Privacy Policy
At everyshift, our goal is to provide a safe, secure, and trustworthy platform for event and staff management. Whether you’re seeking roles, booking staff, or managing activations, everyshift helps connect people and opportunities based on the information provided through the platform. We take your privacy seriously and are committed to ensuring you can trust everyshift with how we handle your personal information.
This policy explains what information we collect, how we use and protect it, and the choices you have about your information.
We collect and use your personal information to provide and improve our Services and to create a safe, reliable, and efficient experience for everyone using everyshift. We will only use your information where we have a proper legal basis for doing so.
Because we’re an online company, some of the concepts below are a little technical, but we’ve tried our best to explain things in a simple and clear way. If you have any questions about this policy, please contact us at support@everyshift.co.
What does this policy do?
This Privacy Policy applies to the services and products provided by Nobox Limited ("Nobox", "everyshift", "we", "our", or "us"), including the everyshift website, platform, mobile applications, and related services (collectively, the “Services”).
We are committed to protecting your privacy and handling personal information responsibly and securely in accordance with applicable privacy and data protection laws.
As everyshift operates internationally, personal information may be collected, used, stored, and processed across multiple jurisdictions, including Hong Kong, New Zealand, Australia, the United States, and other countries where our service providers operate.
If you have questions about how your information is handled, please contact us at support@everyshift.co
2. What information do we collect?
We collect information so that we can provide our Services, improve our platform, develop new features, and maintain a secure environment for users.
We may collect the following information, some of which is personal information:
2.1 Information you give us, such as:
Account information: When you sign up for our service, we may require your name, email address, password, date of birth, demographic information or other personal information.
Profile Information: everyshift may require you to complete a profile which may include personal information such as your address, phone number, profile photo, work history, availability, skills, and other information relevant to staffing or opportunities through the platform. Some profile information may be visible to authorised users of the Services, including agencies, clients, employers, event organisers, or other approved users where relevant to opportunities or workforce management purposes. Agencies or organisations using the Services may also choose to display certain profile information publicly or within connected platforms with your permission.
Project information: We collect information relating to projects, events, bookings, and opportunities created through the Services, which may include project names, descriptions, schedules, locations, photos, attachments, notes, contact information, and related operational details. Content uploaded to the platform may also contain embedded information or metadata, including information associated with uploaded files or images.
Authentic information: To help create and maintain a safe and trusted environment, everyshift, or organisations using the Services including clients, agencies, employers, or event organisers, may request identification or verification information. This may include government-issued identification, passport details, visa or work eligibility information, or other authentication documentation where required. You will be informed at the time of collection when this applies.
Payment Information: We may collect financial information such as bank account details, payment information, invoicing information, tax-related information, or payroll-related information when you make payments through the Services or when the Services are used to submit, manage, process, or track payments. This may include situations where clients, agencies, employers, event organisers, or other authorised users collect and process payment or payroll-related information through the platform.
Communications: When you communicate with us or other users through the Services, we may collect information relating to those communications and any other information you choose to provide. This may include messages, emails, attachments, support requests, and other correspondence. We may retain communications for security, fraud prevention, internal training, quality assurance, and operational purposes.
Other Information: You may otherwise provide information directly to us through the Services or other communications, including when you submit forms, update profile information, upload content or documents, provide feedback, participate in surveys or promotions, conduct searches, request support, or use additional features of the Services.
2.2 Information we automatically collect, such as:
Usage Information: We collect information about your interactions with the Services, including the projects, events, opportunities, or other content you view, searches you perform, bookings or shifts you manage, and communications or activity generated through your use of the Services.
Location Information: When you use certain features of the Services, we may collect information about your general location, such as your physical or postal address, device IP address, or approximate geographic location. Where enabled or required for certain platform features, we may also collect more precise location information, including GPS or attendance and check-in related information from your mobile device. Most mobile devices allow you to control or disable location services through your device settings.
Analytics: We may automatically collect analytics and technical information when you use the Services, including information about how you interact with the platform, your IP address, access times, browser type, device information, operating system, and device event information such as crashes or errors. We may use trusted third-party providers to assist with analytics, reporting, monitoring, and improving the Services.
