Privacy Policy — Dawnode

1. Data Controller

Dawnode Oy (hereinafter "Dawnode", "we", or "the service"). Contact: jani.puustinen@dawnode.com.

2. What Data We Collect

We collect the following personal data in connection with the use of the service:

User data: name, email address, phone number, and company details that you provide when registering or updating your profile.

Shift data: shift times, workstations, and work hours recorded through the service.

Technical data: IP address, browser type, operating system, and cookie data to ensure service functionality and security.

Usage logs: login times and service-related events.

3. Purposes of Data Processing

We use your personal data for the following purposes:

Providing and maintaining the service, including shift planning, payroll, and invoicing.

User account management and authentication.

Improving the service and user experience.

Fulfilling legal obligations.

Communicating about service-related matters.

4. Legal Basis for Processing

We process your personal data on the following grounds under the EU General Data Protection Regulation (GDPR):

Performance of contract: processing is necessary to provide the service to you.

Legitimate interest: service development, security, and fraud prevention.

Legal obligation: accounting and tax legislation requirements.

Consent: marketing communications, which you can opt in or out of at any time.

5. Data Sharing and Transfers

We do not sell your personal data to third parties. We share data only in the following situations:

Service providers: we use trusted subcontractors (e.g., cloud services, email services) that process data on our behalf under data processing agreements.

Legal requirements: we may disclose data at the request of authorities as required by law.

Employer-employee relationship: shift and work hour data is shared between employer and employee as required for service operation.

6. Data Retention

We retain your personal data for as long as your account is active or as necessary to provide the service. After account deletion, data is deleted or anonymized within a reasonable time, unless legislation requires longer retention.

7. Data Security

We protect your personal data with appropriate technical and organizational measures, including encryption during transfer and storage, access controls, and regular security audits.

8. Your Rights

Under the GDPR, you have the following rights:

Right to access your data and request a copy.

Right to rectification if data is inaccurate or incomplete.

Right to erasure ("right to be forgotten").

Right to restriction of processing in certain situations.

Right to data portability.

Right to object to processing based on legitimate interest.

Right to withdraw consent at any time.

You can exercise your rights by contacting jani.puustinen@dawnode.com.

9. Cookies

We use essential cookies to ensure service functionality. Analytics cookies are used only with your consent to improve the service.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of material changes via email or through the service. We recommend checking this page regularly.

11. Contact

If you have questions about our privacy policy or wish to exercise your rights, contact us at: jani.puustinen@dawnode.com.