Privacy Policy

At CheckIO we are committed to protecting your privacy and that of your employees. This policy describes the data we collect, how we use it, and the rights available to you under applicable legislation in each jurisdiction.

Last updated: March 16, 2026

1. Data controller

The data controller is Servicios Tecnológicos de asistencia Spa, with address at Avda. Providencia 1650, Of. 1002, Providencia, Santiago.

For privacy inquiries or to exercise your rights, contact: contacto@checkio.cl contacto@checkio.cl

CheckIO acts as Data Processor of employees' personal data. The client company (employer) acts as Data Controller. A Data Processing Agreement (DPA) is signed between CheckIO and each client company establishing the obligations, responsibilities, and data protection guarantees in accordance with applicable legislation.

2. Information we collect

Employee data

Full name, ID document (RUT or equivalent), photo for identity verification in markings, contact data (email, phone), job and hierarchy information.

Geolocation data

GPS coordinates, approximate address (via reverse geocoding) and timestamp when employees perform attendance markings.

Marking and schedule data

Date, time, location, marking method (facial, GPS, QR, manual), photos captured at check-in when required by employer configuration, and associated justifications.

Client company data

Company name, RUT, legal representative contact data, billing information and service plan configuration.

3. Data collected by CheckIO Mobile App

The CheckIO mobile app (iOS and Android) collects the following data, as declared in App Store Connect and Google Play:

Data	When	Purpose	Recipient
GPS location	When marking attendance	Verify employee is in authorized zone	Backend, Nominatim
IP address	At each marking	Audit and device verification	ipify.org, Backend
Photo (selfie)	Check-in when required by employer	Verify identity	AWS S3, Backend
Device identifier	Login and sessions	Authentication and security	Backend
Account data (RUT, name, email)	Registration and login	Authentication	Backend

4. Third-party services

We use the following external providers that may receive or process personal data:

ipify.org (USA): Obtains device IP for attendance records. Only IP is sent.
OpenStreetMap / Nominatim: Converts GPS coordinates to readable address. Only lat/long sent.
Amazon Web Services (AWS) S3: Secure storage of attendance photos. Data resides in Estados Unidos.
CheckIO Backend: Server that processes all attendance, profiles, markings and company data.

5. App permissions (iOS and Android)

The CheckIO app requests the following permissions exclusively for the indicated purposes:

Camera: QR scanning and selfie capture during check-in when required by employer.
Location (When In Use): Verify employee is in authorized zone when marking. On Android, ACCESS_FINE_LOCATION is requested.
Face ID / Biometrics: Protect app access when reopening. On Android, the BiometricPrompt API is used.
Microphone: The app captures only photos, not video or audio. We do not collect audio data.
Notifications (Android): Check-in reminder alerts and system communications.

6. How we use the information

Attendance management

Manage attendance control, record markings, validate schedules and generate reports.

Report generation

Attendance, tardiness, absences, hours worked and HR indicators reports.

Service improvement

Aggregated and anonymized data for usage analysis and feature development.

Communications

Notifications about markings, reminders and system alerts.

7. Legal basis for processing

The processing of personal data in CheckIO is based on different legal grounds depending on the purpose and the applicable jurisdiction. Below are the legal bases by processing purpose:

Purpose	Data type	Legal basis	Required/Optional
Attendance record	Markings, schedules, check-in location	Employment contract execution	Required
Photo on check-in	Facial photograph when marking	Explicit consent of the worker	Optional
Biometrics (fingerprint)	Fingerprint for identification	Explicit consent of the worker	Optional
Geolocation	GPS coordinates at check-in time	Explicit consent of the worker	Optional
Email communications	Email address	Explicit consent of the worker	Optional

Purposes marked as "Optional" require the worker's free, specific, informed, and unambiguous consent. The worker may revoke consent at any time without affecting the lawfulness of prior processing. Revocation does not affect contractual-basis purposes (attendance record).

8. Data sharing

With client companies

Employee data is shared exclusively with the client company. The company has access to its employees' attendance data.

