← Chronox

Privacy Policy

Version 1 · Effective July 4, 2026 · Under legal review — contact privacy@chronox.app with questions.

1. Who we are

Chronox provides workforce timekeeping software to construction companies. For employee data processed in the app, your employer is the controller/business and Chronox is the processor/service provider acting on its instructions. Employee privacy requests are routed through the employer, which verifies identity.

2. What we collect

3. Purposes

Timekeeping and payroll preparation; identity verification at punch; wage-hour record-keeping for your employer; security and anti-spoofing; support; legal compliance. No advertising. No sale or sharing of personal information. No profiting from biometric data.

4. Service providers

Amazon Web Services (face matching and liveness, Oregon, USA), Supabase (database and hosting, USA), Mapbox (reverse geocoding of punch coordinates), Stripe (billing — no biometric or punch data), Neurotechnology (on-device offline matching), Sentry (crash reporting). Each is bound to use data only to provide its service.

5. Retention

Biometric identifiers are destroyed at employment end, on a processed revocation, or at the statutory deadline — whichever comes first (automated, with logged destruction receipts). Time and payroll records are kept per employment-law schedules (default 7 years). Punch GPS coordinates can be anonymized after an employer-configured horizon. Consent and audit logs are append-only legal proof.

6. Security

TLS in transit; encryption at rest; keystore-backed AES-256-GCM encryption of on-device face templates; per-company tenant isolation and role-scoped access enforced in the database; consent-before-enrollment enforced by database trigger; append-only consent, event, and audit logs; a written incident-response plan.

7. California employees

Biometric information and precise geolocation are sensitive personal information under the CCPA/CPRA. Where your employer is a covered business, you receive a Notice at Collection and may exercise access, deletion, and correction rights, and limits on sensitive-PI use, through your employer; Chronox supports these requests with its data-export and deletion tooling and acts under service-provider terms (no sale, no sharing, purpose limitation).

8. Canada

Biometric data is treated as sensitive and collected only with express consent supported by a documented necessity assessment. Data is processed and stored in the United States and may be accessible to U.S. authorities under U.S. law. For Quebec workforces, the biometric database is declared to the CAI before service and French-language documentation applies.

9. Your choices

You may decline biometric enrollment for religious or medical reasons — your employer maintains an accommodation procedure and management records your time without penalty. You may revoke biometric consent in writing at any time; your face data is then permanently destroyed and a receipt is logged. Access and deletion requests go through your employer.

10. Changes & contact

Material changes are versioned, and re-consent is captured in-app where required. Contact: privacy@chronox.app.