Data Retention Policy

Retention, deletion, and backup rules for PHI processed within File Logic.

Home

Organization: Control Alt Growth

System: File Logic

Effective: December 2025

Retention Rules

  • PHI retained for 6 years unless client contract specifies otherwise.
  • Audit logs retained for at least 6 years (2,190 days).

Deletion Rules

  • Secure deletion using 3-pass overwrite
  • Soft deletion maintained for internal audit trail
  • Automatic lifecycle expiration rules applied when configured

Backups

Backups must remain in HIPAA-eligible US-based GCP regions.