Data Retention Policy

Effective Date: January 1, 2025

1. Introduction

This Data Retention Policy provides a comprehensive and detailed overview of the methods, practices, and principles employed by BUY SELL STOCKLOT to manage, retain, and protect user data collected through our mobile application. Our primary objective is to ensure that data is retained only for the duration necessary to fulfill the specific purposes for which it was initially collected, in compliance with legal, regulatory, and operational requirements.

To achieve this, we have established clear guidelines and procedures that govern the collection, storage, and deletion of various types of data. This policy outlines the specific categories of data we collect, including personal information, product and business information, app usage data, and crash and analytics data. For each data type, we define the retention periods, which are determined based on the nature of the data, its intended use, and any applicable legal or regulatory requirements.

Furthermore, we detail the robust security measures we implement to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include both technical safeguards, such as encryption and access controls, and organizational practices, such as regular security audits and employee training programs.

By adhering to this Data Retention Policy, we aim to maintain the trust and confidence of our users, ensuring that their data is handled with the utmost care and respect. We are committed to transparency and accountability in our data management practices, and we encourage users to review this policy periodically to stay informed about how we manage and protect their data.

2. Data Retention Periods

  • Personal Information: Personal information encompasses a wide array of data points that are essential for the identification and communication with our users. This includes, but is not limited to, your full name, email address, phone number, and any other identifiers that you may provide during the registration or usage of our services. We are committed to retaining this information for the duration that your account remains active, which is crucial for ensuring uninterrupted service delivery and effective communication. This retention period is meticulously designed to align with our operational needs and your service expectations. In the event that your account is deactivated, either by your choice or due to inactivity, or upon your explicit request, we will promptly initiate a secure deletion process. This process involves multiple layers of verification to ensure that your personal information is completely and irreversibly removed from our systems, thereby safeguarding your privacy.

  • Product and Business Information: This category of data is integral to the core functionality of our app and includes comprehensive records of your interactions with our platform. It covers transaction histories, business-related data, and any other information that is generated as a result of your engagement with our services. We retain this data for the entire duration of your app usage, as it is vital for facilitating seamless transactions, enhancing our service offerings, and delivering personalized user experiences. The retention of this information is not only crucial for maintaining the operational integrity and functionality of our services but also for enabling us to tailor our offerings to better meet your needs and preferences. This data is stored with the utmost care, ensuring that it is protected against unauthorized access and breaches.

  • App Usage Data: App usage data is a critical component of our continuous improvement strategy. It involves the collection of detailed information about how users interact with our app, which is then analyzed to enhance app performance and user experience. This data is typically anonymized to ensure that your privacy is protected, meaning that it cannot be traced back to you personally. We retain this anonymized data for a period of up to 24 months, during which time it is used to derive insights that help us optimize the app's functionality, address potential issues, and implement improvements that enhance user satisfaction. The retention period is carefully chosen to balance the need for comprehensive analysis with the importance of data minimization.

  • Crash and Analytics Data: To uphold the reliability and stability of our app, we systematically collect crash and analytics data. This data is indispensable for identifying and resolving technical issues that may affect the app's performance. By retaining this information for up to 24 months, we are able to conduct thorough analyses that inform our development and maintenance efforts. The insights gained from this data enable us to enhance the app's performance, ensuring a smoother and more reliable user experience. Our approach to handling crash and analytics data is guided by a commitment to transparency and user trust, ensuring that all data is managed in accordance with best practices and industry standards.

3. Data Deletion

  • Account Deletion: Users have the right to request the deletion of their account and all associated data at any time. To initiate this process, users must contact us via email at info@buysellstocklot.com. Upon receiving a deletion request, we will undertake a thorough verification process to confirm the identity of the requester. This step is crucial to prevent unauthorized deletion requests and to protect the integrity of user data. Once the identity verification is successfully completed, we will proceed with the deletion process. This involves systematically removing all personal information, transaction histories, and any other data linked to the user's account from our active databases and backup systems. The entire process is designed to be completed within 30 days from the date of the request, ensuring that the user's personal information is expunged from our systems in a timely and secure manner. Additionally, users will receive a confirmation email once the deletion process is finalized, providing assurance that their data has been successfully removed.

