Comprehensive guide to how we manage, retain, and delete your personal data in compliance with global privacy regulations.
This Data Deletion and Retention Policy outlines Secure Couriers' commitment to responsible data management. We adhere to the principle of data minimization and only retain personal information for as long as necessary to fulfill legitimate business purposes or comply with legal obligations.
Last Updated: January 9, 2026
Policy Version: 2.1
Applicable Regulations: GDPR, CCPA, PIPEDA, LGPD, and other applicable data protection laws.
Our standard retention periods for different data categories, based on legal requirements and business needs.
| Data Category | Retention Period | Legal Basis | Deletion Process |
|---|---|---|---|
|
Customer Account Data Name, email, phone, address |
7 years after account closure | Contract fulfillment, legal obligation (tax records) | Automated deletion after retention period expires |
|
Delivery Records Tracking data, package details, delivery proof |
5 years from delivery completion | Legal obligation, dispute resolution | Secure erasure with verification audit |
|
Financial Transactions Payment records, invoices, receipts |
10 years from transaction date | Legal obligation (tax, accounting laws) | Encrypted archive followed by secure deletion |
|
Website Analytics Cookies, usage data, IP addresses |
26 months from last visit | Legitimate interest, consent | Automatic anonymization after retention |
|
Customer Support Tickets, chat logs, emails |
3 years from ticket resolution | Legitimate interest, service improvement | Quarterly automated deletion cycle |
|
Marketing Data Newsletter subscriptions, campaign analytics |
2 years after last engagement | Consent, legitimate interest | Immediate removal upon unsubscribe request |
Our step-by-step process for handling data deletion requests with security and compliance in mind.
Users can request data deletion through multiple channels: account dashboard, email request, or customer support. All requests are logged with timestamp and verification.
We verify requestor identity through multi-factor authentication to prevent unauthorized deletions. Verification must be completed within 7 days.
Review for legal holds, ongoing contracts, or regulatory requirements. Some data may be retained if required by law (tax records, ongoing investigations).
Data is deleted from primary databases within 30 days. Backup systems follow within 90 days. All deletions are logged with audit trails.
We notify and request deletion from all third-party processors and partners within our service ecosystem.
User receives deletion confirmation with reference number. Full audit trail is maintained for regulatory compliance.
Understand the circumstances under which data may be retained beyond standard periods.
We may retain data beyond standard periods when subject to:
Mandatory retention periods under applicable laws:
Data that cannot be traced back to individuals may be retained indefinitely for:
Understand your rights and how to exercise them in accordance with data protection regulations.
Logged-in users can access data management tools at Settings → Privacy → Data Management
Send request to: dataprotection@visisocial.com
Data Protection Officer
VisiSocial Ltd
123 Privacy Street
Data City, DC 10001
Our technical systems and processes that ensure secure and compliant data management.
Scheduled deletion jobs run daily, with retention policies enforced at database level using TTL indexes and automated cleanup scripts.
Multiple pass overwrite for physical storage, cryptographic erasure for cloud storage, and verification audits for compliance.
Comprehensive logging, regular internal audits, and third-party compliance verification every quarter.
Our Data Protection Team is available to help with deletion requests or answer questions about our data practices.
Data Protection Officer: - | DPO Certification: IAPP CIPP/E, CIPM
Supervisory Authority: Information Commissioner's Office (UK) & Data Protection Commission (EU)