Skip to main content
AC

Acme Cloud

EthicPages logoVisit EthicPages

Data Retention Policy

Last updated: January 15, 2026

Data Retention Policy

Document owner: Chief Privacy Officer (CPO) Version: 3.0 Effective date: January 1, 2026 Last updated: January 15, 2026 Classification: Public — Trust Center Review cadence: Annual review; ad hoc review upon material regulatory or product changes Company: Acme Cloud, Inc. Address: 1200 Market Street, Suite 400, San Francisco, CA 94103, USA Primary contacts: trust@acmecloud.com | security@acmecloud.com | privacy@acmecloud.com

1. Document Purpose and Objectives

This Data Retention Policy establishes comprehensive requirements, schedules, and procedures for how long Acme Cloud, Inc. retains personal data, customer content, system logs, business records, and other information assets, and how data is securely deleted when retention periods expire or deletion is requested. The policy ensures compliance with data protection regulations, contractual obligations, and industry standards while supporting business operations and customer trust.

The primary objectives of this Data Retention Policy include the following strategic and operational goals that guide all data lifecycle management activities across the organization:

ObjectiveDescriptionSuccess Metric
Regulatory ComplianceSatisfy data retention and deletion requirements under GDPR, CCPA, HIPAA, and other applicable regulationsZero regulatory findings related to retention or deletion
Data MinimizationRetain data only as long as necessary for specified purposes, reducing risk exposure and storage costsAnnual reduction in unnecessary data retention
Customer RightsEnable timely fulfillment of data subject deletion requests and customer data removal obligations100% deletion requests fulfilled within SLA
Legal PreservationMaintain data required for legal, regulatory, or contractual purposes for appropriate periodsZero destruction of legally required data
Operational EfficiencyAutomate retention and deletion processes to reduce manual effort and human errorGreater than 95% automated deletion execution
AuditabilityMaintain documented evidence of retention practices and deletion activities for compliance verificationComplete audit trail for all deletion activities
Security EnhancementReduce data breach risk by minimizing retained data to business-necessary informationReduced sensitive data footprint
Cost OptimizationOptimize storage costs through lifecycle management and timely data deletionYear-over-year storage cost efficiency improvement

This policy aligns with GDPR Article 5(1)(e) (storage limitation principle), GDPR Article 17 (right to erasure), CCPA/CPRA deletion rights, HIPAA retention requirements, SOC 2 Trust Services Criteria CC6.5 (data disposal), ISO 27001:2022 Annex A.8.10 (information deletion), and contractual obligations in the Data Processing Agreement.

2. Definitions and Terminology

This section establishes standard terminology used throughout the Data Retention Policy to ensure consistent interpretation and application across all data lifecycle management activities.

TermDefinition
Personal DataAny information relating to an identified or identifiable natural person, as defined by GDPR Article 4(1), CCPA, and other applicable privacy laws
Customer DataAll data that customers submit to, store in, or process through the Acme Cloud platform, including personal data belonging to customer's end users
Customer ContentSubset of Customer Data consisting of user-generated content, files, documents, and assets uploaded by customers
Account DataInformation about customers themselves, including account settings, user profiles, billing information, and usage data
System LogsTechnical records generated by systems including application logs, access logs, error logs, and debugging information
Security Audit LogsRecords of security-relevant events including authentication, authorization, administrative actions, and access attempts
Business RecordsCorporate documents required for legal, tax, financial, or operational purposes
Retention PeriodThe duration for which data is preserved before becoming eligible for deletion
Legal HoldDirective to suspend normal retention and deletion for data potentially relevant to litigation, investigation, or regulatory action
Data SubjectAn identified or identifiable natural person whose personal data is processed
Data Subject Request (DSR)A request from a data subject to exercise their rights under privacy regulations (access, deletion, correction, etc.)
DeletionThe process of permanently removing data such that it cannot be recovered
Cryptographic ErasureSecure deletion method that destroys encryption keys, rendering encrypted data permanently unrecoverable
AnonymizationIrreversibly transforming personal data such that individuals cannot be identified
PseudonymizationProcessing personal data such that it cannot be attributed to a specific individual without additional information
Records of Processing Activities (RoPA)Documentation of processing activities as required by GDPR Article 30
Retention ScheduleDocumented matrix specifying retention periods for different data categories
Data LifecycleThe stages through which data passes from creation/collection through processing, storage, and eventual deletion

3. Scope and Applicability

This Data Retention Policy applies to all data processed by Acme Cloud, Inc. regardless of format, storage location, or processing method. The policy governs data across production systems, backups, archives, analytics stores, support tooling, and corporate systems.

