Privacy Policy

This notice explains how OriginHRMS handles data across our web platform and our Android and iOS mobile applications.

Last updated: June 2026

1. Scope

This Privacy Policy applies to OriginHRMS services, including our web application and our Android and iOS mobile applications. It covers how we collect, use, share, store, protect, retain, and delete information when employers, employees, managers, and administrators use Origin.

The mobile applications support workforce operations such as attendance, leave, payroll, tasks, chat, file sharing, notifications, and communication. This policy is intended to work together with any in-app disclosures shown before permission-gated or sensitive data features are used.

2. Developer Identity & Contact

OriginHRMS is the workforce management service described in this policy. For privacy questions, consent withdrawal requests, or data deletion requests, contact us at support@originhrms.com.

Users can also use the public account deletion resource at originhrms.com/account-deletion to request deletion outside of the app, which helps satisfy mobile store account deletion expectations.

3. Mobile Privacy Highlights

OriginHRMS provides workforce management across web, Android, and iOS, including attendance, leave, payroll, tasks, chat, file sharing, and related workplace workflows.
The mobile apps may request access to camera, photos, files, microphone, notifications, and location only when those permissions are needed for employer-approved product features.
Origin does not sell personal or sensitive user data and does not use collected account data for cross-app tracking or data broker activity.
Users can review permissions in device settings, manage certain privacy choices inside the app, and request account deletion through the public account deletion flow.

4. Data We Collect and Process

Operational Data Categories
  • Account profile, company, department, and workforce relationship information
  • Attendance events, leave records, payroll and payslip information, and shift/workflow history
  • Chat messages, tasks, attachments, notification tokens, and collaboration metadata used to operate workspace features
  • Technical and security data such as device type, session identifiers, IP address, diagnostics, and fraud-prevention logs

5. How We Use Information

Service Delivery & Operations
  • Sign-in, session continuity, organization access, and account security
  • Attendance, leave, payroll, billing, task management, support, and workplace collaboration workflows
  • Chat, file sharing, voice communication, notification delivery, and operational troubleshooting
  • Abuse prevention, legal compliance, billing support, audit trails, and service reliability monitoring

6. Device Permissions & Sensitive Access

Camera / Photos

Attendance evidence, profile updates, and file/media sharing

Microphone

In-app voice calls only when the user actively joins or starts a call

Location

Attendance or workplace verification features where enabled by the employer workflow

Secure Storage

Protected session, token, and account state storage on device

Origin requests access only when those capabilities are needed for product functionality, and purpose strings shown by the operating system are meant to describe those uses clearly. Where store policies require it, sensitive access should also be supported by in-app disclosures and runtime permission flows.

7. Sharing with Service Providers and Legal Disclosures

  • Origin may share data with infrastructure, cloud hosting, authentication, notification, storage, analytics, or payment service providers only to the extent needed to operate the service.
  • Any third party with access to user data is expected to protect that data in a manner consistent with this policy and applicable platform rules.
  • Origin may also disclose information where required by law, valid legal process, fraud prevention, security response, or a business transfer such as a merger or acquisition with legally appropriate notice.

8. Retention, Deletion, and Account Removal

  • Origin retains data for as long as needed to operate the service, meet security and fraud-prevention needs, support billing and audits, and comply with legal obligations.
  • If the app account is deleted at the user's request, Origin will delete associated app-account data unless retention is required for legitimate reasons such as security, fraud prevention, or law.
  • Users can request deletion outside the app using the public account deletion flow at originhrms.com/account-deletion or by contacting support.

9. Privacy Choices, Consent, and Revocation

  • Permission-gated features are requested in context, and users can decline or revoke permissions in device settings.
  • Notification delivery, secure unlock preferences, and other account-level choices can be managed inside supported account settings surfaces.
  • Where an employer controls workplace workflows, some operational visibility over workforce records may remain governed by employer policy and applicable law.

10. Security

Security and reasonable safeguards

Origin uses secure transport, role-based access, backend validation, protected session handling, and operational monitoring to reduce unauthorized exposure of workforce data. No system can promise absolute security, but we aim to apply reasonable technical and organizational safeguards.

Secure transportRole-based access

11. Contact Us

For privacy questions, store listing concerns, consent withdrawal, permission concerns, or data deletion requests, contact us at support@originhrms.com.