Our Approach to Privacy

Privacy is at the heart of everything we do at Paylocity. We are committed to privacy and the protection of all personal information related to our colleagues, contractors and job applicants, client employees and contractors, and business contacts such as clients, prospects, vendors, and website users. We’ve adopted a set of privacy principles that serve as the foundation for our global privacy program.

Whether personal information is subject to the General Data Protection Regulation (GDPR), the California Consumer Protection Act (CCPA), or other US or international privacy or data protection laws, our unwavering commitment to privacy is reflected in our daily actions and our focus on privacy. We’ve established strong processes to implement and enforce compliance with applicable privacy laws and ensure strong ethical data practices as part of our core business strategy.

Please take a moment to familiarize yourself with the content of this page.

Governance and Accountability 

Paylocity’s global privacy program is staffed with a team of individuals with deep expertise in data privacy. The program has support and oversight from the privacy governance committee, which has representation from all functions of the organization. The privacy program is comprised of multiple domains, including policies and procedures, training and awareness, and privacy-by-design, to ensure that personal information is properly handled and protected through the data life cycle.

Transparency and Notice 

Whatever your relationship with us – a Paylocity colleague, job applicant, current or prospective client, client employee or contractor, vendor or other business contact, or website user – we will provide you with information about how Paylocity processes your personal information and how you can exercise your rights with regards to your personal information.

Purpose Limitation

We will process personal information for the purposes it was collected. In addition, we may process your personal information for legitimate secondary purposes that are closely related to the original purpose for which such information was collected. For clarity, client employees’ personal information will be processed in accordance with our contracts with our clients and any other instructions that we may receive from our clients. 

Data Minimization

We limit the collection and use of personal information to only the minimum amount necessary to achieve the stated business purpose. This includes segregating access to personal information based on roles and what is necessary to carry out specific job functions, and embedding privacy into our processes and products starting at the design phase.

Data Retention

We have established a data retention policy and schedule, which governs how we retain and delete data related to our client employees, clients, and other stakeholders.

Data Quality and Accuracy

Where Paylocity controls your personal information, or where required by law, we will take reasonable steps to ensure your personal information is accurate and up to date. 

Security

We have implemented administrative, technical, and physical security measures to ensure the confidentiality and integrity of the personal information we process. This includes measures that protects against unauthorized or unlawful processing, accidental loss, destruction, or damage.