Transaction and Financial Information: We may collect information relating to transactions and financial activity through the Services, including payment amounts, payment status, transaction dates, invoicing details, payroll-related records, reimbursement information, and other related financial information connected to your use of the Services.
Cookies and Similar Technologies: We use cookies, pixels, beacons, and similar technologies to collect and store information when you use the Services, improve functionality and user experience, maintain security, and assist with analytics and platform performance. You may disable cookies through your browser settings, although some features of the Services may not function properly.
2.3 Information from third parties or external sources, such as:
We may receive information from third parties, including agencies, clients, employers, event organisers, or other organisations using the Services, when you engage with opportunities or services through the platform. We may also use trusted third-party providers and integrations for services such as maps, communications, analytics, payments, authentication, and infrastructure support. These third parties may collect or process information in accordance with their own privacy policies.
3. How do we use your information?
We use your personal information to provide the Services and to maintain trust in everyshift and the people and organisations using the platform. We may also use personal information to improve the Services, develop new features, enhance security, provide support, and better understand how the platform is being used.
We may analyse information collected through the Services to identify usage trends, improve functionality, support platform performance, and help guide future product development.
We may use your personal information in the following ways:
3.1 To contact you about your account or use.
We may contact you by email, text message, push notification, phone call, or other means in relation to your account, opportunities, bookings, schedules, payments, updates, security notifications, or your use of the Services.
You may:
• Unsubscribe from marketing or promotional communications.
• Manage your notification and communication preferences within your account settings where available.
3.2 To help provide our Services, for example:
We may use your information to:
• Enable and support your use of the Services, including communication with other users, managing opportunities, bookings, schedules, payments, staffing, and identity verification where required.
• Personalise and improve your experience, including saving preferences, improving search results, and tailoring platform functionality.
• Operate, maintain, protect, develop, and improve the Services through analytics, reporting, customer support, security monitoring, and operational management.
• Conduct research and analysis relating to platform usage, user interests, trends, and engagement.
• Train and support staff, contractors, and service providers who help operate and support the Services.
3.3 For trust, safety and assurance, for example to:
Protect the rights, property, or safety of users, third parties, or us. We may use your information to help keep the Services safe and secure, and to protect the rights, property, and safety of users, clients, third parties, and everyshift.
Prevent harm to us or others. We may use your information to detect, investigate, and prevent fraud, spam, abuse, security incidents, unauthorised access, and other harmful or unlawful activity. Where reasonably necessary, we may disclose relevant information to law enforcement, financial institutions, service providers, or other appropriate parties in connection with investigations or to help protect users, organisations, and the Services.
Ensure we comply with our obligations. We may use or disclose information where reasonably necessary to comply with applicable laws, regulations, legal processes, industry requirements, or lawful requests from authorities.
Resolve disputes. We may use your information to investigate, manage, and resolve disputes, complaints, security matters, or issues relating to the Services or users of the platform. Where appropriate, we may disclose relevant information to authorised parties involved in a dispute where permitted or required by law.
Enforce agreements. We may use your information to enforce our Terms of Service, agreements, policies, and other rights relating to the Services.
Conduct investigations. We may use your information to conduct investigations, assess risk, monitor compliance with our policies, and help maintain the safety, security, and integrity of the Services.
Allow our business to be audited. We may use your information for auditing, reporting, compliance, security, financial, and business administration purposes relating to the operation of the Services.
Verify identities and information. We may verify identities or authenticate information provided through the Services, including information relating to users, organisations, or other authorised parties.
3.4 For advertising and marketing, for example to:
Send promotional and marketing communications. We may send you promotional messages, marketing communications, updates, recommendations, or other information relating to the Services that we think may be relevant or of interest to you. You may opt out of marketing communications or manage your communication preferences at any time where available.
Advertising and remarketing. We may use cookies, pixels, analytics tools, and similar technologies to show you advertising, promotions, or content relating to the Services on third-party platforms and websites. You may be able to control advertising preferences through your browser settings, device settings, or the settings provided by third-party advertising platforms.
