How RotaPulse handles personal data — clearly and responsibly.
RotaPulse provides workforce management software for UK security and service businesses. This policy explains what personal data we process and why. It is a plain-English summary and not a substitute for tailored legal advice.
For our customers we process account and billing details. On behalf of our customers (as a data processor) we process employee and operative records — such as names, contact details, vetting and licensing information, attendance, location at clock-in, and pay data — strictly to deliver the service.
We use data only to provide and improve the service: scheduling, vetting, attendance, payroll, invoicing, reporting and support. We do not sell personal data, and we do not use it for advertising.
We process data to perform our contract with customers and to meet our legitimate interests in running and securing the service. Our customers are responsible for the lawful basis of the workforce data they hold in RotaPulse.
Each customer’s data is isolated at the database level with row-level security, encrypted in transit, and access is restricted by role. We apply appropriate technical and organisational measures to protect personal data.
We retain data for as long as an account is active and as needed to meet legal obligations (for example, vetting records that must be kept for a defined period). Customers can export or request deletion of data subject to those obligations.
Individuals have rights under UK GDPR including access, rectification and erasure. As we usually act as a processor, please direct requests to the employer who holds your data; we will support them in responding.
For privacy questions, email privacy@rotapulse.com and we will respond promptly.
Start free, set up in minutes, and bring your whole operation into one platform.