← Zaisei

Data Retention & Disposal Policy

Version 1.0 · Last updated 4 July 2026

This policy explains how long Zaisei keeps each type of data and how it is securely disposed of, consistent with the data-minimisation and storage-limitation principles of applicable data-protection laws (e.g. GDPR/UK GDPR and CCPA/CPRA). It complements our Privacy Policy.

1. Principles

2. Retention schedule

DataWhereRetention
Account (email, password hash)Server (Postgres)Until you delete your account
Bank/brokerage access tokens (encrypted)Server (Postgres)Until you remove the linked institution or delete your account
Property recordsServer (Postgres)Until you remove the property or delete your account
Balances, transactions, holdings, recurringNot stored server-sideFetched live; only cached on your device
Sessions (login tokens)Server (Postgres)Full-access: 30 days, extended on use. Read-only shares: the lifetime you choose. Expired sessions are cleared automatically.
On-device caches (transactions, holdings, FX, logos)Your deviceUntil you log out or switch accounts (then wiped); also refreshed periodically
Server request logs (IP, path, status)Server31 days, then deleted automatically
Encrypted database backupsBackup storage30 days, then rotated out automatically

3. Deleting your account (right to erasure)

You can delete your account at any time from Profile → Delete account in the app. When you do:

We may retain the minimum data required to comply with legal obligations (e.g. tax, anti-fraud) or to resolve disputes, for only as long as the law requires.

4. Disposal method

Records are removed from the live database via cascading deletes. Backups are stored encrypted and rotated out on the schedule above; media at end of life is cryptographically erased. Third-party providers dispose of data per their own retention terms once a connection is revoked.

5. Requests & contact

Most retention and deletion actions are self-service in the app. For any other request (access, correction, export, or deletion assistance), contact [email protected]. We aim to respond within the timeframe required by applicable law (e.g. 30 days under GDPR).