The ShiftKey website located at www.shiftkey.com (“Site”), mobile application, and all other related
services are products of ShiftKey LLC, a Texas limited liability company (“ShiftKey,” “we,” or “us”).
We take your privacy very seriously. How we will handle information we learn about you depends
upon what you do when using one of our services or websites (“Services”). Our platform connects
healthcare providers (“Providers”) to facilities in search of temporary healthcare providers
(“Facilities”). We strive to make all choices you make while using our service as transparent as
possible. We also hold the security of your personal information and business information as our top
priority. This policy will cover personally identifiable information (“Personal Information”) and
other information that may or may not be anonymous that you provide us through use of our services
or websites. All other information given to us is outside the scope of this policy. This policy (“Privacy
Policy”) will explain what information is collected, how that information is used and/or shared, how
the information is protected, and how you can control your privacy while using the service. We
reserve the right to make changes to this policy at any time and will update these terms on the
Services when we do so.
Information ShiftKey Collects
During your use of the Services, ShiftKey may collect the following data about you:
Information Provided by You
You may give us information about you by filling in forms on the Site or by corresponding with us by
phone, e-mail, or otherwise. This includes information you provide when you register to use our site,
subscribe to our service, and when you report a problem with our site. The information you give us
may include your name, email address, username, credentials, driver license number, social security
number, payment information, address, phone number, photos, and, in some instances, your location
(“Personal Information”). We also store any submissions, including your work or licensing
credentials that you may upload or provide to the Service in order to provide you with the features
and functionality of the Service. We will also likely verify the accuracy and status of your licensing
credentials PLEASE NOTE: WE DO NOT REDACT ANY CREDENTIALS THAT ARE UPLOADED TO THE
SERVICE AND ANY DOCUMENTS UPLOADED BY YOU ARE DONE SO AT YOUR OWN RISK. You may
redact documents loaded on our system, but this does not relieve you from supplying us with your
social security number for licensing and credential checking. We will also share your social security
number with the Facilities you bid on to allow them to conduct their own background checks. You
may withdraw your permission and prevent our use of your information by contacting us directly
Information Automatically Collected by ShiftKey
Like other websites or apps, we also may collect and store information that is generated
automatically as you navigate through our Services. We may collect information about your visit from
the browser on your computer or mobile device including but not limited to the time and date you
access the Services, your geographic location, IP address, device information, cookies and the pages
you request (“Non-Personal Information”) — to analyze trends, administer the Services, track
navigation of the site, deliver relevant advertisements and gather broad demographic information
for aggregate use (note that IP addresses are not linked to “Personal Information”). We use this
information to improve understanding of customer needs and provide relevant services. To
automatically collect information, we use various technologies including:
Cookies. Cookies are small data files that a website you visit may save on your hard drive that
usually includes an anonymous unique identifier. The cookie does not personally identify the
Provider; it merely identifies the computer with which the Provider accesses the Services.
Unless a Provider voluntarily identifies himself or herself (through registration, for example),
the Services will not be able to ascertain the identity of the Provider, even if a cookie is
assigned to a Provider’s computer. The only personal information a cookie can contain is
information supplied by a Provider. A cookie cannot retrieve any other data from your hard
Provider authentication, keeping track of your preferences, promotional campaigns that
require Provider identification, keeping track of our audience size and traffic patterns, and in
certain other cases. You can configure your browser to accept cookies, reject cookies or notify
you when a cookie is being used; however, if you do so it may render your computer unable
to take advantage of the personalized features enjoyed by other Providers of the Services.
Cookies allow us to provide better security on the Services, to customize the content, to track
purchases, and to keep the Services working properly.
Analytics. We use various analytics services to better understand how visitors interact with
our Services. These analytics services provide non-personally identifiable data including but
not limited to data on where visitors came from, what actions they took on our site and where
visitors went when they left our site.
How We Use Facility and Provider Data
We will use the information you provide to us for a variety of purposes, including to:
• create your ShiftKey account,
• provide communication between Facilities and Providers to request and/or confirm
scheduling for healthcare services,
• facilitate direct messaging between Facilities and Providers
• share Provider profiles with their Facilities and vice versa,
• verify the accuracy and status of your licensing credentials with various licensing boards,
• contact you for support and feedback requests,
• contact you to inform you of important changes or additions to our Services,
• send you administrative notices, offers and any other communications that we believe may
be of interest to you,
• operate, improve and maintain our products and services,
• track and monitor web traffic, and
• to implement SPAM protection.
How We May Share Facility and Provider Information
We don’t give your Personal Information to any third-party services, except when it’s necessary to
provide services (like when we partner with payment processors or other data services). When we
share data with third-party services that support our delivery of the Services, we require that they
protect your Personal Information to the same standards we do. We do reserve the right to disclose
Personal Information when we believe that doing so is reasonably necessary to comply with the law
or law enforcement, to prevent fraud or abuse, or to protect our legal rights.
Please see below for how we may share your Personal Information and Non-Personal Information.
