Privacy

Data Categorization

PII Sensitive Data Non Sensitive Data

Data Retention

The handling in storing and maintaining data is crucial to the system in terms of security. The system will store sensitive data and personal identifier information (PII) in an encrypted database. All the data will be encrypted in transit and some sensitive data will be further secured with encryption in use.

Despite the proper encryption in the system, data retention is still essential to comply with legal, administrative, operational, or business requirements by an additional ensurance that the stored data is not obused and is in a proper use.

Laws and Policies

AritaOne has been developing internal policies to handle the data in the system, particularly the personal data and sensitive data. The policies covers the six Data Protection Principles (DPPs) and is continuously improving as the world of cyber security is growing.

The Data Collection Policy

The Data Use Policy

The Data Retention Policy

The App user will be marked as inactive if the App user has been removed in the system. The inactive App user’s data will expire after one inactive year and will be archived to AWS S3. The archived data will be disposed over seven years of inactive period.

Privacy

Data Categorization​

Data Retention​

Laws and Policies​

Data Categorization

Data Retention

Laws and Policies