> ## Documentation Index > Fetch the complete documentation index at: https://docs.drdroid.io/llms.txt > Use this file to discover all available pages before exploring further. # Data Retention > At , we prioritize the security, privacy, and control of our users’ data. This outlines our commitment to ensuring that customers have full flexibility over their data retention while maintaining compliance with industry best practices. ### **1. Data Retention Period & Customer Control** DrDroid enables customers to retain data for a period of their choosing, up to **90 days** from the time of data generation. Customers have the flexibility to configure their data retention settings within our platform to align with their internal policies and regulatory requirements. ### **2. No Ownership or Long-Term Storage** DrDroid does **not** claim ownership of any customer data processed within our system. We act purely as a data processor, ensuring that all stored data remains under the full control of our customers. Furthermore, we do **not** store customer data in long-term cold storage beyond the configured retention period. ### **3. Automatic Data Deletion** Once the chosen retention period (up to 90 days) expires, data is permanently and irreversibly deleted from all DrDroid systems, including backups and logs. There is no archival or cold storage of customer data beyond this timeframe. ### **4. Customer-Driven Deletion** Customers may manually delete their data at any time before the expiration of their configured retention period. Once deleted, data is immediately removed from our active systems and permanently purged from backups within a reasonable timeframe. ### **5. Data Security During Retention** While data is retained within the specified period, DrDroid implements **industry-leading security measures**, including encryption in transit and at rest, to safeguard customer data from unauthorized access. ### **6. Compliance & Transparency** Our data retention practices are designed to meet compliance requirements for various security and privacy frameworks. Compliance with industry standards like **GDPR, SOC 2, HIPAA (where applicable), and other industry standards** is in our near future pipeline. We provide customers with full transparency regarding data handling practices to support their regulatory obligations. ### **7. No Data Monetization** DrDroid does not use, sell, or share customer data for any purpose other than providing our core observability and investigation services. ### **8. Policy Updates** This policy may be updated periodically to reflect improvements in our data handling practices. Customers will be notified of any material changes in advance. For further inquiries regarding this policy, please contact us at [support@drdroid.io](mailto:support@drdroid.io).