Shipt Job Applicant Privacy Notice
This Privacy Notice was last updated on June 27, 2024.
Scope
Shipt, Inc. (“Shipt”) is committed to protecting your Personal Information and processing it responsibly. This Privacy Notice (“Notice”) describes our general practices relating to the collection, use and disclosure of data relating to Shipt’s job applicants. “Personal Information” means any information relating to or capable of identifying a particular individual.
If you are a shopper or prospective shopper, please refer to the Shopper and Prospective Shopper Privacy Notice for details on how Shopper and prospective Shopper Personal Information is collected, used and disclosed. The Shipt Privacy Notice describes our general practices relating to the processing of the Personal Information of our customers, Members and website visitors, as well as office visitors and individuals within our vendor and business partner organizations.
The Personal Information Shipt Collects
How Personal Information is Used
How and to Whom Personal Information is Disclosed
How Personal Information is Protected
Retention of Personal Information
Information for California Residents
The Personal Information Shipt Collects
Directly from You
When you apply for a job with Shipt, we collect Personal Information directly from you when you visit our website or mobile app, or through other communication channels such as email, telephone, online applicant platforms, any third-party chat functionality available on our websites and mobile applications, or in person. Shipt may collect the following information during the recruiting process:
When you apply for an open role, we collect:
- Contact information such as first and last name, email address, mailing address, and telephone number.
- Details of your current and past employment such as name of employer, position held, and dates of employment.
- Information that may be needed to complete a pre-hire background check such as Social Security Number (SSN), driver’s license number/state ID, or other acceptable identity verification.
- Education and training information.
- Citizenship information and/or work authorization information.
- The contact information of any personal references.
When you create an account on our job applicant portal, we collect authentication credentials such as username and password.
When you visit our website, we automatically collect information about your device and use of the application such as IP address, device identifiers, device details, pages visited and accessed through cookies and similar technologies.
When you communicate with us regarding your application, we collect additional personal information including but not limited to text, via email, via website and through third-party chat functionalities on our website and/or mobile applications.
Any other information you may choose to provide as part of the interview process.
From Other Sources
Shipt obtains Personal Information from third parties such as:
During the recruiting process and with your consent when applicable:
- We may collect contact information such as the first and last name, email address, mailing address, and telephone numbers of eligible candidates and details of their employment, education and training experience from a third-party recruiting service.
- We may collect information about current and past employment, education and training from publicly available sources, as permitted by law.
- We may work with service providers to collect information in connection with job applicant background checks, such as information related to criminal offenses or proceedings or sentences, credit reports and other similar reference checks, as permitted by applicable law.
- Information collected about your past employment experience from previous employers and/or personal references provided by you.
Cookies and Similar Technologies
We and our partners use various technologies to automatically collect and store information when you interact with our Services, including the use of cookies, web beacons, mobile software developments kits (“SDKs”) or similar technologies:
- Cookies: When you access our Service, Shipt will issue a cookie to your device. A cookie is a small file placed on the hard drive of your computer. You may refuse to accept browser cookies by activating the appropriate setting on your browser. However, if you select this setting, you may be unable to access certain parts of the Services.
- Web beacons: Certain webpages maintained by Shipt, as well as emails sent by Shipt, may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags and single-pixel gifs) that collect information about page visits and email viewing. Information collected may include limited personal information, such as name, email address and universal ID.
Personal Information and non-Personal Information may be linked together and once linked, may identify an individual person. If we do combine non-Personal Information with Personal Information, the combined information will be treated as Personal Information for as long as it remains combined.
Aggregate or Anonymized Data
In each case above, we may aggregate or anonymize the foregoing types of information in support of legitimate business purposes such that they are no longer capable of identifying you. In that event, the information is no longer considered “Personal Information” and may be used for any purpose consistent with applicable law.
When using deidentified data, Shipt does not attempt to reidentify the data. We may use and disclose deidentified or aggregated data with any third party without restriction, as permitted by applicable law. We may use and disclose non-Personal Information for any purpose without restriction.
Public Data
Shipt may collect data about you that we have a reasonable basis to believe is lawfully made available to the general public by you. We do not consider such data to be “Personal Information” and may use such data for any purpose consistent with applicable law.
