Data Protection & Hosting

Data protection that builds trust

Employee data deserves special protection. Shiftdesk was built on privacy-by-design principles from day one — hosted in Frankfurt, encrypted, with a data processing agreement under Art. 28 GDPR for B2B customers.

Start 14-day free trial Book a demo

* Informational notes based on statutory default values (ArbZG, MiLoG). Not legal advice. Collective-bargaining, company-specific and individual special arrangements must be reviewed on your own responsibility.

What sets Data Protection & Hosting apart with Shiftdesk

Hosting in Frankfurt (EU)

All data is stored with Supabase in the Frankfurt region (fra1). The application is delivered via Vercel (also in Frankfurt). Primary data storage in the EU.

256-bit TLS encryption

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). No unencrypted access is possible.

Tenant isolation

Every company has its own isolated database partition. No company can access another company's data.

Data processing agreement for B2B customers

We offer a data processing agreement (Art. 28 GDPR) for all B2B customers. Mandatory when processing employee data.

Two-factor authentication

Protect your account with TOTP-based two-factor authentication. Extra security for all users with administrative rights.

Role-based access control

5 permission levels ensure that each user only sees and edits the data relevant to their role.

Ideal for these industries

Data Protection & Hosting with Shiftdesk is especially suited for:

Care & healthcarePublic sectorFinancial servicesEducationIndustryAll GDPR-sensitive industries

Ready for better shift scheduling?

Start your 14-day free trial now — free and no credit card required. Or book a personal demo.

Start free trial Book a demo