1. ⁠Purpose

To define how long RSK IT Support Services Pvt. Ltd. (“RSK”) retains GenZCash business and customer data, and to establish secure deletion procedures once retention periods expire or upon request.

2.⁠ Scope

Applies to all categories of data collected, processed, or stored by GenZCash, including:

• Client KYC documents
• Transaction and redemption records
• API usage and access logs
• Support and communication transcripts
• Analytics and reporting data

3.⁠ Retention Periods

• Corporate KYC Documentation: Retained for 8 years after a Client de-registers, to satisfy regulatory requirements.
• Transaction & Redemption Records: Kept for 8 years following the transaction date, to support audits and dispute resolution.
• API Usage & Access Logs: Stored for 2 years for security monitoring and incident investigations.
• Support & Communication Records: Preserved for 3 years after ticket closure, to ensure service continuity.
• Analytics & Reporting Data: Maintained for 5 years to facilitate product enhancements and trend analysis.

4.⁠ ⁠Secure Deletion

• Automated Purge: At the end of each retention period, records are flagged and routed for secure deletion without manual intervention.
• On-Demand Deletion: Clients may request early removal of non-regulatory data by emailing data-privacy@genzcash.com. RSK will confirm completion within five business days.
• Audit Trail: Every deletion is logged with a timestamp and operator ID; clients receive a confirmation once their request is fulfilled.

5.⁠ Exceptions

• Data involved in ongoing investigations, legal proceedings, or compliance reviews will remain until such matters are fully resolved.
• Backup archives containing expired data are overwritten or purged in the normal backup cycle (within 90 days).