DataRetentionPolicy

Data Retention Policy

Last updated: January 20, 2023

Introduction

Sometimes, Zoracom customers may request deletion of data that belongs to them, from Zoracom systems. This policy outlines the provisions we provide for customers to make such requests and describes how such requests are to be handled

This policy is applicable to: Data that is classified as Customer-classified as per the Data Classification Policy. Data that is requested to be deleted belongs to the customer making the request. Data that resides in Zoracom systems. Specifically, data that resides in third party services that are not managed and hosted by Zoracom are excluded from this policy. Data that resides in Zoracom products or services that are in testing, alpha/beta state, or an early access program

By default, Zoracom stores its customer's data indefinitely. For efficiency and cost reasons, it may choose to delete the customer's data at any point after the customer contract ends. Zoracom regularly backs up customer data as per Data Backup Policy.
Zoracom may provide the option for customers to delete data after their subscription ends. This request must be made by the customer, and Zoracom may require additional verification to authenticate the identity of the customer making the request. Zoracom will delete all information from currently running production systems within a time limit specified in our Zoracom Process Configuration.
Once deleted, a customer's data cannot be restored.

Zoracom staff who violate this policy may face repercussions in proportion to the impact of their violation. Zoracom management will determine how serious a staff member's offense is and decide the appropriate penalty. Penalties may include