Privacy Policy

  Effective Date: Nove 20, 2025

  WorkTrace Attendance Management ("we", "our", "us", or "the App") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and

  safeguard your information when you use our mobile application available on iOS App Store and Google Play Store.

  By using WorkTrace, you agree to the collection and use of information in accordance with this policy.

  1. Information We Collect

  We collect and process the following types of information:

  1.1 Personal Information

  - Name: For user identification and profile display

  - Email Address: Required for account registration, authentication, and communication

  - Phone Number: For contact purposes and employee management

  - Profile Images: Optional profile photos stored locally on your device in base64 format

  - Role Information: User roles (Super Admin, Admin, HR, Employee) for access control

  1.2 Location Data

  - GPS Coordinates: Real-time location data collected when marking attendance

  - Geofencing Data: Predefined geographical boundaries set by administrators to restrict attendance marking to specific areas

  - Location is only collected when you actively mark attendance, not in the background

  1.3 Attendance Records

  - Check-in/Check-out Times: Timestamp records of attendance

  - Date-wise Attendance: Historical attendance data organized by date

  - Attendance Status: Present (P), Absent (A), Late (L), Weekend (W)

  - Company and Employee Association: Links between employees and their respective companies

  1.4 Company Information

  - Company Name: Organization details for multi-tenant support

  - Company Address: Physical location information

  - Shift Schedules: Working hours, shift timings, and break periods

  - Department Information: Organizational structure data

  1.5 Technical Data

  - Device Information: Device model, operating system version

  - App Version: For compatibility and update management

  - Network Connectivity Status: To ensure proper app functionality

  - Theme Preferences: Light/dark mode selection stored locally

  1.6 Authentication Data

  - Login Credentials: Securely hashed passwords

  - Authentication Tokens: Secure session tokens stored locally using Flutter Secure Storage

  - Role-based Access Permissions: Authorization levels for different features

  2. How We Use Your Information

  We use the collected information for the following purposes:

  2.1 Core Functionality

  - Account Management: Create, authenticate, and manage user accounts (Super Admin, Admin, HR, Employee)

  - Attendance Tracking: Record check-in/check-out times with location verification

  - Geofencing: Enforce attendance marking within predefined geographical boundaries

  - Shift Management: Assign and track employee shifts and schedules

  - Role-based Access Control: Provide appropriate features based on user roles

  2.2 Administrative Functions

  - Employee Management: Create, update, and manage employee records

  - Company Management: Multi-tenant support for multiple organizations

  - Report Generation: Create attendance reports and analytics

  - Notifications: Send attendance reminders and important updates

  2.3 App Personalization

  - Profile Display: Show user information and profile images in dashboards

  - Theme Preferences: Remember user's light/dark mode selection

  - Dashboard Customization: Role-specific dashboard layouts and widgets

  2.4 Security & Compliance

  - Fraud Prevention: Verify location to prevent attendance fraud

  - Access Control: Ensure users only access authorized features

  - Audit Trail: Maintain records for compliance and dispute resolution

  3. Permissions We Request

  The app requires the following permissions to function properly:

  | Permission             | Purpose                                              | When Used                     |

  |------------------------|------------------------------------------------------|-------------------------------|

  | INTERNET               | Network connectivity for data synchronization        | Always (when app is active)   |

  | ACCESS_NETWORK_STATE   | Check network availability                           | Always (when app is active)   |

  | ACCESS_FINE_LOCATION   | GPS coordinates for attendance location verification | Only when marking attendance  |

  | ACCESS_COARSE_LOCATION | Approximate location for geofencing                  | Only when marking attendance  |

  | CAMERA                 | Capture profile photos and documents                 | Only when user uploads images |

  | READ_EXTERNAL_STORAGE  | Access gallery for profile image selection           | Only when user selects images |

  | WRITE_EXTERNAL_STORAGE | Save reports and exported files                      | Only when generating reports  |

  | RECEIVE_BOOT_COMPLETED | Restore app state after device restart               | On device boot                |

  Important: Location permission is only used when you actively mark attendance. We do not track your location in the background or when the app is closed.