With service providers

We share data with technical providers (hosting, storage, geocoding) under confidentiality agreements.

Legal requirements

We may disclose information when required by law, court order or to protect our rights.

9. International transfers

Some data may be transferred outside Chile: USA (ipify.org, AWS S3), OpenStreetMap/Nominatim servers in EU.

We use EU standard contractual clauses or other safeguards. Contact for more information.

The specific transfer mechanisms used include: Standard Contractual Clauses (SCCs) approved by the European Commission for transfers from the EEA; safeguards under Art. 33 of the LGPD for transfers from Brazil; authorization from the Data Protection Agency for transfers from Chile (Ley 21.719); and data subject consent when required by local legislation (Peru, Mexico, Colombia). Argentina has an adequacy decision from the European Union.

10. Data security

Measures implemented

TLS/HTTPS encryption, secure tokens, controlled access, audits and backups.

Sensitive information protection

Facial photos encrypted. Geolocation retained only as necessary.

11. User rights

User rights vary depending on the applicable jurisdiction. Below are the rights recognized in each country where CheckIO operates:

Right	Chile	Peru	Mexico	Colombia	Brazil	Argentina	USA	Europe
Access							Yes*
Rectification
Erasure/Deletion
Portability	Yes**
Objection
Opt-out of data sale	N/A	N/A	N/A	N/A	N/A	N/A		N/A
Consent revocation							N/A
Restriction of processing	Yes**
Complaint to authority							FTC/AG

*CCPA: "right to know". **Ley 21.719 (Chile's new personal data protection law, 2024).

To exercise any of these rights, contact contacto@checkio.cl. We will respond within a maximum of 30 business days (or the period established by applicable legislation in your jurisdiction).

12. Data retention

Data retention periods vary depending on the type of data and applicable legislation:

Data type	Retention period	Legal basis
Attendance markings	Duration of employment + 5 years	Labor legislation (varies by country, 5-10 years)
Check-in photographs	1 year (not configurable by the client)	Documented in system configuration
Biometric data (fingerprint)	Until consent revocation + 30 days for deletion	Consent; BIPA: maximum 3 years or purpose fulfilled
Geolocation	Duration of employment + deletion post-service	Consent
Client company data	Duration of the contract + 5 years	Tax and contractual obligations
Account data (email, RUT)	Duration of employment + deletion post-service	Contract execution

After the expiration of the indicated periods, data is securely deleted. Anonymized data may be retained indefinitely for statistical purposes.

13. Children's privacy

CheckIO is not intended for users under 16. We do not knowingly collect data from minors. If you are a parent/guardian, contact contacto@checkio.cl to request deletion. Law 19.628 establishes provisions on minor data.

14. Cookies and technologies

We use cookies on the web for sessions and analytics. You can manage preferences in your browser. The mobile app does not use cookies; it uses secure local storage for tokens.

15. Changes to this policy

We reserve the right to update this policy. Significant changes will be notified via the platform or email. Review this policy regularly.

16. Contact

For privacy inquiries, to exercise rights or report incidents:

Privacy email: contacto@checkio.cl
General email: jvillalobos@checkio.cl
Phone: +569 6175 4435

We will respond to all requests within 30 business days.

17. Consent by purpose

CheckIO implements a granular consent system by purpose. Each processing purpose is presented individually to the worker, who can accept or reject each one independently:

Attendance record

Data collected: Check-in/check-out markings, schedules, device location at the time of marking.
Purpose: Record and control the worker's attendance in accordance with the employment contract and applicable labor legislation.
Legal basis: Employment contract execution
Required: Yes (contractual basis)
Revocability: Not applicable (contractual basis). This processing is inherent to the employment relationship.
Recipients: Employer company (Data Controller), CheckIO (Data Processor).
Retention: Duration of employment + legal retention period according to jurisdiction.

Photo on check-in

Data collected: Facial photograph (selfie) captured at the time of check-in.
Purpose: Visual verification of the worker's identity at the time of attendance marking.
Legal basis: Explicit consent of the worker
Required: No (optional)
Revocability: Yes. The worker may revoke this consent at any time. Revocation does not affect the lawfulness of prior processing. After revocation, existing photographs are deleted within 30 days.
Recipients: Employer company, CheckIO, AWS S3 (encrypted storage).
Retention: 1 year from capture.

