Data Protection

Data Retention & Deletion Policy

How we store, manage, and delete personal data in compliance with privacy regulations.

Effective Date: November 20, 2025

Company Name: OM Digital LLC

Company Address: 30 N Gould St, Sheridan, WY 82801, United States

Website: https://omdigital.cc

Email: contact@omdigital.cc

This Data Retention & Deletion Policy explains how OM Digital LLC stores, manages, and deletes personal data and project-related information in accordance with applicable laws, including GDPR, UK GDPR, CCPA, and U.S. data protection requirements.

This Policy applies to all personal data processed by OM Digital LLC in connection with digital consulting, development services, subscription products, surveys, analytics, communication, support, and any other interaction with our company.

1. Purpose of Data Retention

Data is retained only for as long as necessary to:

  • Provide services and fulfill contractual obligations
  • Maintain accurate internal records
  • Comply with tax, legal, and regulatory requirements
  • Ensure system security, auditing, and fraud prevention
  • Resolve disputes
  • Support ongoing client relationships and documentation needs

We follow the principle of data minimization: data is kept only for justified business or legal reasons.

2. Categories of Data We Retain

2.1 Client Account and Contact Information

Name, email address, business name, phone number, billing details, and related contact data.

Retention: As long as the account is active plus 3 years for administrative and legal purposes.

2.2 Project Documentation and Deliverables

Files, design assets, content, configurations, credentials provided for project execution, and final deliverables.

Retention: Up to 3 years after project completion unless retention is legally required or explicitly requested otherwise.

2.3 Communication Records

Emails, support requests, proposals, invoices, chat logs, and relevant communication.

Retention: 3 to 7 years depending on legal and accounting requirements.

2.4 Subscription Service Data

  • Website Health Monitor performance logs
  • SEO reporting data
  • Security scan information
  • Analytics insights and content reports

Retention: Stored for the duration of the subscription plus 12 months for reference and auditing.

2.5 Analytics Data

Website usage statistics, device metadata, and tracking information.

Retention: 12 to 36 months depending on provider defaults.

2.6 Payment and Transactional Data

Payment receipts, invoice history, transaction IDs, billing addresses.

We do not store full card numbers.

Retention: Minimum 7 years for accounting and legal compliance.

2.7 Security Logs and Access Records

  • Authentication logs
  • Server logs
  • System monitoring data
  • Security alerts

Retention: 12 to 24 months depending on system and risk level.

2.8 Legal and Compliance Data

Contracts, consent records, policy acknowledgments, and compliance documentation.

Retention: Up to 7 years depending on jurisdictional requirements.

3. Criteria Used to Determine Retention Periods

Retention periods depend on:

  • Legal obligations (tax, accounting, regulatory)
  • Contractual commitments
  • Business needs and historical reference value
  • Security and fraud-prevention requirements
  • Industry best practices
  • Data sensitivity
  • User requests and consent withdrawal

We regularly review retention schedules to ensure they remain appropriate.

4. Data Minimization and Anonymization

When feasible, OM Digital LLC anonymizes or pseudonymizes data so it no longer identifies a specific individual.

Examples include:

  • Aggregated analytics
  • Performance metrics
  • Testing datasets
  • Historical performance summaries

Anonymized data may be retained indefinitely because it no longer constitutes personal data.

5. Data Storage Locations

Personal data may be stored in:

  • Encrypted cloud servers
  • Project management tools
  • CRM systems
  • Secure file storage systems
  • Backup archives

Data may be stored in the United States or other jurisdictions with appropriate safeguards, including Standard Contractual Clauses for EU/UK data transfers.

6. Data Deletion Procedures

When data reaches the end of its retention period or when a user submits a valid deletion request, OM Digital LLC will:

  • Identify relevant data across systems
  • Verify the identity of the requester (if applicable)
  • Delete or irreversibly anonymize the data
  • Notify the user of completion when required
  • Log the deletion activity for auditing purposes

Deletion applies to:

  • Digital files
  • Database entries
  • Backups (removed during the next backup purge cycle)
  • Third-party systems where possible

7. User-Initiated Deletion Requests

Under GDPR and similar regulations, users may request deletion of their personal data.

To request deletion, email:

Email: contact@omdigital.cc

Subject line: Data Deletion Request

We may decline deletion when retention is necessary for:

  • Legal compliance
  • Accounting records
  • Security investigations
  • Ongoing disputes
  • Contract enforcement

If deletion cannot be performed, we will inform the user and provide the reasoning.

8. Backup and Archival Data

Backups may retain limited data for operational continuity.

Deleted data will be removed from backups during the routine backup lifecycle, typically within 30 to 90 days depending on the system.

Backups are encrypted and inaccessible for standard processing or operational use unless required for disaster recovery.

9. Third-Party Providers

We use secure third-party processors for hosting, analytics, payments, and communication.

Where feasible, we instruct providers to:

  • Delete data upon request
  • Follow specific retention schedules
  • Comply with legal requirements
  • Maintain necessary safeguards

Third-party retention periods may differ based on provider-specific policies.

10. Data Retention for Legal, Tax, and Regulatory Purposes

Certain data must be retained by law, including:

  • Invoices
  • Financial transaction records
  • Contracts
  • Tax documentation
  • Compliance records
  • Audit trails

Such information cannot be deleted until legally permitted.

11. Suspension of Deletion

Deletion may be temporarily delayed if data is involved in:

  • Security incidents under investigation
  • Active disputes or claims
  • Internal audits
  • Fraud detection processes
  • Legal holds

Once the matter is resolved, deletion procedures will resume.

12. Transparency and Updates

This Policy may be updated to reflect:

  • Changes in law
  • Operational changes
  • Security upgrades
  • Third-party provider updates

The Effective Date indicates the latest version.

13. Contact Information

For questions related to data retention or deletion, contact:

OM Digital LLC

30 N Gould St, Sheridan, WY 82801, United States

Email: contact@omdigital.cc

Website: https://omdigital.cc