Data Retention Policy
This policy describes how long Carell Solutions retains data held in the Carell platform, and how that data is securely deleted when it is no longer required.
1. Purpose and scope
This policy applies to personal information and customer content processed through the Carell platform, mobile apps and website. It should be read together with our Privacy Policy.
2. Our principles
- We retain data only for as long as it is needed for the purpose it was collected, or as required by law.
- We retain audit and evidence records long enough to support handover, warranty and dispute needs.
- We delete or de-identify data that is no longer required, in line with the schedule below.
3. Retention periods
The following periods are indicative and may vary where a longer period is required by law or by your agreement with us.
| Data category | Typical retention period |
|---|---|
| Account and profile data | Life of the account, plus up to 12 months after closure |
| Item, project and tracking records (customer content) | Life of the subscription; available for export, then deleted on request after termination |
| Defect, inspection and sign-off evidence (photos, signatures) | Life of the subscription, plus any period required for warranty or legal purposes |
| Audit logs and activity history | Up to 7 years to support audit, handover and dispute resolution |
| Billing and transaction records | 7 years, to meet tax and financial record-keeping obligations |
| Support communications | Up to 3 years |
| Marketing and contact data | Until you unsubscribe or request deletion |
| System backups | Rolling backups retained for up to 35 days |
4. Customer data on termination
When a subscription ends, we provide a window during which you can export your data. After that window, customer content is scheduled for deletion from active systems, and is subsequently purged from backups on the normal backup cycle.
5. Storage and security
Data is stored using reputable cloud infrastructure with access controls, encryption in transit and monitoring. Access to stored data is limited to personnel who need it to operate and support the Service.
6. Deletion and destruction
When data reaches the end of its retention period, it is deleted or de-identified using methods appropriate to the storage medium. Backups containing deleted data are overwritten as part of the backup rotation.
7. Legal holds
We may retain certain data for longer than the periods above where required to comply with a legal obligation, respond to a regulator, or establish, exercise or defend a legal claim.
8. Review
This policy is reviewed periodically and updated to reflect changes in our practices or legal obligations. The “Last updated” date above reflects the most recent revision.
9. Contact
For questions about data retention or to make a deletion request, contact us at privacy@carell.com.au.