PRIVACY POLICY

1. Introduction

Shenll HRMS (“Shenll HRMS”, “we”, “our”, “us”) is a Human Resource Management System provided by Shenll Technology Solutions (P) Ltd,designed to help organizations manage employees, candidates, and HR operations efficiently.

This Privacy Policy explains how personal data is collected, used, stored, and protected when you access or use Shenll HRMS across all platforms, including:

  • Web-based applications and portals
  • Mobile applications (Android and iOS)
  • Admin, HR, manager, and employee interfaces

By using Shenll HRMS, you agree to the practices described in this Privacy Policy.

This policy complies with:

  • General Data Protection Regulation (GDPR – EU)
  • Digital Personal Data Protection Act, 2023 (India)

2. Scope of This Privacy Policy

This Privacy Policy applies to all services and access points provided under the Shenll HRMS platform, whether accessed through a web browser or mobile application.

The same data protection standards apply across web apps, mobile apps, and future platform enhancements.

3. Roles Under Data Protection Laws

Data Controller

The organization (employer) using Shenll HRMS is the Data Controller, as it determines:

  • What personal data is collected
  • The purpose of processing
  • Data retention duration

Data Processor

Shenll Technology Solutions (P) Ltd acts as a Data Processor, processing data strictly on the instructions of the organization.

4. Information We Process

a. Personal & Employment Information

  • Full name
  • Email address
  • Mobile number
  • Employee or candidate ID
  • Job role, department, location
  • Employment status and work-related details

b. HR & Operational Data

  • Attendance and work records
  • Leave and permission requests
  • Task, project, and workflow updates
  • Payroll-related references (excluding banking credentials)

c. Technical & Usage Information

  • Device type and operating system
  • App and browser version
  • Log and session data for security and performance

Shenll HRMS does does not collect personal data beyond what is required to provide HRMS functionality.

5. Lawful Basis for Processing (GDPR)

Personal data is processed based on:

  • Contractual necessity – to deliver HRMS services
  • Legal obligations – employment and labor compliance
  • Legitimate interests – system security andreliability
  • Consent – where explicitly required

6. Purpose of Data Processing

Personal data is processed only to:

  • Manage employee and candidate lifecycles
  • Enable attendance, leave, payroll, and HR workflows
  • Provide role-based access and approvals
  • Maintain system security and integrity
  • Improve platform performance

Data is never used for advertising, profiling, or marketing purposes.

7. Data Sharing & Disclosure

Personal data may be shared only:

  • With the organization (employer)
  • With authorized service providers (hosting, security) under confidentiality agreements
  • When required by applicable law

We do not sell or rent personal data to third parties.

8. Cross-Border Data Transfers

Where data is processed outside the user’s country:

  • GDPR-approved safeguards (such as Standard Contractual Clauses) are applied
  • DPDP Act–compliant contractual protections are maintained

9. Data Security

We implement appropriate technical and organizational measures, including:

  • Secure authentication mechanisms
  • Role-based access control
  • Encrypted data transmission
  • Restricted administrative access

While we take strong precautions, no system can guarantee absolute security.

10. Data Retention

Personal data is retained:

  • As required to provide HRMS services
  • As defined by the organization’s policies
  • As required by applicable laws

The organization (Data Controller) controls data retention and deletion.

11. User Rights

Under GDPR (EU Users)

Users have the right to:

  • Access their personal data
  • Request correction or deletion
  • Restrict or object to processing
  • Request data portability

Under India DPDP Act

Users have the right to:

  • Access personal data
  • Request correction or erasure
  • Withdraw consent (where applicable)
  • Raise grievances

Requests should be routed through the organization or system administrator

12. Children’s Privacy

Shenll HRMS is intended for professional and organizational use only

We do not knowingly process data of individuals under 18 years of age

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect legal or operational changes. Updates will be published on our website or within the app

14. Contact & Grievance Redressal

For privacy or data protection concerns, contact:

Emailshenllhrms.help@gmail.com

Emailwww.shenll.com

We will respond within the timeframe required by applicable law.