Privacy Policy

1. 1. Who We Are
2. 2. What We Collect
3. 3. How We Use Your Data
4. 4. When We Share Data
5. 5. SMS / Text Messaging
6. 6. AI & Automated Processing
7. 7. Cookies & Tracking
8. 8. Data Retention
9. 9. Your Privacy Rights
10. 10. International Data Transfers
11. 11. Security
12. 12. Children's Privacy
13. 13. Changes
14. 14. Contact

This Privacy Policy explains how the DohOps workforce-management platform ("DohOps," "we," "us," "our") collects, uses, shares, and protects information. DohOps is operated by DohAssist LLC, a Texas limited liability company based in Austin, Texas. This policy covers the DohOps marketing website (www.dohops.com) and the DohOps web and mobile platform.

DohOps is a business-to-business service (time & attendance, scheduling, task assignments, messaging, reporting) that we provide to business customers ("employers"), who use it to manage their own employees. For data about an employer's employees, the employer is the "controller" and DohOps acts as a "processor" handling it on the employer's behalf.

Questions about this policy go to privacy@dohassist.com.

Website visitors: contact/demo form submissions (name, email, business, message), and basic log/usage data (IP, browser, pages, timestamps).

From business customers (employers): company name, business address, contact email and phone, industry, billing information (processed by Stripe — we do not see raw card numbers), and admin-user details (name, email, role, login activity).

From employees of our customers: name, email, phone, employee ID, role/position(s), wage rates, location assignments; time entries (clock in/out times; GPS coordinates and clock-in/out photos where the employer enables them); shift and task data; performance, kudos, badges, training records; uploaded documents; and in-platform messages.

Sensitive information (only where applicable and configured): government identifiers such as SSN or tax ID and bank routing data (for payroll-adjacent features); government-issued ID images; precise geolocation (when GPS clock-in is enabled); photos that identify employees (face-reference photos for kiosk verification; clock-in/out photos); and biometric login (Face ID / Touch ID). Biometric data never leaves your device — Face ID / Touch ID are handled by your device's operating system, and we store only a hashed device token to enable biometric login. Face-reference photos are stored encrypted. (See our Biometric Policy.)

Automatically: device/browser type, usage and error data (via Sentry), login activity including IP addresses and timestamps. From third parties: payment/delivery confirmations from Stripe, SendGrid, and Twilio, and name/email if you sign in via Google or Apple.

We do not collect health/PHI (we are not a HIPAA Business Associate by default), or data on race, ethnicity, religion, sexual orientation, or political views.

We use your data to: provide and operate the platform; verify identity at kiosk clock-in where enabled; maintain security, prevent fraud/abuse, and keep audit logs; improve the platform including AI-assisted features (see Section 6); communicate with you; and comply with legal obligations.

De-identified and aggregated data. We may create and use data that has been de-identified and aggregated so that it cannot reasonably be used to identify you (for example, anonymized benchmarks and statistics) for analytics, product improvement, benchmarking, and AI/model development, and we may use, license, or sell such de-identified, aggregated data to third parties. We commit not to attempt to re-identify this data and contractually require anyone we share it with to do the same. De-identified, aggregated data is not "personal information," and selling it is not a "sale" of personal information under the CCPA/CPRA.

With service providers (sub-processors), limited to what each needs:

• Supabase — database/storage/auth (all platform data; hosted on AWS us-east-2)
• Vercel — hosting/CDN
• Stripe — payments
• SendGrid — transactional email
• Twilio — SMS & phone verification
• Google Maps Platform — address geocoding
• AI/ML providers (currently Google Gemini; may include OpenAI, Anthropic) — AI photo scoring & fraud detection; never SSN/ID/DL
• Sentry — error tracking (platform)
• PostHog — in-platform product-usage analytics
• Google LLC (Google Analytics 4) — website usage analytics (analytics-only; IP-anonymized, with Google Signals and ad-personalization disabled)
• Firebase / Apple Push — push notifications

We require each sub-processor by contract to use data only as we direct, keep it secure, and notify us of any breach. We also share data with the employer (the core purpose); with law enforcement/government when required by valid legal process; and in a business transaction (merger/acquisition/sale), with notice where practical.