Sharing of Personal Information
When you send information to the Services, you are granting us permission to use and take other
actions regarding such information, to provide the Services. We do not share, sell, rent or otherwise
information with third parties outside of ShiftKey under the following circumstances:
1) With Your Consent: We may share information when you provide us with your consent to do
so, like when we share Provider profiles with Facilities to link shift opportunities. This may
occur when you consent affirmatively or it may occur through your use of the Services as
2) Service Providers and Contractors: We reserve the right to disclose to service providers,
contractors, or other third parties any or all of the information that we collect online about
you and other visitors to conduct business on our behalf. These activities could include
processing or making payments, maintaining the Site, or facilitating email delivery to you. We
require that our service providers and contractors protect your Personal Information with
the same standards we do but we are not responsible for their policies or practices.
3) By Law or to Protect Rights: We may disclose information when we believe that disclosure is
necessary to comply with the law, to enforce our intellectual property rights, to enforce our
Terms of Service, or to protect the rights, property or safety of ShiftKey and our employees,
and if necessary to defend against third-party claims. We may also disclose information when
requested to comply with a court order, investigation, or governmental request.
4) Business Transfers: If we go through a business transfer, such as consolidation, merger,
restructuring, acquisition, or sale of part or all of our assets, you acknowledge and consent to
the transfer of your information. You further acknowledge and consent to the continued use
Please bear in mind that whenever you voluntarily make your Personal Information available for
viewing by third parties online – for example through comments and participation in forums or
through email – that information can be seen, collected and used by others besides us. We cannot be
responsible for any unauthorized third-party use of such information.
Sharing of Non-Personal Information and Aggregate Data
ShiftKey may share with third parties your Non-Personal Information and related aggregated data.
Because this form of data does not identify particular Providers or Facilities, these third parties will
not be able to contact you based solely on this data. For example, we may share aggregated usage
data from our Providers or may share IP addresses or general demographic information of our
Providers to provide anonymous aggregated data to business partners about the volume of use on
the Services and the opportunities in which Providers are most interested.
How We Protect All of Our Data
All information submitted to ShiftKey will be stored on a private cloud via Amazon Web Services. We
will use industry standard measures, including encryption where appropriate. However, as effective
as the reasonable security measures we implement may be, no security system is impenetrable. We
cannot guarantee the security of our database, nor can we guarantee that information supplied will
not be intercepted while being transmitted over the Internet. Therefore, any information you
transmit to us is sent at your own risk.
By using the Services or providing Personal Information to us, you agree that we may communicate
with you electronically regarding security, privacy, and administrative issues relating to your use of
the Services. If we learn of a security system’s breach, we may attempt to notify you electronically by
posting a notice on the Services or sending an email to you. You may have a legal right to receive this
notice in writing. To receive free written notice of a security breach (or to withdraw your consent
from receiving electronic notice), please contact us at the address below.
How You Can Control the Information We Collect, Use and Share
If you share information with us, you will have the opportunity to review, update, change or delete
the information you have provided to us (and that we continue to store) at any time through your
profile settings. You can also stop receiving emails from us or disable your account to prevent any
future purchases through that account. Please contact us directly at firstname.lastname@example.org to effect
changes or click on the “unsubscribe” link located at the bottom of marketing emails you may receive
On request, we will give you a copy of all the Personal Information about you that we hold. This
information is subject to a fee not exceeding the prescribed fee permitted by law.
We may retain certain information as required by law or for necessary business purposes. We are
under no obligation to store such Personal Information indefinitely and disclaim any liability arising
out of, or related to, the destruction of such Personal Information. In addition, you should be aware
that it is not always possible to completely remove or delete all of your information from our
databases without some residual data because of backups and other reasons. We are under no
obligation to destroy anonymized aggregate data.
Regardless of your choices regarding promotional communications and updates regarding content,
we may send you administrative messages, service announcements, terms and conditions of your
account, or other similar communications, without offering you the opportunity to opt out of
The Services may contain links to other sites or services. We are not responsible for the privacy
policies or other practices employed by websites linked to, or from, our website nor the information
or content contained therein. This privacy statement applies solely to information collected by our
Our Policy Toward Children
The Services are not directed to children under the age of 13. We will not knowingly maintain
personally identifiable information from or about anyone under 13. If we become aware that we have
collected personally identifiable information from a user that is under the age of 13, then we will
remove that child’s Personal Information from our files. If a parent or guardian learns his or her child
has provided us with Personal Information, he or she should contact us at email@example.com.
Consent to Transfer
Our computer systems for the Services are currently governed by and operated in the United States,
so your personal data will be processed by us in the United States, where data protection and privacy
regulations may not offer the same level of protection as in other parts of the world, such as the
European Union. ShiftKey makes no representation that the Services is governed by or operated in
accordance with the laws of any other nation. If you are a visitor from outside the United States, by
information to the United States, which may not offer an equivalent level of protection of that
required in the European Union or other countries, and to the processing of that information as
ShiftKey reserves the right to store this information in and outside of the United States and in
locations not under our direct control (for example, co-located server facilities).
Changes and Updates
updated policies and practices, you should check the effective date indicated at the end of this Privacy
Policy each time you use the Services. If we make any significant changes, we will notify you of such
alerting you of such changes. You will be bound by any such changes to the policy when you use the
Services after those changes have been posted. If we make material revisions concern practices
where we have represented we will obtain your consent to use or disclose your Personal Information,
we will obtain your consent before taking any action inconsistent with those representations.
concerns about either one, please contact us by e-mail at firstname.lastname@example.org.
November 1, 2017