3.1 Data Categories in Scope

CategoryDescriptionExamplesPrimary Owner
Customer ContentUser-generated content and filesDocuments, images, exports, API payloadsCustomer (controller)
Customer Account DataAccount and user informationUser profiles, workspace settings, API keysAcme Cloud (processor)
Customer Usage DataService interaction recordsFeature usage, session data, analytics eventsAcme Cloud (processor/controller)
Application LogsOperational system recordsRequest logs, error traces, performance metricsEngineering
Security Audit LogsSecurity event recordsAuthentication logs, access logs, admin actionsSecurity Engineering
Support RecordsCustomer interaction historySupport tickets, chat transcripts, email correspondenceCustomer Success
Billing RecordsFinancial transaction dataInvoices, payment records, subscription historyFinance
Marketing DataConsent and communication recordsEmail preferences, campaign responses, consent evidenceMarketing
Employee DataHR and employment recordsPersonnel files, payroll, performance dataHR
Corporate RecordsBusiness operation documentsContracts, policies, meeting recordsLegal/Operations
AI Processing LogsAI feature interaction metadataPrompt metadata (content excluded), inference logsEngineering

3.2 Systems in Scope

System CategorySystems IncludedRetention EnforcementMonitoring
Production DatabasesPostgreSQL (RDS), Redis, ElasticsearchAutomated lifecycle jobsContinuous monitoring
Object StorageS3 customer file buckets, exports, mediaS3 lifecycle policiesLifecycle metrics
Backup SystemsRDS snapshots, S3 replicas, WAL archivesRolling retention policiesBackup inventory
Analytics InfrastructureAnalytics pipeline, aggregation storesAutomated purge jobsData freshness monitoring
Support SystemsZendesk, support email archivesVendor retention settings + manual reviewPeriodic audit
Billing SystemsStripe, internal billing databaseRegulatory retention scheduleAnnual audit
Corporate SystemsGoogle Workspace, Slack, HRISVendor and manual policiesPeriodic audit
Security InfrastructureSIEM, log aggregation, audit storageDefined retention + immutable archivingContinuous monitoring

3.3 Exclusions

ExclusionRationaleGoverning Process
Data under active legal holdPreserved pending litigation/investigationLegal Hold Procedures (Section 7)
Data required by specific regulationRegulatory minimums override general policyRegulatory Compliance Section
Customer-exported dataCustomer responsibility after exportTerms of Service
Anonymized dataNo longer personal data under GDPRMay be retained indefinitely
Aggregated statisticsNon-identifiable; business intelligenceNo retention limit

4. Retention Principles

Data retention decisions at Acme Cloud are guided by the following principles derived from regulatory requirements and best practices.

4.1 Core Principles

PrincipleDescriptionImplementation
Storage LimitationPersonal data shall be kept no longer than necessary for the purposes for which it is processedDefined retention periods; automated deletion
Purpose LimitationData retained only for original or compatible purposesPurpose documented in RoPA; no secondary use without basis
Data MinimizationCollect and retain only data necessary for specified purposesCollection review; retention not exceeding need
AccuracyReasonable steps to ensure retained data remains accurateCorrection mechanisms; stale data deletion
Integrity and ConfidentialityAppropriate security throughout retention periodEncryption; access control; secure deletion
AccountabilityDocument and demonstrate compliance with retention requirementsRetention schedules; deletion logs; audit evidence
TransparencyInform data subjects about retention periodsPrivacy Policy; retention disclosure

