Privacy Policy

INTRODUCTION

Schedex CJSC (or “we”, or “Schedex”) values and respects the privacy of individuals. This Privacy Policy describes how we comply with data protection laws, including Canada’s Personal Information Protection and Electronic Documents Act (the “Data Protection Legislation”).

IF YOU ARE AN INDIVIDUAL LOCATED IN THE EEA:
If you’re in the European Economic Area (“EEA”), this entire Privacy Policy applies to you—please also see Additional Information for Users in the EEA below for details on your rights and our legal bases for processing your data.

This Policy covers:

  • How we collect, use, store, and disclose personal information (“Personal Information”).

  • When you use the Schedex Services (whether via a business or individual account).

  • When you visit our websites (www.schedex.co / www.schedex.me) or interact with our customer-service, product, or sales teams.

We may update this Policy from time to time; material changes will be posted here and, if significant, notified to affected individuals.

1. OUR COLLECTION AND USE OF PERSONAL INFORMATION

Customer Data

  • Role: We act as a service provider/data processor on behalf of our Customers (organizations that sign up for Schedex).

  • Use: We collect and use Personal Information only to deliver and improve the Schedex Services per our Customers’ instructions.

  • Aggregated Use: We may also analyze Customer Data in an anonymized, aggregated form to enhance our products.

If you have questions about your data held by a Customer, please contact that organization directly.

2. WHAT KIND OF PERSONAL INFORMATION DO WE COLLECT AND USE?

Customer Data

Personal Information collected to provide Services
Depending on your organization’s setup, we may collect:

  • First name, last name

  • Phone number, email address

  • Preferred language, time zone, business address

  • Staff-related info: role, hourly wage, hours worked, tasks, availability, schedules, attendance

  • Messages and announcements sent through the Services

  • Device log data: IP address, browser type, locale, geo-location, device identifiers, and usage interactions

Your employer controls who can see your profile and employment details; if you switch organizations, your data won’t be shared without your consent.

How we use it (on your organization’s behalf):

  • Enable shift scheduling, time-off booking, shift trades, etc.

  • Provide technical support

  • Personalize and update the Schedex Application

  • Enforce compliance with our Customer agreements

Schedex Data

When you create or maintain an individual (non-business) account, we become the data controller for your Profile Data. We use that data to:

  • Create and administer accounts, authenticate users, process payments

  • Offer resume-building, job-search features, and other individual services

  • Comply with our legal and regulatory obligations

We also collect:

  • Marketing contacts (to send newsletters, promotions)

  • Job application materials (resume, cover letter)

  • Customer service inquiries (to verify identity and resolve issues)

We may analyze usage and log data to improve the Service, and use Personal Information to enforce or defend legal claims.

3. HOW DO WE COLLECT YOUR PERSONAL INFORMATION?

We collect Personal Information by:

  1. You providing it directly (account registration, Service use, support contacts).

  2. Receiving it from your organization or other authorized sources (e.g., email invites).

  3. Third-party integrations or API usage approved by your organization.

  4. Information you or your organization enter during Service use.

  5. Automatic collection from your device or when you browse our Website.

4. WEBSITE INFORMATION

  • Log Data: IP address, browser type, referrer pages, searches, locale, device IDs, timestamps, and other interactions.

  • Cookies & Tracking: Session and persistent cookies, single-pixel gifs, web beacons (ours and third-parties like Google Analytics).

  • Tracer Tags / Web Beacons: To understand page visits and optimize the Website experience.

5. INFORMATION SHARING & DISCLOSURE

We may share your Personal Information:

  • Service Providers: Trusted third parties (e.g., hosting, analytics, marketing) under strict confidentiality.

  • Business Transfers: In the event of mergers, acquisitions, or asset sales.

  • Aggregated Data: Non-identifiable usage statistics.

  • With Consent: Where you’ve explicitly agreed.

Note: Our Customers may also share employees’ data with their own vendors (e.g., payroll, accounting). We do not sell Personal Information.

6. HOW DO WE SAFEGUARD YOUR PERSONAL INFORMATION?

We implement technical and organizational measures to protect against misuse, loss, unauthorized access, or disclosure, including:

  • Encryption of sensitive data in transit and at rest

  • Access controls on a need-to-know basis

  • Processes to detect and respond to data breaches

7. HOW LONG DO WE KEEP YOUR PERSONAL INFORMATION?

  • We retain data only as long as necessary under our Customer agreements or for legal compliance.

  • After the retention period, data is deleted or anonymized—though residual backups may persist temporarily without access.

  • Your organization may have its own retention schedule for employment data.

8. HOW CAN YOU ACCESS OR AMEND YOUR PERSONAL INFORMATION?

Subject to applicable law, you may request access, corrections, or deletion by contacting us at info@schedex.me.

  • If your data is processed on behalf of a Customer, please contact that Customer first.

  • We may verify your identity before fulfilling requests.

9. HOW DO WE TRANSFER YOUR DATA INTERNATIONALLY?

  • Primary storage: USA (Virginia); encrypted backups in Canada

  • SMS/Push/Email providers: USA

All transfers are encrypted end-to-end, and we require our service providers to uphold privacy laws and contractual safeguards.

10. PRIVACY RIGHTS FOR CALIFORNIA RESIDENTS

Under the CCPA, California residents have the right to:

  • Know what Personal Information is collected and how it’s used

  • Request deletion of Personal Information

  • Opt out of data “sales” (we do not sell data)

  • Non-discrimination for exercising privacy rights

To submit a request:
Mail or email details to:
Schedex CJSC, 0033 H. Hakobyan P. 3 1,4-rd Hark, Yerevan, Armenia
Email: info@schedex.me

We respond within 45 days; you may make up to two requests per 12 months.

11. ADDITIONAL INFORMATION FOR USERS IN THE EEA AND U.K.

Your GDPR Rights

You have the right to:

  • Be informed about processing (that’s this Policy)

  • Access your data (“data subject access request”)

  • Rectify incomplete or inaccurate data

  • Erase data (“right to be forgotten”) in certain cases

  • Restrict processing under certain conditions

  • Data portability (receive your data in a common format)

  • Object to processing (e.g., direct marketing)

  • Know about automated decision-making or profiling

To exercise these rights (Customers & Site Visitors in EEA/U.K.):
Email info@schedex.me with “DSR” in the subject line.
We’ll verify your identity and respond within one month (sometimes up to two months for complex requests).

End Users in the EEA/U.K.:
We serve only as a processor—your Customer handles your data-subject requests. If you contact us, we’ll direct you back to your Customer.

12. DATA SOVEREIGNTY REQUIREMENTS

We strive to comply with data-sovereignty principles:

  • Jurisdictional control: Abide by relevant local laws.

  • Data protection: Encryption, access controls, regular reviews.

  • Transparency: Clear disclosure of processing activities.

  • Retention & deletion: Keep data only as long as necessary.

  • Consent: Obtain informed consent for collection/transfer.

  • Cross-border transfers: Use safeguards and obtain consents for transfers outside your jurisdiction.

13. WHO IS RESPONSIBLE & HOW TO CONTACT US

If you have questions or concerns about this Privacy Policy or your rights, please contact us at info@schedex.me. Our legal team will respond as soon as possible.

Last updated: May 04, 2025