Data retention policy
SafeGuard Cyber allows customers to configure data retention policies. By default, we will retain data for as long as the customer would like. However, customers can configure retention rules that determine how long before certain content is purged from the SafeGuard Cyber archive (e.g. 5 years, 7 years, 30 days, etc.). SafeGuard Cyber also supports the concept of legal/litigation holds for this content. If a customer would terminate their use of SafeGuard Cyber, their data would be subsequently purged (after it is exported should the customer make that request).
Data archiving and removal policy
Regarding data archival, all customer data is stored within SafeGuard Cyber's secure cloud-based archive. This archive complies with various industry regulations such as SEC 17a-4. Data is additionally encrypted at rest using AES256. Further, please refer to the following statement from our Terms of Use regarding data security:
"Data Security. SafeGuard Cyber delivers industry-leading, scalable, cloud-based SaaS Products and Offerings with high security, availability and dependability, built on System and Organizational Controls (SOC) II compliant Amazon Web Services infrastructure, and powered by advanced Machine Learning."
Regarding data removal/deletion, this is addressed within our Terms of Use as follows: "SafeGuard Cyber will, consistent with this Agreement and the SafeGuard Cyber Privacy Notice, delete any archived data associated with Customer’s account after the effective termination date. If Customer wants to receive a copy of its archived data, then it shall provide SafeGuard Cyber with a written request for the data at least thirty (30) days prior to the effective termination date."
Data storage policy
SafeGuard Cyber stores all customer data in an encrypted (AES256) and unalterable format - thus complying with SEC 17a-4 requirements. This data will be retained for the duration of the customer's engagement with SafeGuard Cyber, or subject to customer-defined retention policies. All such data resides within a Virtual Private Cloud (VPC) that provides all necessary security, availability, and dependency - built on SOC II compliance Amazon Web Services (AWS) infrastructure.
Data hosting details
Cloud-hosted
App/service has sub-processors
no