4.2 Retention Decision Framework

FactorConsiderationWeight
Legal requirementMinimum retention mandated by law or regulationMandatory
Contractual obligationRetention required by customer contracts or DPAMandatory
Litigation riskPotential relevance to anticipated or ongoing litigationHigh
Operational necessityData needed for ongoing service deliveryHigh
Business justificationLegitimate business purpose for retentionMedium
Data sensitivityHigher sensitivity warrants shorter retentionMedium
Storage costCost of maintaining data over timeLow
Data subject expectationReasonable expectation of data subjectsMedium

When retention periods conflict, the longest legally or contractually required period applies. When no requirement mandates retention, the shortest period meeting business needs applies.

5. Retention Schedules

This section specifies retention periods for all data categories processed by Acme Cloud.

5.1 Customer Data Retention Schedule

Data CategoryDescriptionActive RetentionPost-Termination RetentionDeletion MethodLegal Basis
Active customer account dataCustomer Data in production databasesDuration of subscription30-day export window + 90 days maxAutomated purge + backup rotationContract (GDPR Art. 6(1)(b))
Customer content filesUploaded documents, images, attachmentsDuration of subscription30-day export window + 90 days maxS3 lifecycle deletionContract
Customer user profilesEnd-user account informationDuration of subscriptionSame as account dataDatabase deletionContract
Customer configurationWorkspace settings, integrations, preferencesDuration of subscriptionSame as account dataDatabase deletionContract
Customer API keysAuthentication credentialsUntil revoked or account terminationImmediate upon terminationSecure credential deletionContract/Security
Customer exportsData exports and downloads30 days from generationN/A (customer downloads)S3 lifecycle deletionContract

5.2 Operational Data Retention Schedule

Data CategoryDescriptionHot Storage RetentionArchive RetentionDeletion MethodLegal Basis
Application logsRequest logs, error logs, debug traces90 daysNoneAutomated lifecycleLegitimate interest
Security audit logsAuthentication, authorization, admin actions1 year3 years (security archive)Secure deletion post-archiveSOC 2/ISO 27001; Legitimate interest
API request logsAPI endpoint access and response logs90 days1 year (aggregated metrics only)Automated lifecycleLegitimate interest
Performance metricsSystem performance and capacity data90 days1 year (aggregated)Automated lifecycleLegitimate interest
Error trackingApplication error records and stack traces90 daysNoneAutomated lifecycleLegitimate interest

5.3 Backup Retention Schedule

Backup TypeRetention PeriodGeographic DistributionAlignment with Production Deletion
Database snapshots (RDS)90 days rollingus-east-1 + eu-west-1 cross-regionDeleted data purged via rotation
WAL archives7 daysus-east-1Continuous rotation
S3 object versions90 daysus-east-1 + eu-west-1 replicationLifecycle deletion
Monthly archives1 yearS3 GlacierAnnual review
Configuration backups30 daysS3Automated lifecycle

5.4 Business Records Retention Schedule

Record CategoryDescriptionRetention PeriodLegal BasisStorage Location
Billing and invoicingInvoices, payment records, tax documents7 yearsTax law; SOX-adjacent requirementsBilling system + archive
ContractsCustomer agreements, vendor contractsContract term + 7 yearsStatute of limitationsLegal document management
Support ticketsCustomer correspondence and attachments3 years from closureContract; Legitimate interestZendesk + archive
Marketing consentOpt-in/opt-out evidenceDuration of consent + 3 yearsGDPR Art. 7(1); CAN-SPAMCRM
Penetration test reportsSecurity assessment deliverables3 yearsSOC 2 evidenceEncrypted archive
Compliance evidenceAudit records, certifications, attestations7 yearsAudit requirementsGRC platform