How Personal Information is Used
Shipt uses Personal Information to:
- Manage all parts of the applicant administration process such as interviewing, verifying references, selecting and hiring staff and conducting background check investigations.
- Communicate with job applicants (including using interactive chat features on our websites and mobile applications).
- Provide you access to our job applicant portal.
- Consider the applicant for other future positions at Shipt.
- Develop and improve our products, services, software, website and our hiring practices through research, development, analytics and business intelligence.
- Manage network security, which includes disaster recovery and business continuity.
- Prevent fraud and/or identity theft.
- Comply with privacy laws, information security requirements and other legal requirements.
How and to Whom Personal Information is Disclosed
Within Shipt
Shipt allows access to applicant Personal Information to people within Shipt who have a “need to know” that information to manage the recruitment process and for other legitimate business purposes. For example, your resume will be disclosed to the Shipt employees who will be interviewing you.
Service Providers
We disclose Personal Information to companies or individuals that provide us with services. These service providers provide services such as background checks and office security. We may also disclose your Personal Information to our IT and system administration providers, cloud hosting providers, software providers (including those vendors providing chat functionalities and features for our websites and mobile applications), and payroll processors. We may disclose your Personal Information to our professional advisors, such as lawyers, accountants, and other similar advisors. Service providers can only process Personal Information as instructed by Shipt.
Business Transition
In the event that Shipt, or any portion of our assets or business, are acquired, sold, merged, or transferred, whether as a result of or in the event of an acquisition, divestiture, reorganization, restructuring, or dissolution, or as a going concern or as a part of bankruptcy, liquidation, or similar proceeding, or otherwise, Shipt will disclose Personal Information to the company involved to complete the business transition, including at the negotiation stage and including where the Personal Information is among the assets being transferred.
Applications and Tools
We offer tools, widgets and applications on our website such as search engine functionalities, that are powered by third parties. If you use those applications or tools, any Personal Information that you provide will be disclosed to the third party that provides that functionality. The third party’s use of that Personal Information is subject to their Privacy Notice.
Law Enforcement
We may report to law enforcement agencies any activities that we reasonably believe to be unlawful, or that we reasonably believe will aid a law enforcement investigation into unlawful activity. In addition, we reserve the right to release your Personal Information to law enforcement agencies if we determine, in our sole judgment, that either you have violated our policies, or the release of your Personal Information will protect the rights, property, or safety of Shipt, or another person.
Legal Process
We may disclose your Personal Information to others as required or permitted by law. This includes sharing your Personal Information with governmental entities or third parties in response to subpoenas, court orders, other legal processes such as garnishments for child support orders, or as we believe is necessary to comply with applicable laws, to exercise our legal rights, to defend against legal claims that have been brought against us, or to defend against possible legal claims that we determine in our sole discretion might be brought against us.
How Personal Information is Protected
Shipt uses commercially reasonable administrative, organizational, and physical safeguards designed to protect Personal Information from loss, theft, and unauthorized use, disclosure or modification. Please be aware that no data transmission over the internet is 100% secure. While we strive to protect your Personal Information, we cannot ensure or warranty the security of any information you transmit to us, and you do so at your own risk.
Retention of Personal Information
Shipt will retain your Personal Information for as long as is reasonably necessary to fulfill the purpose for which it was disclosed or as required to comply with legal obligations. The precise periods for which we keep your Personal Information vary depending on the nature of the information and why we need it. Factors we consider in determining these periods include the minimum required retention period prescribed by law or to fulfill the purpose(s) for which the Personal Information was collected. At the end of that period, Shipt will securely delete the Personal Information. If there is any data that we are unable, for technical reasons, to delete entirely from our systems, we will put in place appropriate measures to prevent any further use of such data.
Third Party Links
Shipt’s platforms, including its website and mobile apps, may contain links to webpages created by parties other than Shipt. We do not control such websites and are not responsible for their contents or the privacy policies or other practices of such websites. Our inclusion of links does not imply any endorsement of the material on such websites or any association with their operators. These websites and services may have their own privacy notices, which the user will be subject to upon linking to the third party’s website. Shipt strongly recommends that users review the third party’s terms and conditions and privacy policies.
