift-coach@outlook.com

3. Information we collect

3.1 Information you provide

  • Account data: email address and authentication credentials (managed through our authentication provider).
  • Profile data: information you enter in your profile (for example name, age, heights/weights where applicable, goals, activity level, timezone, and preferences).
  • Rota / schedule data: shifts, patterns, uploads, calendar events related to work schedules.
  • Wellness logs (where available): sleep logs, hydration, caffeine, mood, activity entries you record in the app.
  • Support & communications: emails or messages you send us.

3.2 Information collected automatically

  • Service usage & technical data: device/browser type, app version where applicable, IP address, diagnostic logs essential for security/reliability, and timestamps of requests.
  • Authentication / session cookies (web): essential cookies/session storage needed to keep you signed in.

3.3 Health & activity data from connected platforms (optional)

With your explicit permission through your device/OS, we may read and sync health-related data you choose to connect, such as:

  • Android (Google Health Connect): typically steps, sleep/session-style sleep data, and heart-rate samples consistent with permissions you grant. Access is intended to be read-only from Shift Coach’s perspective and can be revoked in your Android settings.
  • iOS (Apple Health): permitted categories align with Apple Health integrations you authorize in-app / on-device.

We only access categories you authorize. You can disconnect or revoke access through your device’s health/privacy controls.

3.4 Subscription & purchase data

If you subscribe, we process subscription status and purchase metadata through our subscription infrastructure (for example product identifiers, renewal status, trial windows, and platform). Payment cards and wallet charges are handled by Apple / Google (and their processors), not stored by us.

3.5 AI coaching / AI-assisted text (where used)

Some features may send limited context (for example sleep or wellness-related fields already stored in your account) to our AI provider to generate suggestions or wording shown in the app. We do not operate a general open-ended “chatbot coach” that continuously stores a long-running conversation thread as a core product requirement; processing is focused on delivering specific in-app outputs.

4. How we use information (purposes)

We use information to:

  • Provide, operate, and secure the Services (authentication, sync, backups, troubleshooting).
  • Personalize shift-aware guidance (sleep, recovery, activity, meal timing, and related insights).
  • Process subscriptions and entitlements.
  • Send service-related emails (for example account/security notices) via our email provider.
  • Improve reliability and develop features (including aggregated or de-identified analytics where appropriate).
  • Comply with law, enforce terms, and protect rights/safety.

5. Legal bases (EEA/UK users)

If applicable law requires a “legal basis,” we typically rely on:

  • Contract: providing the Services you request.
  • Legitimate interests: security, fraud prevention, product improvement, and service messaging—balanced against your rights.
  • Consent: where required for certain health integrations, marketing (if any), or optional analytics (if enabled).
  • Legal obligation: where we must retain or disclose information.

6. How we share information

We share information with service providers who process data on our instructions:

  • Supabase: authentication and database hosting.
  • RevenueCat: subscription status, entitlements, and purchase validation (often combined with Apple App Store and Google Play billing).
  • OpenAI (or similar): limited processing for AI-assisted outputs where used.
  • Resend (or similar): transactional email delivery.
  • Hosting / infrastructure providers used to run the website/API (for example cloud hosting and edge providers).

We may also disclose information if required by law, to protect users, or in connection with a merger/acquisition (with notice where required).

We do not sell your personal information. We do not use Health Connect / health data for advertising.

7. International transfers

Your information may be processed in countries other than where you live. Where required, we use appropriate safeguards (such as standard contractual clauses) or equivalent mechanisms.

8. Retention

We retain information while your account is active and as needed to provide the Services. If you delete your account, we will delete or anonymize personal information within a reasonable period (for example up to 30 days), except where we must retain certain records for legal, security, or dispute reasons.

You may also be able to delete specific records in-app where supported (for example certain logs/history features).

9. Security

We use industry-standard safeguards, including encryption in transit and protections provided by our infrastructure vendors. No online service is 100% secure.

10. Your rights

Depending on where you live, you may have rights to:

  • Access, correct, update, or delete certain personal information.
  • Export a copy where the app provides export tools (for example Settings).
  • Object to/restrict certain processing, or withdraw consent where processing is consent-based.

To exercise rights, contact shift-coach@outlook.com from your account email. We may verify your identity before processing requests.

Account deletion options may be provided in-app and/or via dedicated account deletion pages on the website.

11. Cookies & similar technologies (web)

We use essential cookies / local storage needed for login and core functionality. We do not use cookies for third-party advertising as a core part of Shift Coach.

12. Children

The Services are not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child provided data, contact us and we will take appropriate steps.

13. Third-party links & integrations

If you enable integrations (Health Connect / Apple Health) or interact with linked third-party services, those providers process data under their policies. Please review Apple/Google/third-party privacy notices.

14. Changes

We may update this Privacy Policy periodically. If changes are material, we will indicate the updated date and may provide additional notice within the Services.

15. Contact

Questions or privacy requests:

shift-coach@outlook.com