5.5 Employee Data Retention Schedule

Record CategoryDescriptionRetention PeriodLegal BasisStorage Location
Personnel filesEmployment records, performance dataEmployment + 7 yearsEmployment lawHRIS
Payroll recordsCompensation, tax withholding7 yearsTax lawPayroll system
Benefits recordsHealth, retirement, leave recordsEmployment + 7 yearsERISA; State lawBenefits system
Recruitment recordsApplications, interview notes (not hired)2 yearsEmployment lawATS
Training recordsCompletion records, certificationsEmployment + 3 yearsCompliance evidenceLMS

5.6 AI Feature Data Retention Schedule

Data CategoryDescriptionRetention PeriodDeletion MethodLegal Basis
AI inference logsPrompt metadata (no content)30 daysAutomated purgeLegitimate interest
AI feature usageFeature interaction analytics90 daysAutomated lifecycleLegitimate interest
AI model inputsZero-retention for customer content in promptsNo storageNot storedData minimization
AI evaluation dataQuality assessment records30 daysAutomated purgeLegitimate interest

6. Customer Data Lifecycle

This section details the complete lifecycle of customer data from collection through deletion.

6.1 Data Lifecycle Stages

StageTimelineCustomer AccessAcme Cloud ActionsCustomer Actions Available
CollectionOngoingFull write accessProcess per customer instructionsData entry; import
Active processingSubscription termFull read/write accessProcess per DPA; provide serviceFull platform functionality
Export preparationUpon request or terminationExport generationGenerate exports; maintain accessDownload exports
Termination noticeDay 0Continues through term endPrepare for data returnExport; account settings
Post-termination grace30 daysRead-only; export APIsMaintain for export; begin deletion queueSelf-service export
Deletion queueDays 31-90No accessAutomated deletion from productionExtension request (Enterprise)
Backup purgeDays 91-180No accessBackups rotate through retentionN/A
Complete purgeDay 180+N/AAll copies deletedDeletion certificate request

6.2 Production Deletion Verification

Verification StepMethodSuccess CriteriaDocumentation
Primary database deletionTenant purge stored procedureZero rows for tenant identifierDeletion job log
Object storage deletionS3 lifecycle + deletion markerZero objects with tenant prefixS3 inventory report
Search index deletionElasticsearch delete-by-queryZero documents for tenantIndex verification
Cache invalidationRedis key pattern flushCache miss on tenant keysCache verification log
Analytics store deletionAnalytics pipeline purgeZero events for tenantAnalytics verification
Backup verificationBackup age exceeds retentionNo backups containing tenantBackup inventory audit

6.3 Enterprise Customization Options

Enterprise customers may configure certain retention parameters within platform limits:

ConfigurationPlatform MinimumPlatform MaximumDefaultModification Method
Application log retention30 days365 days90 daysAdmin console setting
Audit log retention90 days730 days365 daysAdmin console setting
User content soft-delete period7 days90 days30 daysAdmin console setting
Export retention7 days90 days30 daysAdmin console setting
Post-termination grace period30 days60 days30 daysContract addendum

6.4 Deletion Certificates

Certificate TypeAvailabilityContentRequest Process
Production deletion confirmationWithin 5 business days of production deletionDate of deletion; data categories; methodSupport request
Complete deletion certificateAfter 90-day backup rotationProduction deletion date; backup purge date; retention periodEnterprise support request
Expedited deletion certificateFor regulatory compliance needsDeletion dates; applicable methods; attestationLegal/compliance request

7. Legal Hold Procedures

Legal holds suspend standard retention and deletion when data may be relevant to litigation, regulatory investigation, or legal obligation.

7.1 Legal Hold Process

PhaseActionsTimelineResponsible Party
InitiationGeneral Counsel identifies legal hold need; defines scopeUpon trigger eventGeneral Counsel
Scope DefinitionIdentify affected data categories, custodians, date rangesWithin 24 hours of initiationLegal with IT/Security
NotificationIssue hold notice to data custodians and system ownersWithin 24 hours of scope definitionLegal
ImplementationDisable automated deletion for affected data; tag held dataWithin 24 hours of notificationIT/Engineering
AcknowledgmentCustodians acknowledge receipt and complianceWithin 48 hours of notificationData custodians
MonitoringTrack compliance; verify no deletion of held dataOngoingGRC
Periodic ReviewAssess continued need for hold; narrow scope if appropriateQuarterlyLegal
ReleaseGeneral Counsel authorizes hold release; standard retention resumesUpon legal determinationGeneral Counsel
DocumentationComplete hold record with timeline and dispositionWithin 30 days of releaseLegal/GRC