Do Not Track Disclosure
Some browsers have a “do not track” feature that lets you tell websites that you do not want to have your online activities tracked. At this time, we do not respond to “do not track” signals.
Information for California Residents
This section supplements the other information in this Notice and applies solely to “consumers” as defined by the California Consumer Privacy Act of 2018, as amended from time to time, and its related regulations (the “CCPA”). Specifically, this Notice applies to our processing activity when we are acting as a “business” under the CCPA—meaning that we control the purposes and means of processing your personal information. This section explains Shipt’s collection, processing, and disclosure of “personal information” (as defined by the CCPA) relating to California consumers in their capacities as job applicants of Shipt.
As defined by the CCPA, “personal information” includes any information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. Personal information does not include information:
- That is lawfully made available from government records.
- That Shipt has a reasonable basis to believe is lawfully made available to the general public by the consumer or from widely distributed media, or by the consumer.
- Made available by a person to whom the consumer has disclosed the information if the consumer has not restricted the information to a specific audience.
- That is lawfully obtained, truthful information that is a matter of public concern.
- That is deidentified or aggregate consumer information.
- Excluded from the CCPA’s scope, personal information is covered by certain sector-specific privacy laws such as the Fair Credit Reporting Act.
In the past twelve months, Shipt has collected the following categories of personal information from job applicants and disclosed such information to the following categories of third parties for the business purposes described in this Notice:
Categories of PI Collected | Examples | Categories of Third Parties to Whom Disclosed |
Identifiers | Real name, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers |
|
Internet or other similar network activity | Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement |
|
Personal information types listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) | Name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, or employment information |
|
Sensory data | Audio recordings, voicemail, or similar information |
|
Legally protected classification characteristics | Race, color, national origin, citizenship, marital status, sex, age (40 years or older), gender |
|
Professional or employment-related information | Prior employment history, performance information, resume or similar information |
|
Please note that we may also use, disclose, or transfer your information in connection with the sale, merger, dissolution, restructuring, divestiture, or acquisition of our company or its assets. We may also disclose your personal information in response to a court order, subpoena, search warrant, law or regulation.
Sensitive Personal Information
Shipt does not collect or process “sensitive personal information” (as defined by the CCPA) for the purposes or inferring characteristics about California consumers. For example, Shipt does not collect or process geolocation information for the purposes of inferring characteristics about California consumers. Accordingly, Shipt treats any such information as “personal information” consistent with applicable provisions of the CCPA.
Sale or Share of Personal Information
Shipt has not “sold” any categories of personal information or “shared” any such information for the purposes of cross-context behavioral advertising (as those terms are defined by the CCPA) in the past 12 months. Likewise, Shipt does not have actual knowledge of any sales or sharing of personal information regarding minors under 16 years of age.
Applicable Retention Periods
Shipt determines the retention period for each category of personal information based on the criteria set forth above in the section titled “Retention of Personal Information.”
How Your Information is Collected
Shipt collects the above-identified categories of personal information from the following sources:
- Direct collection: We collect information directly from you when you choose to provide it to us by filling out forms, such as the job application forms available through our “Careers” page and job portals, sending us attachments or other communications in connection with the job application process, interviewing with us, or otherwise directly providing the information to us.
- Third parties: We collect information about you from third parties who support our human resources and recruiting efforts, including recruitment agencies, vendors that support our performance of background checks and reference checks, and advertising vendors.
- Indirect and technology-based collection: We also collect certain information from you indirectly when you use the devices we provide to you or otherwise access our network, websites, or mobile applications. Shipt collects certain identifiers (such as IP addresses) and internet and similar network activity (such as website usage data) from you indirectly using cookie, pixels, and passive tracking technologies.
Purpose for Collecting or Disclosing Personal Information
We collect or disclose your personal information for the following business or commercial purposes (as well as any other purposes described in this Notice):
- Facilitating your job application with Shipt.
- Communicating with you about your application with Shipt.
- Evaluating a job applicant and engaging in the hiring process.