Biometrics (fingerprint)

Data collected: Biometric fingerprint template (not the fingerprint image).
Purpose: Secure and unambiguous identification of the worker for attendance marking.
Legal basis: Explicit consent of the worker
Required: No (optional)
Revocability: Yes. The worker may revoke this consent at any time. After revocation, the biometric template is deleted within 30 days.
Recipients: Employer company, CheckIO (the template is stored encrypted and is not shared with third parties).
Retention: Until consent revocation + 30 days for effective deletion. Under BIPA (Illinois): no more than 3 years or until the purpose is fulfilled, whichever comes first.

Geolocation

Data collected: GPS coordinates and approximate address at the time of marking.
Purpose: Verify that the worker is at the authorized location at the time of marking attendance.
Legal basis: Explicit consent of the worker
Required: No (optional)
Revocability: Yes. The worker may revoke this consent at any time. After revocation, geolocation will no longer be recorded in future markings.
Recipients: Employer company, CheckIO, OpenStreetMap/Nominatim (coordinates only for reverse geocoding).
Retention: Duration of employment. Data is deleted after service termination.

Email communications

Data collected: Worker's email address.
Purpose: Sending work notifications, check-in reminders, and system alerts.
Legal basis: Explicit consent of the worker
Required: No (optional)
Revocability: Yes. The worker may revoke this consent at any time. After revocation, the worker will no longer receive email communications.
Recipients: Employer company, CheckIO.
Retention: Duration of employment.

Consent is requested individually for each purpose at the time of the worker's registration in the system. The acceptance or rejection of each purpose is documented with date, time, and device identifier.

18. Compliance by jurisdiction

CheckIO operates in compliance with data protection laws in each jurisdiction where it provides services. Below is the applicable regulatory framework in each country:

Chile

Applicable legislation

Ley 21.719 (2024) on Personal Data Protection; Ley 19.628 on Protection of Private Life

Supervisory authority

Agencia de Protección de Datos Personales (created by Ley 21.719)

Legal basis for processing

Data subject consent, employment contract execution, compliance with labor and tax legal obligations.

Data subject rights

Access, rectification, cancellation, objection (ARCO), portability (Ley 21.719).

Data retention

Labor data: employment relationship + 5 years (Código del Trabajo).

Breach notification

Mandatory notification to the Data Protection Agency within 72 hours of becoming aware of the breach (Ley 21.719).

Special notes

Ley 21.719 modernizes Chile's data protection framework, aligning it with international standards such as GDPR.

View full legislation

Peru

Applicable legislation

Ley Nº 29733 on Personal Data Protection; Reglamento DS 003-2013-JUS

Supervisory authority

Autoridad Nacional de Protección de Datos Personales (ANPDP), Ministerio de Justicia y Derechos Humanos

Legal basis for processing

Informed, prior, express, and unambiguous consent. For sensitive data (biometrics): written consent.

Data subject rights

Access, rectification, cancellation, objection (ARCO).

Data retention

According to documented purpose and proportionality principle.

Breach notification

Communication to the data subject when their rights are affected. No specific deadline established by law.

Special notes

International transfer requires data subject consent or that the destination country has an adequate level of protection.

View full legislation

Mexico

Applicable legislation

Ley Federal de Protección de Datos Personales en Posesión de los Particulares (LFPDPPP); Reglamento de la LFPDPPP

Supervisory authority

Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales (INAI)

Legal basis for processing

Consent (implied for non-sensitive data, express for sensitive data). Privacy Notice (Aviso de Privacidad) mandatory.

Data subject rights

Access, rectification, cancellation, objection (ARCO). Response period: 20 business days.

Data retention

Only for the period necessary to fulfill the purpose. Blocking prior to deletion.

Breach notification

No formal notification obligation. INAI recommends voluntary communication to affected data subjects.