  4. Location-Based Attendance System

  4.1 How It Works

  - Administrators define geofencing boundaries (allowed attendance areas) using Google Maps integration

  - When an employee marks attendance, the app captures their current GPS location

  - The system verifies if the employee is within the allowed boundary

  - If outside the boundary, attendance marking is restricted to prevent fraud

  4.2 Location Data Storage

  - Location data is stored only with attendance records

  - Coordinates are not tracked continuously

  - Location history is retained with attendance records for audit purposes

  - Administrators can view location data to verify attendance authenticity

  4.3 User Control

  - You can deny location permission, but attendance marking will be disabled

  - Location data is only collected when you tap "Mark Attendance"

  - You can view your own location history in your attendance records

  5. Data Storage & Security

  5.1 Local Storage

  - Profile Images: Stored locally on your device in base64 format using Flutter Secure Storage

  - Authentication Tokens: Securely stored locally with encryption

  - Theme Preferences: Stored locally for personalization

  - Cached Data: Temporary data for offline functionality

  5.2 Server Storage

  - User Accounts: Email, name, role, phone number stored on secure servers

  - Attendance Records: Check-in/check-out times with location coordinates

  - Company Data: Organization information and shift schedules

  - Employee Records: Employment details and associations

  5.3 Security Measures

  - Encryption: All data transmission uses HTTPS/TLS encryption

  - Secure Storage: Flutter Secure Storage with platform-specific encryption (Keychain on iOS, KeyStore on Android)

  - Password Hashing: User passwords are never stored in plain text

  - Access Control: Role-based permissions prevent unauthorized access

  - Regular Backups: Server data is backed up regularly for disaster recovery

  5.4 Data Retention

  - Active Accounts: Data retained while account is active

  - Deleted Accounts: Data permanently removed within 30 days of account deletion

  - Attendance Records: Retained for compliance purposes as per company policy

  - Audit Logs: Retained for security and dispute resolution

  6. Third-Party Services

  We integrate with the following third-party services:

  6.1 Google Maps Platform

  - Purpose: Display maps, set geofencing boundaries, visualize attendance locations

  - Data Shared: Location coordinates for map display only

  - Privacy Policy: https://policies.google.com/privacy

  6.2 Cloud Storage Providers

  - Purpose: Store user data, attendance records, and company information

  - Data Shared: User accounts, attendance records, company data

  - Security: Industry-standard encryption and access controls

  6.3 Analytics (if applicable)

  - We do not currently use analytics or tracking services

  - If implemented in the future, we will update this policy and notify users

  7. Data Sharing & Disclosure

  7.1 We Do NOT Sell Your Data

  We never sell, rent, or trade your personal information to third parties for marketing purposes.

  7.2 Within Organization

  - Company Administrators can view attendance records of their employees

  - HR Personnel can access employee information within their organization

  - Employees can only view their own data

  7.3 Legal Requirements

  We may disclose your information if required by law, court order, or government regulation, including:

  - Compliance with legal obligations

  - Protection of our rights and property

  - Prevention of fraud or security threats

  - Public safety concerns

  8. Account Deletion & Data Rights

  8.1 Account Deletion

  You can permanently delete your account at any time:

  Steps:

  1. Open the App

  2. Go to Settings → Profile Settings

  3. Tap Delete Account

  4. Confirm deletion

  What Happens:

  - Your account is permanently deleted from our servers

  - All associated data (email, name, profile) is removed within 30 days

  - Attendance records may be retained for legal/compliance purposes but disassociated from your identity

  - This action is irreversible

  8.2 Your Data Rights

  You have the right to:

  - ✅ Access: Request a copy of your personal data

  - ✅ Rectification: Correct inaccurate or incomplete data

  - ✅ Erasure: Request deletion of your account and data

  - ✅ Data Portability: Export your data in a readable format

  - ✅ Withdraw Consent: Revoke permissions (may limit app functionality)

  To exercise these rights, contact us at info@mktechsol.com

  9. Children's Privacy

  This app is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under

  13 has provided us with personal information, we will delete it immediately.

  If you are a parent or guardian and believe your child has provided us with personal information, please contact us at info@mktechsol.com.

  10. International Data Transfers

  Your data may be stored and processed in data centers located in different countries. We ensure that appropriate safeguards are in place to protect your data in

  accordance with this Privacy Policy and applicable laws.

  11. Updates to This Privacy Policy

  We may update this Privacy Policy from time to time to reflect:

  - Changes in app features or functionality

  - Legal or regulatory requirements

  - Industry best practices

  How You'll Be Notified:

  - In-app notification upon opening the app after an update

  - Email notification to registered users (if significant changes)

  - Updated "Last Updated" date at the top of this policy

  Your Continued Use of the app after changes constitutes your acceptance of the updated policy.

  12. Contact Us

  If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please contact us:

  📧 Email: info@mktechsol.com📞 Phone: +92 341 8900999🌐 Website: https://mktechsol.com/📍 Address: Al-Nawaz Arcade, Adjacent to Rawalpindi Urology Hospital, Murree Road Rawalpindi.

  Response Time: We aim to respond to all inquiries within 48-72 hours.

  13. Governing Law

  This Privacy Policy is governed by and construed in accordance with the laws of Pakistan, without regard to its conflict of law provisions.

  By using WorkTrace Attendance Management, you acknowledge that you have read, understood, and agree to this Privacy Policy.