Subject Rights Retention Policy

  • Updated

When a subject rights request is received information must be collected in order to respond to the request. To maintain an auditable log of received requests and the responses they received much of that information is retained indefinitely. Collected information that may fall into the category of personal information however is subject to the following retention limits:

 

Information Collected Retention Limit
Requester Email 730 Days
Requester First Name 730 Days
Requester Last Name 730 Days
Requester Country of Residence 730 Days
Requester State/Province/Territory 730 Days
Requester Proof of Identity/Other Attachments 730 Days
Requester Secure Messaging Portal Attachments 730 Days
Subject Rights Manager Secure Messaging Portal Attachments 730 Days
Subject Rights Manager Request Attachments Forever
Subject Rights Manager Attachments on Action Items Forever
Subject Rights Assignee Attachments on Action Items Forever
Automated Data Store Summary Files on Action Items 60 Days
Automated Data Store Deletion Files on Action Items 60 Days