  • Automatic Deletion: Accounts that exhibit no user activity for a continuous period of 24 months are classified as inactive and may be subject to automatic deletion. This policy is implemented to maintain an up-to-date and secure user database, minimizing the risk of data breaches and ensuring compliance with data minimization principles. Prior to initiating the automatic deletion process, we will send a notification to the registered email address associated with the inactive account. This notification will inform the user of the impending deletion and provide instructions on how to reactivate the account if they wish to retain their data. Users will be given a grace period of 30 days from the date of the notification to log in and reactivate their account. If no activity is detected within this period, the account and all associated data will be permanently deleted. This process includes the removal of personal information, transaction records, and any other data stored in our systems. By implementing automatic deletion, we aim to enhance data security and ensure that our user database remains current and relevant. 4. Legal Obligations

  • In certain circumstances, we may be required to retain specific data for extended periods to comply with legal obligations, resolve disputes, or enforce our agreements. This retention is in accordance with applicable laws and regulations, ensuring that we fulfill our legal responsibilities while safeguarding your rights. These circumstances may include, but are not limited to, compliance with tax laws, financial regulations, and other statutory requirements that mandate the preservation of certain records for a specified duration. For instance, we may need to retain transaction records, communication logs, and other pertinent data to meet audit requirements, respond to legal inquiries, or provide evidence in legal proceedings.

Additionally, we may be obligated to retain data to address and resolve disputes that may arise between users or between users and our company. This could involve retaining communication records, transaction histories, and other relevant data to facilitate the resolution process and ensure that all parties' rights are protected. In such cases, the retention period will be determined based on the nature of the dispute and the applicable legal framework.

Furthermore, the enforcement of our agreements, such as terms of service and privacy policies, may necessitate the retention of specific data. This is essential to uphold the contractual obligations and to protect our legal interests. For example, we may need to retain data to investigate and address potential breaches of our terms of service, to prevent fraud, or to ensure compliance with our policies.

Throughout these processes, we are committed to safeguarding your rights and privacy. We implement stringent access controls and security measures to protect the retained data from unauthorized access, alteration, or disclosure. Our data retention practices are regularly reviewed and updated to ensure compliance with evolving legal requirements and industry standards. By adhering to these legal obligations, we aim to maintain the integrity and trustworthiness of our services while upholding our commitment to transparency and accountability. 5. Security Measures

  • We are committed to protecting your data through the implementation of robust technical and organizational measures. These measures are designed to prevent unauthorized access, alteration, disclosure, or destruction of your data. Our security protocols are regularly reviewed and updated to address emerging threats and vulnerabilities.

  • Technical Measures: Our technical safeguards include advanced encryption techniques, both in transit and at rest, to ensure that your data is protected from unauthorized access. We utilize secure socket layer (SSL) technology to encrypt data transmitted between your device and our servers. Additionally, we employ multi-factor authentication (MFA) to add an extra layer of security to user accounts, making it significantly more difficult for unauthorized individuals to gain access. Our systems are equipped with intrusion detection and prevention systems (IDPS) that continuously monitor network traffic for suspicious activities and potential threats. Regular vulnerability assessments and penetration testing are conducted to identify and address security weaknesses in our infrastructure.

  • Organizational Measures: On the organizational front, we have established comprehensive security policies and procedures that govern the handling and protection of user data. Our employees undergo regular training programs to stay informed about the latest security practices and to ensure that they are equipped to handle data securely. Access to sensitive data is strictly controlled and limited to authorized personnel only, based on the principle of least privilege. We conduct regular security audits to assess the effectiveness of our security measures and to ensure compliance with industry standards and regulatory requirements. In the event of a data breach, we have a well-defined incident response plan in place to promptly address and mitigate the impact of the breach, including notifying affected users and relevant authorities as required by law.

  • Physical Security: Physical security measures are also an integral part of our data protection strategy. Our data centers are equipped with state-of-the-art security systems, including surveillance cameras, biometric access controls, and 24/7 security personnel. These facilities are designed to withstand natural disasters and other physical threats, ensuring the continuous availability and integrity of your data. We also implement strict access controls to prevent unauthorized individuals from gaining physical access to our servers and other critical infrastructure.

  • Data Minimization and Anonymization: To further enhance the security of your data, we adhere to the principles of data minimization and anonymization. We collect and retain only the data that is necessary for the specific purposes outlined in our policy, reducing the risk of exposure in the event of a security incident. Where possible, we anonymize data to ensure that it cannot be traced back to individual users, thereby protecting your privacy even in the event of a data breach.

  • Continuous Improvement: Our commitment to data security is an ongoing process. We continuously monitor the evolving threat landscape and update our security measures accordingly. By staying abreast of the latest developments in cybersecurity, we strive to provide the highest level of protection for your data. We also encourage users to take an active role in protecting their own data by following best practices, such as using strong passwords and enabling multi-factor authentication.

