Data retention policy
The length of time we keep your personal data depends on what it is and whether we have an ongoing business need to retain it - for example, to provide you with a service or to comply with applicable legal, tax or accounting requirements.
Data archiving and removal policy
Data will be retained for as long as your account is active and for a period of time afterwards where we have an ongoing business need to retain it, in accordance with our data retention policy. Following that period, we’ll make sure it’s deleted or anonymised.
Data storage policy
Protecting personal data from access, loss or alteration is of the utmost importance to us. All visitor records, photos, account data, configuration data and contact information is stored in data centres within the EU. Servers are updated with the latest security patches during scheduled routine maintenance.
The app and online portal both access data using our secure API. The API exclusively uses TLS 1.2 to encrypt data in transit, and every request must include a time-limited authentication token generated by the authentication system. Visitor data is encrypted at rest. For support purposes, a limited number of senior engineers can access client data via a secure tunnel, controlled by private key-based secrets.
App/service has sub-processors
no