Run promotions and platform activities. We may use your information to administer promotions, referral programmes, rewards, surveys, competitions, events, or other activities relating to the Services.
Measure and improve our marketing and Services. We may use your information to measure the effectiveness of marketing, advertising, platform performance, and user engagement, and to improve the Services and user experience.
3.5 To help you publish or share information through the Services, such as:
Your profile and account information. Certain profile information, such as your name, profile image, region, work history, skills, availability, or other relevant details, may be visible to authorised users of the Services, including clients, agencies, employers, event organisers, or other approved users where relevant to opportunities or workforce management purposes.
Your project and event content. Information, content, or materials relating to projects, events, opportunities, bookings, or other activities may be shared or made available to authorised users of the Services where relevant to the operation of the platform. You are responsible for the information and content you choose to upload, publish, or share through the Services.
Your feedback. The Services may allow users to submit reviews, feedback, ratings, testimonials, or other content. Where applicable, this information may be visible to other users of the Services.
Content shared publicly or through social media. If you submit content through public areas of the Services, social media pages, or other interactive features, that content may be publicly visible to others.
3.6 For other things, with your express consent.
We may use or disclose your information where you direct us to do so, provide your consent, or otherwise agree to the use or disclosure of your information.
Please note that:
• We do not have access to your passwords, which are encrypted using security measures designed to protect your account.
• Payment information may be processed and stored securely by trusted third-party payment providers operating on our behalf.
4. Who do we disclose your information to?
We may disclose your personal information to provide the Services, operate and improve the platform, comply with legal obligations, protect users and the Services, or enforce our terms and policies. We may disclose your personal information in the following ways:
4.1 To others with your consent, for example when you:
Ask us or authorise us. We may share your information where you authorise us to do so, where it is necessary to provide the Services, or where you engage with opportunities, projects, staffing, or events through the platform. This may include sharing relevant profile, contact, booking, scheduling, payroll, or workforce-related information with authorised admin users, agencies, clients, employers, event organisers, or other organisations connected to your use of the Services.
Authorise third-party services and integrations. Some features of the Services may involve trusted third-party providers or integrations that process information on our behalf or in connection with the operation of the Services, including providers relating to payments, communications, analytics, security, authentication, cloud hosting, and infrastructure support. These providers may process information subject to their own terms, privacy policies, and applicable contractual obligations.
4.2 To other users in certain cases, for example:
Payments and workforce administration through the Services. Where payments, payroll, bookings, staffing, or workforce-related activities are managed through everyshift, we may share information necessary to facilitate those activities with authorised admin users, agencies, clients, employers, event organisers, payroll providers, or other organisations using the Services. This may include profile information, contact information, booking details, scheduling information, payroll-related information, or transaction-related information necessary to provide the Services. These organisations may handle information in accordance with their own privacy policies and legal obligations.
Dispute and legal matters. In limited circumstances, we may disclose relevant information in connection with disputes, complaints, investigations, or legal processes where permitted or required by law.
4.3 To our service providers, to provide and manage our Services.
In order to provide and manage our Services, we may need to disclose some of your personal information to our third party service providers. These providers have limited access to your personal information to perform tasks on our behalf, and are contractually obliged to use your personal information consistently with this Privacy Policy. These disclosures will be consistent with the Service-specific terms and the rest of this privacy policy.
4.4 To other third parties, such as:
Developers, integrations, and connected services. If you use integrations, APIs, or connected third-party applications with the Services, authorised developers or connected services may access certain information from your everyshift account to the extent you have authorised access. These applications and integrations will not have access to your password, but may access profile information, content, booking information, scheduling information, or other data made available through the Services in accordance with your permissions and settings.
4.5 To authorities or other entities to uphold the law or our terms, for example:
For legal compliance, safety, or law enforcement purposes. We may disclose personal information to courts, law enforcement agencies, regulators, government authorities, advisers, service providers, or other authorised parties where we reasonably believe disclosure is necessary or appropriate to:
• comply with applicable laws, regulations, legal processes, or lawful requests
• enforce our Terms of Service, policies, or other agreements
• protect the rights, property, safety, or security of users, organisations, third parties, or everyshift
• detect, investigate, prevent, or address fraud, abuse, security incidents, unlawful activity, or technical issues.
