Data Retention Policy
Last Updated: September 25, 2025
This Data Retention Policy outlines how Zralvoxem Sik ("we," "us," or "our") retains, stores, and disposes of personal and non-personal data collected through our educational platform and services. This policy is designed to ensure compliance with applicable data protection regulations and to protect your privacy.
1. Purpose and Scope
This policy applies to all data collected from users of our platform, including students, instructors, visitors, and business partners. We retain data only for as long as necessary to fulfill the purposes outlined in our Privacy Policy and to comply with legal obligations.
2. Types of Data We Retain
2.1 Account Information
We retain personal information such as names, email addresses, phone numbers, and billing details for active user accounts. This information is necessary to provide our educational services, process payments, and communicate with users.
2.2 Educational Records
Learning progress, course enrollments, completion certificates, attendance records, and assessment results are retained to support ongoing education and to provide historical transcripts upon request.
2.3 Communication Data
Email correspondence, chat messages with instructors, support tickets, and other communications are retained to provide customer service and improve our platform.
2.4 Technical Data
Server logs, IP addresses, device information, cookies, and usage analytics are retained to maintain platform security, troubleshoot issues, and improve user experience.
2.5 Payment Information
Transaction records, billing history, and payment method details (excluding full credit card numbers) are retained for accounting purposes and fraud prevention.
3. Retention Periods
3.1 Active User Accounts
Data associated with active accounts is retained for the duration of the account relationship and for a reasonable period thereafter to allow for account reactivation or resolution of disputes.
3.2 Inactive Accounts
Accounts that have been inactive for 24 consecutive months will be flagged for review. Personal data may be anonymized or deleted 36 months after the last account activity, unless retention is required for legal or legitimate business purposes.
3.3 Educational Records
Course completion records, certificates, and transcripts are retained for a minimum of 7 years from the date of completion to support credential verification and educational continuity.
3.4 Financial Records
Transaction records and billing information are retained for 7 years from the transaction date to comply with accounting standards and tax regulations.
3.5 Marketing Communications
Contact information for marketing purposes is retained until the user withdraws consent or until 3 years of inactivity, whichever comes first.
3.6 Technical and Security Logs
Server logs and security-related data are typically retained for 12 to 24 months, depending on the nature of the data and security requirements.
3.7 Legal Holds
Data subject to legal proceedings, investigations, or regulatory requests will be retained until the matter is resolved and all applicable appeal periods have expired.
4. Data Storage and Security
All retained data is stored using industry-standard security measures including encryption, access controls, and regular security audits. We maintain administrative, technical, and physical safeguards to protect data from unauthorized access, disclosure, alteration, or destruction.
Data is stored in secure data centers with redundant systems to ensure availability and business continuity. Access to personal data is restricted to authorized personnel who require such access to perform their job functions.
5. Data Deletion and Anonymization
5.1 Deletion Procedures
When data reaches the end of its retention period and is no longer required, we employ secure deletion methods including:
- Permanent deletion from active databases
- Removal from backup systems within standard backup rotation cycles
- Secure overwriting of data on physical storage media
- Destruction of physical media when decommissioned
5.2 Anonymization
In some cases, rather than deleting data, we may anonymize it by removing all personally identifiable information. Anonymized data may be retained indefinitely for statistical analysis, research, and service improvement purposes.
5.3 Exceptions to Deletion
Data may be retained beyond standard retention periods when:
- Required by law or regulation
- Necessary for ongoing legal proceedings
- Needed to establish, exercise, or defend legal claims
- Required for legitimate business purposes such as fraud prevention
- Subject to an active user request for access or portability
6. User Rights Regarding Data Retention
Users have the right to:
- Request information about what data we retain and for how long
- Request deletion of personal data, subject to legal and contractual obligations
- Withdraw consent for data processing where consent is the legal basis
- Object to data retention for certain purposes
- Request data portability for data provided to us
To exercise these rights, please contact us using the information provided at the end of this policy.
7. Children's Data
If we become aware that we have collected personal data from children without appropriate parental consent, we will take steps to delete such information as quickly as possible, unless retention is required by law.
8. Third-Party Service Providers
We work with third-party service providers who may process data on our behalf. These providers are contractually obligated to implement data retention practices consistent with this policy and applicable laws. We periodically review third-party retention practices to ensure compliance.
9. Changes to Retention Periods
We may modify retention periods based on:
- Changes in legal or regulatory requirements
- Business operational needs
- Technological developments
- Risk assessments and security considerations
Material changes to this Data Retention Policy will be communicated through our website and, where appropriate, via email to registered users.
10. Compliance and Accountability
We maintain documentation of our data retention practices and conduct regular audits to ensure compliance with this policy. Our data protection team is responsible for overseeing retention schedules and ensuring proper implementation across all systems and departments.
11. Cross-Border Data Transfers
When data is transferred internationally, we ensure appropriate safeguards are in place and that retention practices comply with applicable laws in both the originating and receiving jurisdictions.
12. Breach Notification Retention
In the event of a data breach, we retain records of the incident, investigation, and remediation efforts for a minimum of 5 years to demonstrate compliance with notification requirements and to support continuous improvement of security practices.
13. Contact Information
If you have questions about our data retention practices or wish to exercise your rights regarding data retention, please contact us:
Zralvoxem Sik
Kniazia Volodymyra Velykoho St, 34Б
Dnipro, Dnipropetrovsk Oblast
Ukraine, 49000
Email: support@zralvoxemsik.com
Phone: +380979175824
14. Policy Review
This Data Retention Policy is reviewed annually and updated as necessary to reflect changes in our practices, technology, and legal requirements. The "Last Updated" date at the top of this policy indicates when the most recent changes were made.
By using our services, you acknowledge that you have read and understood this Data Retention Policy and agree to the retention practices described herein.