Privacy Policy and Data Protection

Effective date: May 26, 2026

This Privacy Policy explains how CAREO’CLOCK Medical and Staffing Services (“CareO’Clock”, “we”, “our”, “us”) collects, uses, shares, retains, and deletes personal data when you use our website, mobile application, and related services.

It applies to users of the CareO’Clock platform, including clients, caregivers, and administrators.

1. Information We Collect

  • Account information: name, email address, phone number, account role, and secure login credentials.
  • Service and care coordination information: care requests, assignments, schedules, visit records, and related communications needed to provide services.
  • Payment and billing information: transaction references and billing records required for accounting, fraud prevention, and legal compliance.
  • Device and technical information: IP address, device/app data, security logs, and push notification tokens.
  • Support information: details provided when you contact us for help.

2. How We Use Information

  • Provide, operate, and improve CareO’Clock services.
  • Authenticate users and secure accounts and sessions.
  • Coordinate care workflows, bookings, communications, and payments.
  • Detect, prevent, and investigate abuse, fraud, and security incidents.
  • Comply with legal, regulatory, and contractual obligations.

3. How We Share Information

We do not sell personal data. We share data only where necessary to provide services or comply with law.

  • With authorized users (clients, caregivers, and admins) based on role-based, need-to-know access controls.
  • With trusted service providers supporting hosting, authentication, analytics, notifications, and payments, under contractual confidentiality and security obligations.
  • With regulators, public authorities, or law enforcement where required by applicable law.

4. Data Retention

We keep personal data only as long as needed for service delivery, security, and legal obligations.

  • Active account data: retained while your account is active.
  • After account deletion request: personal data is held for one week and then anonymized, except where retention is legally required.
  • Payment and legally required records: may be retained for up to 7 years to meet legal, tax, accounting, fraud prevention, and regulatory requirements.
  • Security and audit logs: retained as necessary for security, integrity, and incident investigation.

5. Account Deletion and Data Deletion

You can request deletion through in-app account deletion (where available) or by emailing [email protected].

  • When deletion is initiated, the user is logged out immediately.
  • Active tokens and sessions are revoked immediately.
  • Data is held for one week and then anonymized, except for records we must retain by law.

If legal retention applies, we keep only the minimum necessary information for the required period, then securely delete or anonymize it.

6. Your Privacy Rights

Subject to applicable law, you may request access, correction, export, restriction, or deletion of your personal data by contacting us at [email protected].

7. Security

We use layered safeguards, including secure authentication, role-based access controls, server-side validation, token/session controls, and monitoring/audit logging to protect personal data.

8. Children

CareO’Clock services are not directed to children. If you believe personal data was provided inappropriately, contact us and we will review and take appropriate action.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Material updates will be posted on this page with a revised effective date.

10. Contact

If you have privacy questions or requests, contact us at [email protected].

Scroll to Top