Data Retention
Data Retention
Clear policies on how long we keep your data and when we destroy it.
Arx does not hoard data. We retain information only for as long as it is necessary to provide security services, after which it is automatically deleted.
| Data Type | Retention Period | Reason |
|---|---|---|
| Incident Logs (Alerts) | 90 Days | To support quarterly security reviews and forensic investigations. |
| Aggregated Statistics | 12 Months | High-level trends (e.g., "Phishing attempts plotted over time") with no Personal Data. |
| Visual Snapshots | 30 Days | Images of phishing sites are heavy and sensitive; kept briefly for evidence. |
Deletion Requests
Customers have full control over their data lifecycle.
- Configurable Retention Windows: Customers can choose from multiple retention options in the platform, allowing them to align stored security data with their own internal policy and review cycle.
- On-Demand Deletion: Admin users can trigger a "Purge" of all logs for a specific user or the entire organization via the API or dashboard instantly.
- Termination: Upon contract termination, all customer data is cryptographically erased from our systems within 30 days.