Data Retention Policy

Last updated: September 4, 2025

This Retention Policy explains how long we retain different types of information and the bases for those retention periods. It should be read together with our Privacy Policy.

Summary

Clinical records: retained for 8 years after last treatment (longer for minors per local law).
Orders, invoices, KYC/AML: retained at least 6 years (e.g., tax and regulatory requirements).
Payment processors: we rely on Stripe/Paystack records; we store non‑PII cleanup receipts.
Messaging content not part of clinical records: content is deleted; non‑PII stats may be kept.
Analytics/session logs: typically 30–180 days with identifiers scrubbed.
Backups: immutable; rotated 30–90 days; deletions are re‑applied after restore.

Jurisdiction and “strictest‑wins” approach

We apply a conservative, jurisdiction‑aware policy. Where laws differ, we follow the strictest applicable rule for the user (e.g., GDPR/UK GDPR, CCPA/CPRA, NDPA/NDPR), based on profile country, billing address, or other lawful signals. Some records must be retained to comply with legal obligations or to protect vital interests.

Deletion vs. Anonymization

When you request deletion, we remove or anonymize personal data except where we are required to retain certain records. Anonymization removes direct identifiers while preserving minimal business integrity or regulatory evidence.

Backups

Backups cannot be edited directly. If a backup is restored, prior deletions are re‑applied by our processes so that erased data is not reintroduced.

Questions

If you have questions about this policy or specific retention periods, please contact support via the channels listed in our Privacy Policy.

This page is provided for transparency and does not constitute legal advice. Retention periods may change due to updates in applicable laws or operational requirements.