Privacy notice.

Last updated: 2026-06-28 — provisional draft.

EN-Payroll Sync is a B2B platform. We process data on behalf of our customers and their end clients (employers and their employees). This notice describes how we handle that data at the platform level. The binding agreement between EN-Payroll Sync and each customer is a separate signed contract.

1. What data we process

On a customer's behalf, the platform processes the employee data fields used by a benefits administration platform:

• Identifiers: name, payroll ID, masked SSN (last 4 in operational data)
• Employment: hire date, termination date, status, classification
• Compensation: salary, salary type, effective dates
• Demographics: date of birth, gender, marital status, address
• Benefits: enrollment, coverage level, deduction codes, amounts

2. PHI minimization

We don't store full Social Security numbers in our operational database. SSNs are masked to last four digits in any record that lands in the runtime DB. Full identifiers exist only inside encrypted attachments in cloud object storage, behind explicit access controls.

3. Encryption

Operational data at rest is encrypted with managed keys. Snapshots and attachments are encrypted at rest in AWS S3 with KMS-managed keys. Data in transit is encrypted via TLS end-to-end.

4. Access control

Access to customer data is controlled at the database layer (row-level security) and the application layer. Operators see only their own clients. End clients (employer users) see only their own company. PHI-bearing surfaces require a separate access capability beyond role.

5. Subprocessors

We rely on a small number of infrastructure providers for hosting, compute, database, object storage, and email delivery. A list is provided in the customer contract.

6. Retention

Operational records are retained for the duration of the customer relationship plus the period required for audit and compliance. Specific retention windows are defined in the customer contract.

7. Your rights

The customers we serve act as the data controller for the employees whose data the platform processes. Individuals with requests (access, correction, deletion) should contact the organization that manages their benefits enrollment. EN-Payroll Sync will support customers in fulfilling those requests.

8. Contact

Privacy questions: hello@enpayrollsync.com.

This page is a provisional draft and will be replaced by a final privacy policy ahead of general availability. The provisional draft is not a binding agreement and should not be relied on as such.