This Data Retention & Deletion Policy (“Policy”) establishes the principles, standards, and procedures governing the collection, storage, retention, deletion, and disposal of personal data and operational data processed by the Platform.
The purposes of this Policy are to:
Comply with the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA)
Reduce legal, regulatory, and litigation exposure associated with excessive data retention
Minimize harm and liability in the event of a data breach or security incident
Ensure data is retained only for lawful, legitimate, and documented business purposes
Provide a consistent, auditable framework for responding to consumer deletion requests
Support tax, accounting, fraud prevention, dispute resolution, and insurance obligations
This Policy reflects the Platform’s commitment to data minimization, proportionality, and accountability.
This Policy is informed by and designed to comply with applicable laws and regulations, including but not limited to:
California Consumer Privacy Act (CCPA)
California Privacy Rights Act (CPRA)
California Civil Code §§ 1798.100 et seq.
Federal recordkeeping requirements
Applicable tax, accounting, and anti-fraud statutes
Litigation preservation obligations (legal holds)
Where conflicts arise between this Policy and legal requirements, applicable law shall control.
Personal Information (PI): Information that identifies, relates to, describes, or could reasonably be linked with a particular consumer or household.
Sensitive Personal Information (SPI): Personal information that includes government identifiers, precise geolocation, financial data, or other protected categories under CPRA.
Operational Data: Non-consumer data generated through Platform operations, including logs, system metadata, transaction records, and audit trails.
Retention Period: The length of time data is stored before deletion or anonymization.
Deletion: The permanent and irreversible removal of data such that it cannot reasonably be reconstructed.
Legal Hold: A directive to preserve data due to pending or reasonably anticipated litigation, investigation, or regulatory inquiry.
The Platform adheres to the principle that data shall be:
Collected only for specific, explicit, and legitimate purposes
Retained only for as long as necessary to fulfill those purposes
Deleted or anonymized once retention is no longer justified
The Platform does not retain personal data indefinitely by default.
The Platform may collect and process the following categories of data:
Account registration data
Identity verification data
Payment and transaction records
Delivery and location data
Communications and messaging data
Customer support records
Device, log, and usage data
Safety, incident, and compliance records
Legal, audit, and insurance documentation
Each category is subject to specific retention rules.
Account identifiers, profile data, and account history are retained for:
The duration of the active account; and
Up to 7 years after account closure, unless earlier deletion is required by law or requested by the consumer and permitted under Section 9.
Purpose:
Fraud prevention, dispute resolution, tax compliance, insurance defense, and regulatory audits.
6.2 Transaction and Payment RecordsPayment, billing, and transaction records are retained for 7 years.
Purpose:
Tax reporting, accounting, chargeback defense, and financial audits.
This retention period aligns with IRS, state tax, and financial institution requirements.
6.3 Communications and Messaging DataIn-app messages, support communications, and related metadata are retained for 3 to 7 years, depending on risk classification.
Purpose:
Dispute resolution, harassment investigations, arbitration, and safety enforcement.
Messages involved in incidents or disputes may be retained longer under legal hold.
6.4 Location and Delivery DataLocation data, routing data, and delivery confirmation records are retained for 2 to 5 years, unless extended by legal or insurance requirements.
Purpose:
Service verification, safety investigations, and claims defense.
Precise geolocation data is minimized and retained only as necessary.
6.5 Identity Verification and Background Check DataIdentity verification documents and background check records are retained for the duration of the relationship plus up to 5 years, subject to legal restrictions.
Purpose:
Safety compliance, insurer requirements, and regulatory defense.
Where possible, raw documents are deleted and replaced with verification status flags.
6.6 Safety, Incident, and Compliance RecordsIncident reports, safety investigations, and compliance documentation are retained for 7 to 10 years.
Purpose:
Legal defense, insurance underwriting, regulatory compliance, and risk management.
6.7 Logs and Security DataSystem logs, access records, and security monitoring data are retained for 1 to 3 years, unless extended due to security investigations.
Purpose:
Security auditing, fraud detection, and breach investigations.
Data that is no longer required for retention shall be:
Permanently deleted; or
Irreversibly anonymized such that it no longer constitutes personal information
Deletion methods may include secure erasure, cryptographic deletion, or equivalent industry-standard techniques.
Backups are subject to rolling deletion schedules.
Consumers may request deletion of personal information, subject to statutory exceptions.
Requests may be submitted via designated privacy request channels.
8.2 VerificationBefore fulfilling deletion requests, the Platform will verify the identity of the requester to prevent unauthorized deletion.
8.3 Exceptions to DeletionThe Platform may deny or partially deny deletion requests where data is necessary to:
Complete a transaction or provide a requested service
Detect security incidents or prevent fraud
Exercise free speech or comply with legal obligations
Comply with tax, accounting, or recordkeeping laws
Establish, exercise, or defend legal claims
Where deletion is denied, the Platform will document the justification.
Data subject to a legal hold shall not be deleted, even if:
The retention period has expired; or
A consumer requests deletion
Legal holds apply to litigation, arbitration, regulatory inquiries, law enforcement requests, or insurance claims.
Vendors and service providers processing data on behalf of the Platform must:
Comply with contractual retention and deletion obligations
Implement appropriate security measures
Delete or return data upon termination of services, unless legally required otherwise
The Platform conducts diligence to ensure processor compliance.
Retention does not imply unrestricted access.
All retained data is subject to:
Role-based access controls
Encryption at rest and in transit where appropriate
Audit logging
Periodic access reviews
Limiting retention reduces exposure in the event of a data breach.
This Policy is a core component of the Platform’s breach prevention and response strategy.
Personnel with access to data receive training on:
Retention requirements
Deletion procedures
Legal hold obligations
Privacy and security best practices
Violations of this Policy may result in disciplinary action.
The Platform maintains documentation demonstrating:
Retention schedules
Deletion practices
Consumer request handling
Legal holds
These records support audits, regulatory inquiries, and litigation defense.
This Policy may be updated to reflect:
Changes in law
Regulatory guidance
Operational practices
Security standards
Material changes will be communicated as required by law.
This Policy is governed by the laws of the State of California and applicable federal law.
The Platform is committed to responsible data stewardship, privacy protection, and lawful data management.
If you have questions or concerns regarding this Policy, please contact us:
Email: support@pykkit.com
Address: Palo Alto, CA 94304