7.2 Legal Hold Scope Categories

CategoryTypical ScopeImplementation Method
Custodian-basedAll data created or accessed by specific employeesUser-based retention policy
Date-basedAll data from specific time periodDate-range deletion exclusion
Subject-basedData related to specific matter or transactionKeyword/tag-based preservation
Customer-basedAll data for specific customerTenant-level deletion suspension
System-basedAll data in specific system or applicationSystem-level deletion suspension

7.3 Legal Hold Inventory

Information TrackedPurposeAccess
Hold identifier and nameUnique identificationLegal, GRC
Matter descriptionContext and purposeLegal (privileged)
Scope definitionData categories, custodians, datesLegal, IT
Affected systemsSystems under holdIT, Engineering
Custodian listEmployees with preservation obligationsLegal, HR
Implementation dateWhen hold was activatedLegal, GRC
Last review dateCurrency of holdLegal
StatusActive, released, modifiedLegal, GRC

7.4 Compliance and Violations

Employees who receive legal hold notices must preserve relevant data and must not delete, modify, or overwrite potentially relevant records. Violations of legal hold obligations may result in disciplinary action per the Code of Conduct and potential legal consequences.

8. Secure Deletion Methods

This section specifies the methods used to securely delete data when retention periods expire or deletion is requested.

8.1 Deletion Methods by Data Location

Data LocationDeletion MethodVerification MethodCompliance Standard
PostgreSQL (RDS)Row-level DELETE + VACUUM; tenant purge stored procedurePost-deletion query returns zero rowsNIST SP 800-88 (logical)
S3 object storageObject deletion + versioning purge + lifecycle policyS3 inventory verificationAWS deletion with versioning
ElasticsearchDelete-by-query API; index deletion for full tenantIndex count and search verificationLogical deletion
Redis cacheKey pattern UNLINK; FLUSHDB for full tenantCache miss verificationLogical deletion
Backup systemsRolling retention expiration; cryptographic erasureBackup inventory auditNIST SP 800-88
Archive storageLifecycle transition to deletion; key destructionStorage inventory verificationNIST SP 800-88
Employee devicesRemote wipe via MDMMDM compliance reportNIST SP 800-88
End-of-life hardwareNIST 800-88 media sanitizationCertificate of destructionNIST SP 800-88

8.2 Cryptographic Erasure

Use CaseMethodVerificationTimeline
Archived backup deletionDestroy encryption keys via KMS key deletionKey deletion audit logAfter retention expiration
Expedited deletionDestroy tenant-specific encryption keyKey deletion + access verificationUpon legal/regulatory requirement
End-of-serviceDestroy all customer encryption keysKey inventory verificationPer contract terms

8.3 Deletion Verification Requirements

Verification LevelData SensitivityRequirements
StandardOperational logs, non-sensitive metadataAutomated deletion job success confirmation
EnhancedCustomer data, personal dataAutomated verification + periodic sampling audit
High AssuranceSensitive personal data, PHI, financial dataAutomated verification + manual spot-check + audit log

9. Data Subject Rights and Deletion Requests

Acme Cloud supports data subject rights including the right to deletion (erasure) under applicable privacy regulations.