By implementing these comprehensive security measures, we aim to create a secure environment for your data, ensuring that it is protected from unauthorized access, alteration, disclosure, or destruction. Our dedication to data security is a fundamental aspect of our commitment to maintaining your trust and confidence in our services. 6. Changes to the Data Retention Policy

  • We reserve the right to modify this Data Retention Policy at any time to reflect changes in our data management practices, technological advancements, legal requirements, or other relevant factors. These modifications are essential to ensure that our policy remains current, effective, and compliant with the latest standards and regulations.

  • Notification of Changes: When we make any changes to this policy, we will provide clear and prominent notification to our users. This notification will be delivered through multiple channels, including in-app alerts, email notifications, and updates on our official website. The purpose of these notifications is to ensure that all users are fully informed about the changes and understand how they may impact the management and protection of their data.

  • Effective Date: Each update to the Data Retention Policy will include a revised effective date, which will be clearly indicated at the beginning of the policy document. This date signifies when the new policy provisions come into effect. Users are encouraged to take note of this date and review the updated policy to understand the changes that have been implemented.

  • User Acknowledgment and Consent: By continuing to use our services after the effective date of any changes to this policy, users acknowledge and agree to the updated terms. We understand the importance of user consent and strive to ensure that users have ample opportunity to review and understand the changes before they take effect. If users have any questions or concerns about the updated policy, they are encouraged to contact us for clarification.

  • Review and Feedback: We value user feedback and encourage users to review the Data Retention Policy periodically. This proactive approach allows users to stay informed about our data management practices and to provide input on how we can improve our policies. User feedback is an integral part of our commitment to transparency and accountability, and we take all suggestions and concerns seriously.

  • Legal and Regulatory Compliance: Changes to this policy may be necessitated by new legal or regulatory requirements. In such cases, we will ensure that the updated policy complies with all applicable laws and regulations. Our legal team continuously monitors the regulatory landscape to identify any changes that may impact our data retention practices. By staying ahead of these developments, we aim to maintain the highest standards of compliance and protect the rights and interests of our users.

  • Historical Versions: For transparency and reference purposes, we will maintain an archive of previous versions of the Data Retention Policy. Users can access these historical versions to understand how our data management practices have evolved over time. This archive will be available on our official website, providing a comprehensive record of all policy changes.

By implementing these detailed procedures for updating the Data Retention Policy, we aim to ensure that our users are well-informed and confident in our commitment to protecting their data. Our dedication to transparency, user engagement, and legal compliance underscores our responsibility to manage user data with the utmost care and respect. 7. Contact Information

We understand that you may have questions, concerns, or specific requests regarding our Data Retention Policy. We are committed to providing you with the necessary support and information to address any inquiries you may have. Our dedicated team is available to assist you with any aspect of our data retention practices, including but not limited to:

  • Clarifications on how your data is collected, stored, and managed.
  • Detailed explanations of our data retention periods and the rationale behind them.
  • Assistance with data deletion requests, including account deletion and automatic deletion processes.
  • Information on our legal obligations and how they impact data retention.
  • Guidance on our security measures and how we protect your data.
  • Updates on any changes to our Data Retention Policy and how they may affect you.

To ensure that your inquiries are handled promptly and efficiently, please reach out to us using the contact information provided below. Our team is dedicated to maintaining transparency and addressing your concerns with the utmost care and professionalism.

BUY SELL STOCKLOT
4th Floor, Umiya Circle, Sanala Rd, above Sanket India,
Patel Colony, Vaibhav Nagar Society, Sanala,
Morbi, Gujarat 363641
Email: info@buysellstocklot.com

When contacting us, please provide as much detail as possible about your inquiry to help us assist you more effectively. We strive to respond to all inquiries within a reasonable timeframe and to provide comprehensive and accurate information to address your needs.

Your feedback is invaluable to us, and we encourage you to share any suggestions or concerns you may have. By working together, we can continue to improve our data management practices and ensure that your data is handled with the highest standards of care and respect.

Img
Experience Convenience

Download Our App Today!

Stay connected and manage your business on the go with our user-friendly mobile application.

Get the latest updates

Regarding new stock lots & offers. Get notified for the future updates & sales.

Logo

Unlock the value of your unsold inventory with our dead stock clearance platform. Effortlessly connect with buyers and convert your excess stock into cash.

9998239559 info@buysellstocklot.com

Product

How it works? Features Start for FREE Sign in

About

Our story Read Blog Careers FAQs Contact us

Socials

Instagram Facebook LinkedIn X (Twitter)
Privacy Policy Terms Of Use Refund Policy Community Guidelines Data Retention Policy Data Protection Policy Cookie Policy End User License Agreement (EULA)