To facilitate legal processes or disputes. Where permitted or required by law, we may disclose limited information in connection with legal claims, disputes, investigations, or formal legal processes relating to the Services or users of the platform. We may require verification, supporting documentation, or legal process information before considering any request for disclosure.
To enforce or apply our terms and conditions or policies. Where reasonably necessary in connection with disputes, complaints, investigations, or enforcement matters, we may disclose relevant information or communications to authorised parties where permitted or required by law. In limited circumstances, we may also provide your contact details to the other party to help resolve the dispute (but will always seek your permission first).
To protect the rights, property or safety of us, our Users or others. This includes collecting money you owe us and making such disclosures as are necessary for the purpose of trust, safety and assurance in accordance with clause 3.3 above.
4.6 To others where necessary to reorganise or sell our business.
If we undertake or are involved in any merger, acquisition, reorganisation, sale of assets, bankruptcy, or insolvency event, then we may sell, transfer or share some or all of our assets with a party involved in such a process (for example, a potential purchaser). In this event, we will notify you before your personal information is transferred and becomes subject to a different privacy policy.
4.7 To other third parties, where your identity is anonymised.
We may share non-personally identifiable information (e.g., aggregated information about our Users that we combine together so that it no longer identifies or references an individual User), for industry and market analysis, demographic profiling, marketing and advertising, and other business purposes.
4.8 Also, some interactions with our sites and Services may be subject to additional third party terms. For example:
External links and third-party services. The Services may contain links to third-party websites, platforms, applications, integrations, or services that are not owned or controlled by everyshift. If you choose to interact with those third parties, your information may be collected or processed directly by them in accordance with their own terms, privacy policies, and practices. We encourage you to review the privacy policies of any third-party services you use or interact with.
Certain embedded third-party services. Some features of the Services may incorporate or rely on third-party services, integrations, or content. Your use of those services may be subject to the terms, conditions, and privacy policies of the relevant third parties.
Information indexed by search engines. Information you choose to make publicly available through the Services may be indexed by search engines or other third-party services. We do not control the practices of third-party search engines or external caching processes, and cached or archived versions of information may remain publicly accessible after removal from the Services.
5. How do we hold and protect your information?
We take security seriously and work to protect your personal information from unauthorised access, misuse, loss, disclosure, or alteration.
We use a range of technical, administrative, and organisational safeguards designed to help protect personal information and maintain the security of the Services.
While no method of electronic storage or transmission is completely secure, we take reasonable steps to protect personal information and respond appropriately to security incidents or suspected data breaches.
By using everyshift, you consent to the collection, storage, use, and disclosure of your personal information as described in this Privacy Policy.
We collect personal information when you register for an account, use the Services, interact with the platform, communicate with us, or otherwise provide information to us. Where required by applicable law, you may withdraw your consent to certain uses of your information by contacting us or discontinuing your use of the Services.
We retain personal information only for as long as reasonably necessary for the purposes described in this Privacy Policy, including operational, legal, accounting, security, and business purposes. In particular:
5.1 We use industry recognised security practices and measures.
We are committed to helping keep personal information safe and secure and use generally accepted industry practices and security measures designed to protect personal information during transmission, storage, and use.
We continuously review and implement administrative, technical, and physical safeguards designed to help protect personal information against unauthorised access, misuse, disclosure, loss, destruction, or alteration.
However, no method of electronic transmission or storage is completely secure, and we cannot guarantee the absolute security of personal information or the Services.
5.2 We may store and process information in multiple countries.
You acknowledge and agree that personal information may be transferred, stored, and processed in Hong Kong, New Zealand, Australia, the United States, and other countries where we, our service providers, or our infrastructure providers operate.
Where personal information is transferred internationally, we take reasonable steps designed to ensure appropriate safeguards and security measures are in place to help protect personal information in accordance with applicable privacy and data protection obligations.
