Privacy Policy

Last updated: 1 March 2026

1. Who we are

TempClock is a workforce management platform operated by Aligra Professional Staffing. We provide clock-in, time and attendance, and payroll integration services to businesses across the UK. When we say "TempClock", "we", "us", or "our", we mean the TempClock platform and its operator.

2. What data we collect

We collect the following categories of personal data:

  • Account data: Company name, contact name, email address, and phone number provided during signup.
  • Worker data: Names, badge numbers, locations, departments, and employment details added by account holders.
  • Biometric data: Facial photographs and 128-dimensional facial descriptor vectors generated from those photographs for identity verification purposes.
  • Clock-in data: Timestamps, verification method, match confidence scores, IP addresses, and GPS coordinates (where enabled).
  • Payment data: Billing information processed securely through Stripe. We do not store card numbers on our servers.
  • Usage data: Browser type, pages visited, and feature usage for improving our service.

3. How we use your data

We use personal data for the following purposes:

  • Providing and operating the TempClock platform and kiosk services.
  • Verifying worker identities at clock-in using facial recognition technology.
  • Generating timesheets, payroll exports, and compliance reports.
  • Processing payments and managing subscriptions via Stripe.
  • Sending service-related communications (not marketing).
  • Improving and maintaining the platform.

4. Facial recognition & biometric data

TempClock uses facial recognition technology for worker identity verification. Important details:

  • Facial processing happens via UK-hosted Cloud AI. Raw facial images are not stored — only mathematical signatures are retained for verification.
  • We store a 128-dimensional numerical descriptor vector, not the facial image itself, for ongoing verification.
  • Enrolment photographs are stored securely and can be deleted at any time by the account holder.
  • Workers can use PIN-based verification as an alternative to facial recognition.

5. Legal basis for processing

We process personal data under the following legal bases under UK GDPR: contractual necessity (to provide our service), legitimate interests (to improve and secure the platform), and explicit consent (for biometric data processing, obtained by the employer from their workers).

6. Data sharing

We do not sell personal data. We share data only with: Stripe for payment processing, hosting providers for infrastructure, and account holders who can access their own workers' data through the dashboard and client portal. All third-party processors are bound by data processing agreements.

7. Data retention

We retain account and worker data for the duration of an active subscription, plus 90 days after cancellation. Clock-in records are retained for 6 years to comply with UK employment record-keeping requirements. Biometric data is deleted within 30 days of a worker being removed from the system.

8. Your rights

Under UK GDPR, you have the right to:

  • Access, correct, or delete your personal data.
  • Restrict or object to processing.
  • Request data portability.
  • Withdraw consent for biometric processing at any time.
  • Lodge a complaint with the Information Commissioner's Office (ICO).

9. Security

We implement appropriate technical and organisational measures including encryption in transit (TLS 1.3), encryption at rest, access controls, audit logging, and regular security reviews. See our Security page for more details.

10. Contact

For privacy-related enquiries, contact us at privacy@tempclock.co.uk or via our contact page.