Shyft Privacy Notice
Overview
This notice is dated June 21st, 2017 and supplements the Gap Mobile Device Management Policy. All terms used and not otherwise defined shall have the same meaning as given in the Gap Mobile Device Management Policy.
Policy
This notice describes explains how we may collect, process, use and store your personal information if you choose to use Shyft software (“Software”).
This notice applies to personal devices as well as Gap-provided devices. The decision to use a personal device to access the Gap Network is entirely voluntary. Employees should not use personal devices for business activities outside of normal working hours unless specifically approved by your manager.
Individuals
This notice applies to all Gap employees, contractors, and consultants who use the Software to access information on the Gap Network (“Users”).
Mobile Devices
Gap Inc. will decide, in its sole discretion, which types of Mobile Devices may be used to connect to the Gap Network and which software are supported by the Software (“Approved Devices”).
User privacy
Expectation of Privacy
For full details on how Gap protects the privacy of its Users on Gap Devices and on the Gap Network or via optional software and/or technologies provided to you during the course of your employment and/or contract with Gap, please see the Gap Mobile Device Management Policy, the Electronic Communications Policy and any applicable employee privacy policies which may be relevant to your location and role. Please note that the contents of your activity in the Software, including your messages or postings, may be readable or shared by other employees or your manager.
Information Received through the Software
In order to allow you to connect with fellow employees and help you conveniently manage your work schedule, Gap may receive information, including personal and technical information, about you, your device and your use of the Software. Data received by Gap will include: your contact information (including your name and email and phone number and photograph if you choose to upload a photo); information about your location (including your fine-point GPS location if you allow the Software to access your device’s GPS), the stores and locations and teams with which you work; details about your mobile device (including the device type, your device’s Internet Protocol Address); and details about how you use the Software (including click-stream details and information collected through cookies, pixel tags and other technologies). Additionally, the Software allows you to communicate with other employees via messages or sharing calendar information or posting content to group boards. Any information that you place into the service, including the contents of messages and/or images sent or details of communications between you and other employees may be accessed, processed and stored or monitored by other Gap Inc. employees. Please note that the contents of your messages or postings may be readable or shared by other employees or your manager. If you use different devices (such as your home computer, laptop, mobile device and/or an intelligent personal assistant device) to access the Software, we may be able to associate you with each of your devices. Information we have collected from your different devices may be combined with other information you have provided us. We may use such information to help provide more tailored experiences and consistent services and experiences across all of your devices as explained in this privacy notice. We also may use this information to prevent fraud, such as by identifying when your account is accessed from an unfamiliar device, or to provide customized offers or advertising based on your use of each device and your interactions with our brands, services and offerings. The Software may allow you to connect to your personal social media site. If you choose to connect to account with the Software (including by using single sign on from your social media account or sharing/interacting with content via your social media account), Your personal information may be disclosed in connection with your social sharing activity. By connecting your customer account and your social media account, you authorize us to share information with your social media account provider, and you understand that the use of the information we share will be governed by the social media site’s privacy policy. You should ensure that all social media sharing activity is conducted in accordance with Gap’s Social Media Sharing Guidelines.
Gap may disclose the information we receive in accordance with the Gap Mobile Device Management Policy and any applicable Employee Privacy Policies, including to our service providers and/or as required by law. In addition to the uses described in the Gap Mobile Device Policy, Gap will use the information it receives to allow you to register for the Software and connect to Gap Networks, communicate with other employees and manage your work schedule. We may also use the information to monitor and protect the security of the Gap Network, our systems and data and create metrics to improve our workplace and the Software.
Applications and Downloads
All Gap-Managed applications installed on Gap Devices or on your personal devices must be installed in accordance with all.
Policy Non-compliance
In accordance with the Gap Mobile Device Policy, Gap reserves the right to refuse, at its sole discretion, access to the Gap Network and/or Software. GapTech will, for example, engage in such action if it feels that a Mobile Device puts the Gap Network, Gap Information, your data, Users, customers and/or vendors at risk. This may be the case if a Mobile Device has been stolen, lost or otherwise compromised or if a User abuses his/her access privileges.
Modifications of the Policy
Gap reserves the right to change this Policy. You are responsible for regularly reviewing this Policy and adhering to the changes.
Enforcement
Policy violations may result in disciplinary action, including termination. See the Gap Inc. Code of Business Conduct.
If you have a business need requiring a policy or standards exception, please visit Information Security on Jive to learn more about the exception process.
Report Incidents: Immediately report all security or policy related incidents to
Global Corporate Security Operations: US: 1-866-839-3911 /International: 00-1415-427-3911 / Corporate_Security@gap.com. Incidents include, but are not limited to, a potential or actual compromise of company and/or personal information, a lost or stolen device (e.g. mobile phone or laptop), or a policy violation.