Data Deletion Policy for PocketPrayers

1. Purpose
The purpose of this policy is to ensure the safe and secure deletion of any user-provided data in compliance with privacy best practices. PocketPrayers is committed to protecting user information and minimizing risks associated with data retention.

2. Scope
This policy applies to all employees, contractors, and third-party service providers who may have access to user emails voluntarily submitted to PocketPrayers.

3. Data Collection
PocketPrayers does not actively collect user data beyond the email addresses that users provide voluntarily for the purpose of communication, such as feedback, support, or updates.

4. Data Retention Period
User-provided email addresses will be retained only for as long as necessary to fulfill the purpose for which they were collected, including responding to user inquiries or sending updates. Specific guidelines include:

• Emails will be retained for a maximum of 20 years from the last interaction with the user.

• Users may request the deletion of their email at any time.

5. Data Deletion Procedures
When an email address reaches the end of its retention period, or upon a user’s request, the following procedures will be followed for safe deletion:

• Email Deletion: All user emails will be permanently deleted from our email systems and any backups within 15 days of the deletion request or at the end of the retention period.

• Confirmation: Users will receive a confirmation email once their data has been deleted.

6. Documentation
While PocketPrayers minimizes data collection, any deletions conducted will be documented. Documentation should include:

• The email address deleted

• The date of deletion

• The individual responsible for the deletion

7. Review and Monitoring
This policy will be reviewed annually or as needed to ensure compliance with applicable laws and regulations. Compliance with this data deletion policy will be monitored through regular audits.

8. Training
All employees must receive training on this policy and the importance of safe data handling practices. Training should occur upon hiring and at least annually thereafter.

9. Non-Compliance
Failure to comply with this policy may result in disciplinary action, including termination of employment or contract.

10. Policy Review
This policy will be reviewed every 5 years or as needed to accommodate changes in technology or applicable laws.

Approval
This policy has been approved by [Denver Saldanha] on [14-01-2025].