9.1 Deletion Request Types

Request TypeSourceApplicable DataResponse SLAProcess
Data subject request (GDPR Art. 17)Individual via customer or directPersonal data we control30 daysDSR workflow
Customer deletion instruction (DPA)Customer as controllerCustomer Data we processPer DPA (typically 30 days)Customer instruction workflow
Account deletion requestCustomer administratorEntire customer account30 days production; 90 days completeAccount termination workflow
User deletion requestIndividual customer userUser's personal data30 daysUser deletion workflow
CCPA deletion requestCalifornia residentPersonal information45 days (extendable to 90)CCPA workflow

9.2 Deletion Request Fulfillment

StepActionTimelineResponsible
ReceiptLog request in DSR tracking systemWithin 1 business dayPrivacy team
VerificationVerify identity and authorizationWithin 3 business daysPrivacy team
Scope determinationIdentify all data subject to deletionWithin 5 business daysPrivacy team + IT
Exception assessmentIdentify any legal retention requirementsWithin 5 business daysLegal + Privacy
ExecutionDelete data from all applicable systemsWithin 25 business daysEngineering
VerificationConfirm deletion from production systemsWithin 28 business daysEngineering + Privacy
ResponseNotify requester of completionWithin 30 days of requestPrivacy team
Backup notationDocument that backups will purge via rotationIncluded in responsePrivacy team

9.3 Deletion Exceptions

Exception CategoryLegal BasisHandling
Legal holdLitigation or regulatory preservationInform requester; defer deletion until hold released
Regulatory retentionTax, financial, employment lawInform requester; retain required data only
Ongoing contractNecessary for contract performanceInform requester; offer alternative
Legal claimsDefense of legal claimsRetain necessary data; document basis
Public interestLegal obligation or vital interestDocument basis; inform requester
Aggregated/anonymizedNo longer personal dataNot subject to deletion request

10. GDPR Compliance

This section addresses specific GDPR requirements related to data retention and deletion.

10.1 GDPR Requirements Mapping

GDPR RequirementArticleAcme Cloud Implementation
Storage limitationArt. 5(1)(e)Defined retention schedules; annual review
Right to erasureArt. 1730-day fulfillment; DSR workflow
Processor obligationsArt. 28(3)(g)Delete or return data per customer instruction
Records of processingArt. 30RoPA with retention periods
Data minimizationArt. 5(1)(c)Collection limited to stated purposes
Notification of rectification/erasureArt. 19Notify recipients where feasible
Data portabilityArt. 20Export functionality before deletion

10.2 Records of Processing Activities Integration

Retention schedules are documented in Acme Cloud's Records of Processing Activities (RoPA) maintained under GDPR Article 30:

RoPA ElementRetention Information Included
Processing purposeRetention period justified by purpose
Data categoriesRetention period by category
RecipientsRetention impact on transfers
International transfersRetention in transfer locations
Retention periodsExplicit periods or criteria
Security measuresSecure deletion methods

10.3 Cross-Border Retention

ConsiderationAcme Cloud Approach
Data locationRetention periods apply regardless of location
EU data residencyEnterprise customers may configure EU-only data residency
Transfer mechanismsSCCs include deletion obligations
US legal accessDocumented in transparency reporting

11. HIPAA Retention Requirements

For customers with executed Business Associate Agreements, HIPAA-specific retention requirements apply.

11.1 HIPAA Retention Standards

RequirementHIPAA CitationAcme Cloud Implementation
Documentation retention§164.316(b)(2)(i)6 years from creation or last effective date
Policy retention§164.316(b)(2)(ii)6 years minimum
PHI retentionCustomer-directedPer BAA; customer controls
Audit log retention§164.312(b)1 year hot; 3 years archive

11.2 PHI-Specific Considerations

ConsiderationApproach
Customer retention directionFollow customer instructions per BAA
Minimum retentionAs specified by covered entity
Maximum retentionPlatform standard maximums unless contract specifies
Disposal methodSecure deletion per NIST 800-88
DocumentationHIPAA deletion documentation retained 6 years

12. Roles and Responsibilities

RoleResponsibilities
Chief Privacy OfficerPolicy ownership; regulatory alignment; RoPA maintenance; DSR escalation
Data StewardsImplement retention rules in assigned domains; monitor compliance
EngineeringDevelop and maintain automated deletion jobs; implement retention configuration
Security EngineeringAudit log retention; secure deletion verification; access control for deletion
GRCAudit evidence; legal hold tracking; compliance monitoring
Customer SuccessEnterprise retention customization; deletion certificate issuance
LegalLegal hold authority; regulatory retention guidance; exception determination
HREmployee data retention; personnel record management
FinanceFinancial record retention; tax compliance

