Purpose
The purpose of this Data and Logs retention Policy is to establish guidelines for the retention, management, and disposal of data within Meritto.
This policy ensures compliance with legal requirements, protects sensitive information, and supports efficient data management practices.
Scope
This policy applies to all data generated or managed by Meritto, including but not limited to:
- Business Data: Includes Leads, Applications, Opportunities, IVR calling data, Communication records, and their payment histories.
- Logs: Includes system logs, access logs, audit trails, and any other logs generated by Meritto's applications or systems.
Definitions
- Data: Any information that is stored electronically or physically and is utilized for operational, regulatory, or compliance purposes.
- Retention Period: The duration for which data must be retained before it is archived or destroyed.
- Disposal: The process of securely destroying data that is no longer required.
Retention Guidelines
Data retention periods will be established based on legal requirements, business needs, and industry standards. The following table outlines the retention periods for different data types at Meritto.
Business Data:
All your work data like Leads, Applications, Opportunities, IVR calling data, Communication records and payment histories are stored in the system for perpetuity and are only removed from the system when you delete this data or put in a request for this data to be deleted.
Logs:
Data type | Archival period |
Audit Logs | 90 days |
Exam request/Response Logs | 10 days |
Payment transaction Logs | 180 days |
Webhook request/Response Logs | 10 days |
Automation logs | 90 days |
Api logs | 14 days |
Upload Logs | 30 days |
Purge data Logs | 365 days |
IVR Logs | 60 Days |
Shortened URLs | 180 Days |
Notifications | 15 Days |
Google Meet and Zoom Logs | 90 Days |
Policy Review
This policy will be reviewed annually to ensure compliance with applicable laws, regulations, and industry standards.
Contact Information
For questions regarding this policy or data retention practices, please contact the Data Protection Officer at infosec@meritto.com.