Effective Date: 21 September 2023

Data Retention Policy

1. Introduction

This Data Retention Policy outlines the principles and guidelines I follow regarding the retention and disposal of personal data collected through my website and services as it is essential to maintain transparency and ensure compliance with data protection regulations, including the GDPR.

2. Purpose

The purpose of this policy is to:

  • Define the data retention periods for different categories of personal data.
  • Ensure that personal data is retained only for as long as necessary to fulfill the purposes for which it was collected.
  • Describe the methods of data disposal or anonymisation when data is no longer required.
  • Provide a framework for responding to data retention inquiries from users and regulatory authorities.

3. Data Retention Periods

The retention periods for personal data may vary based on the category of data and its purpose. I have established the following general guidelines:

  • Personal Information: Personal information provided by users for purposes such as account registration or subscription to services will be retained for as long as the user remains an active participant or until they request its deletion.

  • Usage Information: Non-personal data, including website usage statistics, may be retained for a period not exceeding 24 months for analytical and improvement purposes.

  • Billing and Transaction Data: Data related to billing and transactions will be retained as required by applicable financial and tax regulations. Once the legal retention period expires, we will securely dispose of this data.

4. Data Disposal

When personal data reaches the end of its retention period or is no longer required for the purposes for which it was collected, I will take appropriate steps to ensure its secure disposal or anonymisation. This may include:

  • Permanent deletion of electronic records.
  • Shredding or secure disposal of physical records.
  • Anonymisation of data to remove personally identifiable information.

5. User Rights

Users have the right to request information about the data I hold about them, including data retention periods. Users may also request the deletion of their data as specified in the Privacy Policy. I will respond to such requests in accordance with applicable data protection laws.

6. Data Breach Response

In the event of a data breach, I will assess the impact on the data retained, including the potential exposure of personal data. If necessary, I will take immediate action to contain and mitigate the breach and follow my Data Breach Notification Policy to notify affected individuals and regulatory authorities as required by law.

7. Review and Updates

This Data Retention Policy will be reviewed periodically to ensure its compliance with applicable laws and alignment with my data handling practices. Any updates or revisions will be communicated through my website.

8. Contact Information

If you have any questions or concerns regarding this Data Retention Policy or the retention of your personal data, please contact me through the methods specified in our Privacy Policy.

Thank you for entrusting me with your data. I am committed to protecting your privacy and ensuring responsible data management.