What we do NOT do: we do not sell your identifiable personal information; we do not share it with advertising networks for behavioral targeting; we do not disclose one customer's data to another; and we do not use your personal data to train general-purpose or third-party AI/foundation models. AI providers we use process submitted content only to deliver in-product features under their API terms, which do not train their models on our inputs.

If you provide your mobile number and check the SMS opt-in box, we use it solely to send one-time passcodes (OTP) for verification/login and, where enabled, account notices (late clock-in alerts, schedule updates). Frequency varies (approximately one message per sign-in/verification). Message/data rates may apply. Reply STOP to opt out, HELP for help.

No mobile information is shared with third parties or affiliates for marketing. Sharing with subcontractors (e.g., Twilio) is limited to delivering messages you opted into. Carriers are not liable for delayed or undelivered messages.

DohOps offers AI-assisted features such as scoring of task-completion photos and fraud detection, currently using Google's Gemini API (and possibly other providers). Submitted task photos and related work content are sent to the AI provider; where employees submit photos for AI analysis, we obtain consent.

We do not send sensitive personal information (SSN, government ID/DL, bank data) to AI providers. AI assists human reviewers — we do not make final adverse employment decisions based solely on automated processing without human review.

We use cookies/browser storage necessary for the platform to function (login sessions, active company, preferences).

Analytics, not advertising. For analytics we use Google Analytics 4 on our marketing website — configured for analytics only, with IP anonymization on and Google Signals and ad-personalization signals disabled (you can also opt out via the Google Analytics Opt-out) — and Sentry and PostHog within the platform for error tracking and product-usage analytics/service quality.

We do not use advertising or behavioral-targeting cookies, and we do not sell or share personal information for cross-context behavioral advertising. Because we do not engage in such "sharing," no "Do Not Sell or Share My Personal Information" action is required (see Section 9).

We retain data for different periods based on legal requirements and operational necessity:

• Employee and time/payroll records: duration of employment plus at least 4 years (IRS/FLSA baseline; up to 7 years industry standard).
• General audit logs: 5 years.
• Sensitive-document access logs: 7 years.
• Government-ID documents: employment duration; certifications: expiry plus 1 year.
• Messages: per the employer's configured retention.
• Cancelled accounts: After cancellation we retain your data so you can reactivate or export it; we do not delete it on a fixed timer. If you request deletion, the request enters a recovery window of up to 30 days before permanent deletion or anonymization — subject to lawful retention (e.g., FLSA/IRS employee-record requirements).

California (CCPA/CPRA): rights to know, access, delete, correct, limit use of sensitive personal information, and non-discrimination. We do not sell or share (as defined by CCPA/CPRA) your personal information, so no "Do Not Sell or Share" action is required; de-identified, aggregated data is not personal information.

EU/EEA/UK: rights to access, rectify, erase, restrict, port, object, withdraw consent, and lodge a complaint with your data protection authority.

To exercise your rights: employer-admins use in-platform tools; employees contact their employer first; platform-level requests go to privacy@dohassist.com. We acknowledge within 5 business days and respond within 30 days.

Data is hosted in the US (AWS us-east-2 via Supabase; Vercel US). DohAssist LLC also engages personnel/contractors in India for software development and customer support.

Development uses non-production or de-identified data; production personal data is accessed only on a restricted, least-privilege, logged basis when required. Support staff do not have standing access to customer accounts. Standard Contractual Clauses (SCCs) are available on request for GDPR/UK GDPR customers.

We use encryption in transit (TLS) and at rest, database-level tenant isolation, access controls, and audit logging. No system is perfectly secure.

If we become aware of a breach affecting your data, we will notify affected customers without undue delay after we confirm the breach, and within any timeframe required by applicable law.

DohOps is a workplace tool, not directed to children; we do not knowingly collect data from anyone under 16. Where an employer adds a minor employee, the employer is responsible for any parental-consent obligations.

For material changes we provide notice (email or in-app) before they take effect; minor changes take effect when posted. The "Last Updated" date at the top of this policy always reflects the current version.

For privacy questions, data requests, or to exercise your rights under this policy:

DohAssist LLC
14620 N IH 35 Office #A
Austin, Texas 78728

Privacy requests: privacy@dohassist.com
General support: support@dohassist.com
Phone: +1 (602) 750-0711
Toll Free: 1-888-364-7580