Data retention policy
Envoy stores your data indefinitely while you’re a customer, except for employee responses to Protect health questionnaires. Employee responses are sent to Envoy’s servers where it is determined in less than a second if the employee is approved or denied entry. The response is then immediately queued for deletion. We run periodic jobs to ensure all data is deleted within 24 hours. Whether an employee was approved or denied entry by Envoy’s system is stored on Envoy’s databases unless deleted.
Data archiving and removal policy
We only delete or purge data upon explicit request. Customer data is available for download as a CSV file through the dashboard or via our API. Data can be anonymized, which removes all personally identifiable information from your Visitor Log, upon request. Envoy may retain customer data for up to 30 days after the termination of the contract.
Data storage policy
When your iPad or mobile device is connected to a network, data syncs to Envoy automatically, and all records are stored in Envoy’s database. Backups are taken every day and stored off-site in either the AWS US-East-1 data center in Virginia, US-West-1 data center in California, or US-West-2 data center in Oregon. AWS oversees the physical security of these facilities and tightly controls who has access.
Data center location(s)
United States
App/service has sub-processors
yes
Guidelines for sub-processors