13. Monitoring and Audit

13.1 Retention Compliance Monitoring

Monitoring ActivityFrequencyMethodResponsible
Deletion job successDailyAutomated dashboardEngineering
Overdue retention itemsWeeklyAutomated alertsGRC
Active legal holdsWeeklyHold inventory reviewLegal
Backup inventory ageWeeklyAutomated dashboardSRE
DSR fulfillment trackingDailyDSR management systemPrivacy team
Retention policy complianceMonthlySampling auditGRC

13.2 Audit Program

Audit TypeFrequencyScopeOutput
Internal retention auditQuarterlySample 50 deletion recordsAudit findings report
SOC 2 auditAnnualRetention and disposal controlsSOC 2 report
ISO 27001 auditAnnualA.8.10 information deletionCertification maintenance
Customer auditPer contractEnterprise customer evidenceAudit response package
Regulatory examinationAs requestedRegulator-specified scopeExamination response

13.3 Non-Compliance Handling

SeverityDefinitionResponse TimelineEscalation
CriticalData retained beyond legal maximum; deleted during legal hold72 hoursCISO, General Counsel, CEO
HighSystematic retention policy failure; DSR SLA breach7 daysCPO, affected team VP
MediumIndividual retention exception; delayed deletion14 daysData steward, GRC
LowDocumentation gap; process improvement opportunity30 daysGRC

14. Framework Compliance Mapping

RequirementGDPRCCPA/CPRAHIPAASOC 2 TSCISO 27001:2022Implementation
Retention limitsArt. 5(1)(e)§1798.105§164.316(b)CC6.5A.8.10Section 5 schedules
Deletion rightsArt. 17§1798.105Per BAACC6.5A.8.10Section 9
Secure deletionArt. 32§1798.105(d)§164.310(d)(2)CC6.5A.8.10Section 8
DocumentationArt. 30§1798.130§164.316(b)(2)CC2.3A.5.37RoPA; this policy
Legal holdN/AN/AN/ACC6.5A.5.33Section 7
Audit trailArt. 5(2)§1798.185§164.312(b)CC6.8A.8.15Section 13

15. Policy Review and Updates

Review TriggerReview ScopeTimelineResponsible
Annual reviewFull policy reviewJanuary annuallyCPO
Regulatory changeAffected requirementsWithin 60 days of requirementLegal + CPO
Product changeAffected data categoriesWithin 30 days of launchProduct + CPO
Audit findingIdentified gapsPer remediation SLAGRC + affected team
Customer requestSpecific requirementsPer contract timelineCustomer Success + CPO
Incident findingLessons learnedWithin 30 days of incident closureSecurity + CPO

Related Trust Center documents

privacy policy, dpa, backup recovery, hipaa statement, ai usage policy, security overview, compliance frameworks

Document revision history

VersionDateAuthorSummary of changes
1.02024-06-01Legal & ComplianceInitial Trust Center publication
2.02025-03-15GRC ProgramSOC 2 Type II alignment refresh; expanded subprocessors
2.52025-09-01Security EngineeringEncryption standards update; ISO 27001 mapping
3.02026-01-15Trust Center ProgramFull procurement-grade expansion; 34-document set

Contact

Acme Cloud, Inc. 1200 Market Street, Suite 400 San Francisco, CA 94103, USA

ChannelEmailUse case
Trust & procurementtrust@acmecloud.comSecurity questionnaires, trust reviews
Securitysecurity@acmecloud.comIncidents, vulnerabilities, control questions
Privacyprivacy@acmecloud.comDSRs, privacy assessments
Legallegal@acmecloud.comContractual, DPA, legal notices

Privacy inquiries: privacy@acmecloud.com Data deletion requests: privacy@acmecloud.com Enterprise retention customization: trust@acmecloud.com

Last updated: January 15, 2026
EthicPages logoEthicPages