Information Security - Data Retention Policy
- Kasia Czwarkiel (Unlicensed)
All data created by the Customer on the Claritum platform fall into 3 categories:
- User records
- Transactional records
- File attachments
Upon termination of the contract, Claritum remove the customer’s deployment from the platform, permanently deleting all user records, transactional data and file attachments. However, archived copies of the data are retained for analytics purposes, described below.
User Records
Archived copies of these are held by Claritum to provide referential integrity for data analytics purposes as described below. Personally-identifiable information is not transferred outside of Claritum’s internal processes.
Transactional Records
Projects, specifications, orders, etc. are transactional data and these archived copies are retained and used by Claritum for the purposes of anonymised spend analytics (e.g. price benchmarking).
No personally-identifiable information is used in these exercises.
File Attachments
All files uploaded/attached to transactions are permanently deleted.
Data Location
All data is currently securely held within the UK and no data is transferred outside of the UK, except to where those customers reside.