Special notes

Biometric data is classified as sensitive data and requires express written consent. The Privacy Notice must be available before data collection.

View full legislation

Colombia

Applicable legislation

Ley Estatutaria 1581 de 2012; Decreto Reglamentario 1377 de 2013

Supervisory authority

Superintendencia de Industria y Comercio (SIC), Delegatura para la Protección de Datos Personales

Legal basis for processing

Prior, express, and informed authorization from the data subject. For sensitive data: processing prohibited except for legal exceptions.

Data subject rights

Know, update, rectify, delete data; revoke authorization; file complaints with the SIC.

Data retention

According to purpose and registered processing policies.

Breach notification

Immediate communication to data subjects and the SIC when a breach affecting processing occurs.

Special notes

Databases must be registered in the Registro Nacional de Bases de Datos (RNBD) with the SIC.

View full legislation

Brazil

Applicable legislation

Lei Geral de Proteção de Dados (LGPD), Lei 13.709/2018

Supervisory authority

Autoridade Nacional de Proteção de Dados (ANPD)

Legal basis for processing

Data subject consent, contract execution, legal obligation compliance, regular exercise of rights, legitimate interest (Art. 7 LGPD).

Data subject rights

Confirmation of processing, access, correction, anonymization, blocking, deletion, portability, information on sharing, consent revocation (Art. 18 LGPD).

Data retention

According to purpose (Art. 15-16 LGPD). Deletion upon processing termination, except for legal obligations.

Breach notification

Communication to the ANPD and data subjects within a reasonable period when there is relevant risk or harm (Art. 48 LGPD).

Special notes

Mandatory designation of Encarregado (DPO). Biometric data is sensitive data (Art. 5, II and Art. 11). International transfer pursuant to Art. 33 LGPD.

View full legislation

Argentina

Applicable legislation

Ley 25.326 on Personal Data Protection; Decreto Reglamentario 1558/2001

Supervisory authority

Agencia de Acceso a la Información Pública (AAIP)

Legal basis for processing

Free, express, and informed consent. Exceptions: data from public sources, legal obligations, contractual relationship.

Data subject rights

Access (free every 6 months), rectification, deletion, confidentiality.

Data retention

As long as the purpose persists. Deletion when data is no longer necessary.

Breach notification

No formal breach notification obligation exists under current legislation.

Special notes

Argentina has an adequacy decision from the European Union for data protection. Sensitive data requires express consent.

View full legislation

United States

Applicable legislation

CCPA/CPRA (California); BIPA (Illinois); CPA (Colorado), VCDPA (Virginia), CTDPA (Connecticut)

Supervisory authority

No single federal authority. FTC, State Attorneys General. In California: CPPA.

Legal basis for processing

CCPA/CPRA: right to know, delete, opt-out of sale. BIPA: informed written consent prior to biometric collection.

Data subject rights

Right to know, right to delete, right to opt-out of sale/sharing, right to non-discrimination, right to correct (CPRA).

Data retention

BIPA: destruction within 3 years or upon fulfillment of purpose. CCPA: retention proportional to purpose.

Breach notification

Varies by state. California: without unreasonable delay. Illinois: notification to Attorney General.

Special notes

CheckIO does not sell or share employees' personal data for advertising purposes. Specific BIPA disclosures in Section 20.

View full legislation

European Union / EEA

Applicable legislation

General Data Protection Regulation (GDPR), Regulation (EU) 2016/679

Supervisory authority

Data Protection Authorities (DPA) of each Member State (CNIL, BfDI, AEPD, ICO, etc.)

Legal basis for processing

Contract execution (Art. 6.1.b), legal obligation (Art. 6.1.c), legitimate interest (Art. 6.1.f), explicit consent for sensitive data (Art. 9.2.a).

Data subject rights

Access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), portability (Art. 20), objection (Art. 21).

Data retention

According to purpose. Minimization and storage limitation principle (Art. 5.1.e).

Breach notification

Notification to the competent DPA within 72 hours (Art. 33). Notification to data subjects if high risk (Art. 34).

