Legal

Privacy Policy

Last updated: 27 March 2026

1. Introduction

Nursing Approach (“we”, “us”, “our”) is a United States company. We operate the website and platform services that connect care facilities, healthcare professionals, and authorized platform operators for staffing, compliance, attendance, and billing workflows. We are committed to protecting your privacy and handling personal information in line with applicable U.S. federal and state privacy laws.

This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have. By using our website or services, you acknowledge this policy. If you do not agree, please do not use the service.

2. Who is responsible for your data?

The data controller for personal data processed through the Nursing Approach platform is the organisation operating Nursing Approach. For questions about this policy or your data rights, please contact us via our contact page.

3. Information we collect

We may collect the following categories of information, depending on how you use the service:

  • Account and identity data: name, email address, phone number, role (e.g. facility manager, nurse, administrator), and login credentials.
  • Professional and compliance data: qualifications, credentials, KYC documents, right-to-work checks, and other information required to verify suitability for healthcare roles—processed as necessary to deliver the service and meet regulatory expectations.
  • Operational data: shift assignments, timesheets, attendance signals (including location-based verification where you have enabled location services), messages sent through the platform, and audit logs.
  • Technical and usage data: IP address, device identifiers, browser type, approximate region derived from IP, pages viewed, and diagnostic data to secure and improve the service.
  • Payment data: billing and transaction details are processed by our payment provider (Stripe). We do not store full card numbers on our servers; Stripe handles card data in accordance with its terms and PCI-DSS requirements.

4. How we use your information

We use personal data for purposes including:

  • Providing, operating, and improving the platform;
  • Registering accounts, authentication, and fraud prevention;
  • Facilitating shifts, timesheets, approvals, and invoicing;
  • Communicating with you about the service, support, and important notices;
  • Complying with legal obligations and responding to lawful requests;
  • Aggregated or anonymised analytics where individuals are not identifiable.

Where required by law, we process personal information on bases such as providing the services you requested, our legitimate business interests (balanced against your rights), compliance with legal obligations, and consent where we ask for it explicitly (for example non-essential cookies).

5. Cookies and similar technologies

We use cookies and similar technologies for session management, security, preferences, and understanding how the site is used. You can control cookies through your browser settings. Where we use non-essential cookies, we will seek your consent where required. Essential cookies may be necessary for the site to function.

6. Sharing and processors

We may share data with:

  • Service providers who assist us (e.g. hosting, email, analytics, security), subject to contractual confidentiality and data-processing terms;
  • Stripe for payment processing—see Stripe’s privacy policy for how they handle payment data;
  • Other users where needed to operate the service (e.g. facility and staff profiles relevant to a shift);
  • Authorities when required by law or to protect rights, safety, and integrity.

We do not sell your personal data.

7. International transfers

We primarily process and store personal information in the United States. If we transfer personal information to another country, we do so in accordance with applicable law and use appropriate safeguards (such as standard contractual clauses or other mechanisms) where required.

8. Retention

We retain personal data only as long as necessary for the purposes above, including legal, accounting, and healthcare record-keeping requirements. Retention periods vary by data type and role. You may request deletion subject to legal exceptions.

9. Security

We implement appropriate technical and organisational measures to protect personal data. No method of transmission over the internet is completely secure; we encourage strong passwords and safeguarding access to your account.

10. Your rights

Privacy rights depend on where you live. Depending on applicable law, you may have the right to access, correct, or delete personal information; obtain a copy of certain data; opt out of certain processing; or appeal a decision we make about a request. We do not sell your personal information as “sale” is defined under state privacy laws.

California residents (CCPA / CPRA): If you are a California resident, you may have the rights described in the California Consumer Privacy Act, including the right to know what personal information we collect, the right to delete personal information subject to exceptions, the right to correct inaccurate personal information, and the right to limit use of sensitive personal information where applicable. You may designate an authorized agent to submit a request on your behalf. We will not discriminate against you for exercising these rights. To submit a request, contact us via Contact.

Other U.S. states: Residents of Colorado, Connecticut, Virginia, and other states with comprehensive privacy laws may have similar rights; contact us and we will respond in line with applicable law.

You may also file a complaint with a U.S. federal or state regulator, such as the Federal Trade Commission (ftc.gov), where applicable.

To exercise any right, contact us via Contact. We may need to verify your identity before responding.

11. Children

Our services are not directed at individuals under 18. We do not knowingly collect personal data from children. If you believe we have collected such data, please contact us so we can delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and adjust the “Last updated” date. Material changes may be communicated by email or in-app notice where appropriate.

13. Contact

Questions about this Privacy Policy or your data: Contact us.

← Back to home