This Privacy Policy explains how Stylcove HRMS ("the App", "we", "our", or "us") accesses, collects, uses, stores, and shares information when employees, managers, approvers, HR users, and authorized staff use the App.
This policy applies to the Android application published under the package name com.ascent.hrms and to related backend services used to provide HRMS functions such as login, attendance, face registration, leave, permissions, travel plans, TADA/expense claims, advance requests, payslips, notifications, and profile information.
- Account & employment information: username, employee ID, biometric/employee reference ID, staff ID, department, user ID, profile details, attendance records, leave records, travel requests, advance requests, payslip-related details, and other HR data.
- Authentication information: username and password during sign-in, quick PIN data, OTP verification data, and session tokens.
- Biometric authentication status: device biometric login is verified locally by your OS. We do not receive or store raw fingerprint, facial template, or other raw biometric unlock data.
- Face images & attendance images: face photos may be captured for face registration and AI/face-based attendance verification, including multiple angles.
- Location information: precise or approximate latitude/longitude when using attendance or location-dependent punch features.
- Device & identifier information: device UUID, hardware/device signature, Android ID, brand, manufacturer, model, build fingerprint, and session/device-binding metadata.
- Notifications data: Firebase Cloud Messaging token, notification content, message metadata, and notification status.
- Documents & media you submit: leave attachments, travel documents, reimbursement evidence, bills, supporting photos, and other files you upload.
- Optional microphone & speech input: if you use voice-to-text, we may receive and store the resulting text. Raw audio is not intentionally stored.
- Analytics & technical usage data: Firebase services may process app/device identifiers, diagnostics, and app interaction data per Google/Firebase terms.
- Authenticate users and maintain secure sessions.
- Bind accounts to authorized devices and reduce unauthorized access.
- Verify attendance, geofence-based punch actions, and face-based attendance events.
- Create, process, review, approve, reject, or display leave, permission, travel, TADA, and advance records.
- Display employee profile information, attendance history, notifications, and payslip-related content.
- Send push notifications and store notification history related to HR workflows.
- Support optional convenience features such as PIN login, device biometric login, and speech-to-text form entry.
- Troubleshoot, monitor app performance, improve service reliability, and maintain security.
- Comply with workplace policies, legal requirements, audit requests, and employer reporting obligations.
We share information only as needed for the App's operation and legitimate business purposes:
- Your employer or authorized administrators: to manage attendance, approvals, payroll-related workflows, employee records, and operational reporting.
- Service providers & infrastructure providers: hosting, notification, analytics, storage, and technical support vendors acting on our behalf.
- Google/Firebase services: for push notifications, app analytics, and related technical services.
- Legal or compliance recipients: where required by law, regulation, court order, lawful request, audit, merger, acquisition, or protection of rights and safety.
We do not sell personal data for monetary consideration.
?? Camera
?? Location
??? Microphone
?? Notifications
??? Read Media Images
?? Read Media Video
You can deny some permissions, but parts of the App may not work correctly if the corresponding feature depends on that permission.
READ_MEDIA_IMAGES: Used to allow employees to select and upload bill payment proof images and profile photos from their device gallery for account verification and HR record purposes.
READ_MEDIA_VIDEO: Used to allow employees to select and upload video files as bill payment proof or supporting documents for transaction verification within HR workflows.
We retain information for as long as reasonably necessary to provide the App, operate your employer's HR workflows, maintain security, keep audit records, resolve disputes, enforce agreements, and comply with applicable law or company policy.
- Account, attendance, leave, travel, approval, and payroll-related records may be retained for employment, audit, or statutory purposes.
- Notification tokens may be retained until refreshed, invalidated, or removed after logout/account changes.
- Local app data stored on-device may remain until logout, app reset, app removal, or manual clearing by the user.
We use reasonable administrative, technical, and organizational measures to protect personal data, including access controls, authenticated sessions, permission-gated device access, and role-based workflow controls.
No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
Depending on your role, employer policy, and applicable law, you may be able to request access, correction, update, deletion, or restriction of certain personal data. You may also log out, disable optional biometric login on your device, or revoke app permissions through device settings.
For employment-related records, requests may need to be handled through your employer or HR administrator, as they control parts of the underlying workforce data.
This App is intended for employees, managers, HR personnel, and other authorized adult users in a workplace environment. It is not directed to children.
The App may rely on third-party technologies or services such as Google Firebase and other infrastructure or support providers. Their handling of information may also be governed by their own policies and terms.
We may update this Privacy Policy from time to time. We will revise the effective date when material changes are made. Your continued use of the App after an update means the updated policy will apply to future use, to the extent permitted by law.