Special notes

Biometric data: special category (Art. 9). DPIA mandatory for large-scale processing of sensitive data (Art. 35). DPO mandatory (Art. 37). International transfers: Chapter V (SCCs, BCRs, adequacy).

View full legislation

19. Security breach notification

In the event of a security breach affecting personal data, CheckIO will act in accordance with the deadlines and procedures established by each jurisdiction:

Jurisdiction	Notification deadline	Who is notified	Regulatory basis
Chile	72 hours from becoming aware	Data Protection Agency + affected data subjects	Ley 21.719
Peru	No specific deadline	Data subject when their rights are affected	Ley 29733
Mexico	No formal obligation	Voluntary communication recommended (INAI)	LFPDPPP
Colombia	Immediately	Data subjects + SIC	Ley 1581
Brazil	Reasonable period	ANPD + data subjects if relevant risk or harm	LGPD Art. 48
Argentina	No formal obligation in force	Communication to data subjects recommended	Ley 25.326
USA	Varies by state; California: without unreasonable delay	Attorneys General + affected data subjects	CCPA, state laws
Europe (GDPR)	72 hours from becoming aware	Competent DPA + data subjects if high risk (Art. 34)	GDPR Art. 33

CheckIO maintains an internal incident response protocol that includes: detection and containment, impact assessment, notification to corresponding parties, and incident documentation. Each client company will be notified immediately in the event of a breach affecting their data.

20. Biometric data

CheckIO processes biometric data (fingerprint) exclusively for the purpose of worker identification in attendance markings, when the employer has activated this feature and the worker has granted explicit consent. The following disclosures are made in compliance with applicable laws:

BIPA (Biometric Information Privacy Act, Illinois, USA)

•CheckIO collects, stores, and uses biometric fingerprint templates exclusively for the purpose of identifying the worker at the time of attendance marking.
•Collection is not performed without the worker's informed written consent.
•CheckIO publishes this retention and destruction policy as required by BIPA 740 ILCS 14/15(a).
•Biometric data is destroyed when the original purpose is fulfilled or within 3 years of the individual's last interaction with CheckIO, whichever comes first.
•CheckIO does not sell, lease, trade, or otherwise profit from workers' biometric data.
•Biometric data is stored using AES-256 encryption and transmitted exclusively through channels protected with TLS 1.2 or higher.
•CheckIO does not disclose or disseminate biometric data to third parties without the worker's consent, except when required by law or court order.

GDPR Art. 9 (Special category data, European Union)

•Biometric data used to uniquely identify a natural person is classified as special category data under Art. 9 of the GDPR.
•CheckIO processes biometric data only with the explicit consent of the data subject (Art. 9.2.a) or when necessary to fulfill employment obligations (Art. 9.2.b).
•A Data Protection Impact Assessment (DPIA) is conducted pursuant to Art. 35 of the GDPR when biometric processing is performed at large scale.

LGPD Art. 11 (Sensitive data, Brazil)

•Biometric data is classified as sensitive personal data under Art. 5, II of the LGPD.
•Processing is carried out only with the data subject's specific and highlighted consent for specific purposes (Art. 11, I).
•The Encarregado (DPO) oversees the processing of biometric data and is available for data subject inquiries.

Ley 21.719 (Sensitive data, Chile)

•Biometric data is considered sensitive data under Ley 21.719.
•Processing requires the data subject's explicit, free, informed, specific, and unambiguous consent.
•CheckIO allows biometric consent revocation at any time, proceeding to delete the template within 30 days.

LFPDPPP (Sensitive data, Mexico)

•Biometric data is considered sensitive personal data under the LFPDPPP.
•Processing requires the data subject's express written consent.
•The Privacy Notice (Aviso de Privacidad) explicitly states the purpose of biometric data processing.

CheckIO stores biometric templates, not fingerprint images. Templates are mathematical representations that cannot be reconstructed to obtain the original fingerprint. All storage and transmission is performed with bank-grade encryption.

Questions about privacy?

We're here to help. Contact us if you have any questions about how we handle your data.

Send Email Request Demo