- Developing, updating, and improving our job applicant and human resource processes.
- Preventing and detecting fraud, financial crime, hacking activities, security breaches, and other unlawful activities in connection with the website or purchase and use of our services.
- Complying with our legal obligations.
How to Exercise Your Rights
The CCPA provides California residents with the following rights relating to their personal information, subject to certain exceptions:
Access/Data Portability: the right to request access to the personal information that Shipt collects, uses, discloses, sells, or shares (including that personal information collected and used in the past 12 months) and the right to request that we provide copies of the specific pieces of personal information we collected about you.
- If a verifiable consumer request is made, and subject to any exceptions or limitations under the CCPA, we will take steps to deliver the personal information to you electronically in a portable and readily useable format, to the extent technically feasible. Consistent with the CCPA and our interest in the security of your personal information, we will not provide copies of sensitive personal information we may receive from you (e.g., driver’s license number, other government-issued identification number, financial account number, account password, or security questions or answers) in response to a CCPA request, to the extent any of those items are in our possession.
Deletion: the right to request that Shipt delete personal information we have collected from you subject to certain exceptions permissible by the applicable law.
- We may retain an archived copy of your records as permitted or required by law.
Do Not Sell or Share: the right to request that Shipt opt you out of the sale of your personal information, or that Shipt opt you out of the sharing of your personal information for the purposes of cross-context behavioral advertising. Because Shipt does not engage in this activity with the personal information it collects about you as a job applicant, these rights are not available.
Correction: if we maintain inaccurate personal information about you, the right to request that Shipt correct that inaccurate personal information, taking into account the nature of the personal information and the purposes of the processing of the personal information.
How to Submit a Request
You can submit a request using the methods listed below:
- Access/Data Portability Requests: Contact Shipt at 844-515-6256 or click this link.
- Deletion Requests: Contact Shipt at 844-515-6256 or click this link.
- Correction Requests: Contact Shipt at 844-515-6256 or click this link.
Process for an Access/Data Portability, Deletion or Correction Request
You will be required to provide at least 4 pieces of information which may include your name, mailing address, email address and phone number. Shipt will use this information to search our systems and determine if we have information about you. If we are able to locate information about you, we will fulfill your request. If we are not able to match the 4 pieces of information you submit, we may only be able to provide you with a report that includes the categories of Personal Information we collect, use, or disclose.
A link to your access report will be sent to you by email, which will be sent to the email address you provided at the time you submitted your request.
If you are an authorized agent, you will be required to submit your name, mailing address, email address and phone number as well as the name, mailing address, email address and phone number of the individual you are making a request on behalf of. Shipt will use the individual’s information to search our systems and determine if we have information about the individual. If we are able to locate the information about the individual, we will fulfill the request. As an authorized agent you will receive an email confirming that we received the request along with a second email asking you to fill out a certification form confirming your information and certifying that you have the right to make this request on behalf of the individual. Once the report is ready, it will be sent to the email address you have given us.
The CCPA requires us to respond to a verifiable consumer request within forty-five (45) days of its receipt; however, we may extend that period by an additional 45 days. If we require more time, we will inform you of the reason and extension period in writing. We will deliver our written response via e-mail. Any disclosures we provide will only cover the twelve (12)-month period preceding the receipt of the verifiable consumer request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. You may only make a verifiable consumer request for access twice within a twelve (12)-month period, provided that you may request disclosure beyond the 12-month period as permitted by the CCPA. We will not charge a fee to process or respond to a verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing the request.
Our Commitment Not to Discriminate
We will not discriminate or retaliate against a job applicant for exercising their rights under the CCPA, including by denying you benefits or services that we make available or providing a different level or quality of services or benefits.
How to Contact Shipt
If you have questions about this Notice, you can contact us in one of the following ways:
Send an email to: privacy@shipt.com
Write to:
Shipt
Attn: Legal Department
420 20th St. N, Suite 100
Birmingham, AL 35203
Changes to this Privacy Notice
Shipt will update this notice periodically to reflect changes to our privacy practices. We will provide notice online when we make any material changes to this notice.
Changes since last update on January 25, 2024:
- Minor language changes.