Last Revised: January 31, 2024
The purpose of this Data Retention Policy and Procedures (the “Policy”) is to detail the procedures for the retention and handling of information received, maintained, and created by Censo Inc (“Censo” or “the Company”)
For purposes of this Policy, a “record” includes paper documents as well as information stored electronically or digitally, unless otherwise specified this Policy refers to both hard and soft copy documents. Electronic documents may be located on the hard drives of desktop and laptop computers, voice mail message systems, e-mail systems, servers, magnetic tapes (including archival and back-up tapes), audio tapes, video tapes, and any other electronic storage medium.
Records should be kept for as long as they are needed to meet the operational needs of the Company, together with legal and regulatory requirements. We have assessed our records to:
A disposal schedule is a key document in the management of records and information. The disposal schedule provides a time frame for when a record can be disposed or destroyed and remove from the Company’s database, back up tapes and / or physical storage.
Records on disposal schedules will fall into two main categories:
Company records that are not otherwise subject to retention for business reasons may need to be retained for purposes of potential or pending litigation or a government investigation (referred to as a “Legal Hold”). Circumstances where Company records that are not usually retained may be required to be kept in Legal Hold, include but are not limited to, service of a lawsuit, receipt of a subpoena, or a request for production of documents. If these circumstances arise, the Compliance Officer must be notified. Records on Legal Hold cannot be disposed of until released from legal hold even if this is years past the retention period.
Records can be disposed (destroyed) in the following ways:
See Appendix 1 for the Company’s detailed Retention and Disposal Schedule.
Responsibility for monitoring the disposal policy rests with the Chief Financial Officer (“CFO”). The policy will be reviewed annually or more often as required.
The Company may be subject to federal record keeping requirements established by the laws, statutes, and regulations of the United States. It is of the utmost importance that the Company meet these obligations. These obligations may include but are not limited to the following:
Electronic Fund Transfer Act (EFTA), Regulation E. Pursuant to 12 C.F.R. I005.13
The Company shall maintain records evidencing compliance with the Electronic Funds Transfer Act for two (2) years after the date disclosures are required to be made or action to be taken under the Electronic Fund Transfer Act.
Bank Secrecy Act (BSA). Pursuant to 31 C.F.R. I010.430
The Company shall maintain records evidencing compliance with the Bank Secrecy Act for five (5) years.
The Company’s CFO will supervise the implementation and administration of the Data Retention and Policy and Procedure. Administration of the program shall include:
It is the responsibility of all Company employees to follow this Policy and any accompanying procedures.
Appendix 1 – Retention and Disposal Schedule
Record Type
Record Type
Retention Period
Customer Personal Identification Data – Including biometric identifiers
An encrypted facial scan (“Facial Scan”) of each customer is taken when setting up the Censo Owner App, and used for customer authentication. Censo stores, but cannot access this Facial Scan.
No other Personal Identifiable Information (“PII”) is collected within the App.
Censo will retain the Facial Scan for as long as reasonably necessary for purposes of authentication until the customer deletes their Facial Scan using the “Delete Data” function in the Censo app.
Communications with Customers
All correspondence with customers including but not limited to chats, emails, ticket information, call recordings, etc.
Until a request for deletion of information by the customer is made, but no less than ninety (90) days from the date the user closes the account.
Financial Records
All financial documents including but not limited to send /receive funds, bank statements, payments, ledgers, journals, accounting reports, assets, tax records, generic financial records, etc.
A minimum of 7 years with exceptions of up to 13 years.
Employee Information
All employee information including but not limited to, personal information, resumes or CVs, employee reviews, position change, compensation, and benefits, etc.
A minimum of 7 years
Policies and Procedures
All company policies and procedures not relating to AML/BSA/OFAC.
Until superseded and then 5 years for previous versions
AML/BSA/OFAC Compliance and Related Documents as required
All company AML/BSA/OFAC compliance and related documents including KYC, CIP, ongoing CDD, training, customers’ account activity, and reporting, including, but not limited to monitoring logs and alert triggers.
A minimum of 5 years
Censo is open source and fully audited.
Get the App. And get your treats now.