5.3 We retain your information as long as reasonably required, unless we are legally required to hold it longer.
We will keep your personal information for as long as is reasonably required for us to use it in accordance with this policy, unless we are required by law to hold it longer. In particular, we may retain:
• Copies of your emails for a period of up to two years (and sometimes longer, where necessary for business purposes, to help prevent fraud or facilitate legal processes).
• All project content after projects have been made inactive. We do this for various reasons, including in case of disputes, to help prevent fraud and facilitate legal processes, to comply with financial record-keeping and to help personalise or recommend products in future.
Publicly available information may also remain accessible through third-party services, search engines, caches, or archived systems outside of our control.
Personal data that has been deleted will be removed from backups within 30 days unless retention is required for legal or regulatory compliance.
Upon your request or when your data is no longer required, we will securely delete or de-identify your personal information, in accordance with the applicable privacy laws of New Zealand and Australia.
5.4 Credit card Information is held subject to stringent payments industry standards.
We do not store credit or debit card information. Payments made via everyshift (for example, when purchasing SMS credits) are processed by third-party payment providers that comply with stringent security standards, including the Payment Card Industry Data Security Standards ("PCI standards"). These providers implement a variety of security measures to help protect your credit and debit card information from unauthorised access, use, and disclosure.
6. How can I manage my information?
We know your circumstances, details and preferences will change. So, we’ve built a number of tools for you to manage your personal information. You can:
6.1 Update your information by:
Managing your profile. everyshift allows you to build a customised profile. ou may review, update, or correct certain account and profile information, such as your email address, password, phone number, profile details, availability, and other account information by logging into your account and updating your settings or profile information.
Managing your projects and events. everyshift allows authorised admin users to manage and update information relating to projects, events, bookings, staffing, schedules, opportunities, and other content created through the Services.
Managing your privacy options. You may manage certain privacy, notification, and communication preferences through your account settings where available, including opting out of marketing communications by using unsubscribe links or adjusting your preferences within the Services.
6.2 Ask us to update, provide or delete your information:
You have the right to access, correct, or delete your personal information To make a request, please contact us at support@everyshift.co. We will respond within a reasonable timeframe. Deletion requests may be subject to legal, security, contractual, operational, backup, record-keeping, dispute resolution, or fraud prevention requirements, and certain information may need to be retained where reasonably necessary. If we are unable to delete your personal information due to legal or contractual obligations, we will inform you of the reason and how you may appeal the decision. If you want to cancel your account, please use the "Deactivate" button in your profile settings, or contact us for assistance.
7. How do we amend this policy?
We may change this policy from time to time and if we do, we’ll post any changes on this page. If you continue to use everyshift after those changes are in effect, you agree to the new policy. If we make significant changes to this policy, we will notify you via email or an in-app notice before the changes take effect. As we update this policy occasionally, we encourage you to periodically review this page for the latest information on our privacy practices.
8. Our policy on children's information.
Users under the age of 18 may only use the Services with the involvement, consent, or authorisation of a parent, guardian, agency, employer, or other authorised adult where required by applicable law. If you are a parent and you learn that your child is using everyshift and you don’t want them to, please contact us at support@everyshift.co.
If we collect personal information from a minor under 18, we will take reasonable steps to verify parental consent before processing their data. This may include requiring an email confirmation from a parent or guardian or ensuring the child's profile is linked to a parent or guardian’s main account, which they will manage.
If we become aware that we have collected personal information from a child without verified parental consent, we will take steps to delete such information promptly.
9. Handling of Cookies and Tracking Technologies.
We use cookies and similar technologies to collect information about how the Services are used, improve functionality and performance, personalise user experience, maintain security, and support analytics and marketing activities.
By using everyshift, you acknowledge that cookies and similar technologies may be used in connection with the Services.
You may manage or disable cookies through your browser or device settings. Please note that some features or functionality of the Services may not operate properly if cookies are disabled.
10. Privacy Complaints Procedure.
If you have any questions, concerns, or complaints about this Privacy Policy or how your personal information has been handled, please contact us at support@everyshift.co.
We take privacy concerns seriously and will aim to respond within a reasonable timeframe.
Depending on your location, you may also have the right to contact your local privacy or data protection authority if you are not satisfied with our response.
Last updated: 16 May, 2026
