Data Retention Policy for Cubic Compass Software
1. Introduction
- This Data Retention Policy outlines the commitment of Cubic Compass Software (the "Company") to retain the data collected and processed in connection with the services provided to our clients. This policy is designed to ensure compliance with legal obligations and to provide our clients with transparent information about our data handling practices.
2. Data Collection
- The Company provides IT services for Salesforce customers, including an API for moving data and metadata between Salesforce orgs.
3. Data Retention
- API Services:
- No data or metadata moved through the API services is retained by the Company.
- Content Management and Documentation:
- When using the content management and documentation features, metadata and files may be retained.
- Such data is retained only as long as necessary to provide services to the subscribing client.
4. Data Deletion
- Metadata and files related to content management and documentation features are deleted within 90 days of subscription termination or as per the contractual agreement with the client.
5. Data Security
- The Company implements robust security measures to protect data from unauthorized access, alteration, and destruction.
6. Policy Updates
- This policy may be updated from time to time to reflect changes in our practices, technology, or legal requirements.
7. Contact Information
- For any questions or concerns regarding this policy or data handling practices, please contact our Data Protection Officer at [email protected].
8. Service Logs and Usage Data:
- Retention of logs and usage data for operational and security purposes for a limited time frame, typically between 3 to 18 months.
9. Payment and Transaction Data:
- Retention of transactional records for a minimum period required by tax law, usually 7 years in the US.
10. Contract and Legal Documentation:
- Retention of contracts, agreements, and related communications for the duration of the contract plus a period required by law for resolving potential disputes.
11. Compliance and Regulatory Records:
- Retention of data necessary for compliance with legal obligations, regulatory inquiries, and audits.
12. Backup and Disaster Recovery:
- Retention of backup data for disaster recovery purposes, with regular cycling and secure destruction practices in place.
13. Data Minimization and Limitation:
- Policies ensuring that data collection and retention are limited to what is necessary for the purposes for which the data were collected.
1. Introduction
- This Data Retention Policy outlines the commitment of Cubic Compass Software (the "Company") to retain the data collected and processed in connection with the services provided to our clients. This policy is designed to ensure compliance with legal obligations and to provide our clients with transparent information about our data handling practices.
2. Data Collection
- The Company provides IT services for Salesforce customers, including an API for moving data and metadata between Salesforce orgs.
3. Data Retention
- API Services:
- No data or metadata moved through the API services is retained by the Company.
- Content Management and Documentation:
- When using the content management and documentation features, metadata and files may be retained.
- Such data is retained only as long as necessary to provide services to the subscribing client.
4. Data Deletion
- Metadata and files related to content management and documentation features are deleted within 90 days of subscription termination or as per the contractual agreement with the client.
5. Data Security
- The Company implements robust security measures to protect data from unauthorized access, alteration, and destruction.
6. Policy Updates
- This policy may be updated from time to time to reflect changes in our practices, technology, or legal requirements.
7. Contact Information
- For any questions or concerns regarding this policy or data handling practices, please contact our Data Protection Officer at [email protected].
8. Service Logs and Usage Data:
- Retention of logs and usage data for operational and security purposes for a limited time frame, typically between 3 to 18 months.
9. Payment and Transaction Data:
- Retention of transactional records for a minimum period required by tax law, usually 7 years in the US.
10. Contract and Legal Documentation:
- Retention of contracts, agreements, and related communications for the duration of the contract plus a period required by law for resolving potential disputes.
11. Compliance and Regulatory Records:
- Retention of data necessary for compliance with legal obligations, regulatory inquiries, and audits.
12. Backup and Disaster Recovery:
- Retention of backup data for disaster recovery purposes, with regular cycling and secure destruction practices in place.
13. Data Minimization and Limitation:
- Policies ensuring that data collection and retention are limited to what is necessary for the purposes for which the data were collected.