Account Deletion, Data Retention, and Customer Data Management

Last Updated: December 14, 2025 | Effective Date: December 14, 2025
This Data Retention & GDPR Policy outlines how LTC Software Ltd manages data retention, account deletion procedures, and GDPR compliance for your customer data. As a business customer, you are responsible for ensuring your use of our Services complies with applicable data protection laws when managing your end customers' data.
Related Policies:
• For information about how we handle your business account data, see our Privacy Policy
• For your end customers' GDPR rights (data access, deletion, etc.), see our Customer Data Protection Rights page
Jump to section:
1. Account Deletion Timeline | 2. Data Retention Policy | 3. Customer GDPR Compliance | 4. Data Access Requests | 5. Contact Information
In the event of non-payment or subscription cancellation, we follow a structured, defensible account deletion process that balances data protection obligations with legitimate business interests. This timeline ensures you have adequate opportunity to export your data while maintaining compliance with data protection regulations.
Status: Read-Only Mode
Status: Export Available
Status: Anonymization in Progress
Status: Permanently Deleted
Before Day 30: You can reactivate your account at any time by settling outstanding payments. All data will be immediately restored to full functionality.
After Day 30: Reactivation is not possible as personal data has been anonymized. You would need to create a new account and re-import your data from exports.
Even after account deletion, certain business records must be retained to comply with legal obligations, tax regulations, and legitimate business interests. This section outlines what data we retain, for how long, and why retention is necessary.
The following data is retained beyond account deletion to comply with UK tax law, accounting standards, and regulatory requirements. This retention is legally defensible and necessary for business operations.
Retention Period: 7 years
Legal Basis: UK tax law requires businesses to retain financial records for a minimum of 6 years from the end of the accounting period. We retain for 7 years to provide a safety margin and comply with HMRC requirements.
Retention Period: 7 years
Legal Basis: Contract metadata is retained for legal compliance, dispute resolution, and to defend against potential claims. Personal contact details are anonymized, but business relationship records are maintained.
Retention Period: Indefinite
Legal Basis: Audit logs demonstrate GDPR compliance and provide evidence of proper data handling. These logs contain no personal data and serve as proof of our data protection practices.
The following data is permanently deleted during the account deletion process and is not retained:
As a business customer using our CRM platform to manage your own customers' data, you act as a Data Controller under GDPR. LTC Software Ltd acts as a Data Processor on your behalf. This section outlines your GDPR obligations when using our Services.
LTC Software Ltd provides features and tools to help you meet your GDPR obligations:
Periodically review the customer data you're storing and delete records that are no longer necessary for your business purposes.
Maintain transparent privacy policies that clearly explain how you collect, use, and protect customer data.
Train your team on GDPR requirements and proper data handling procedures to minimize compliance risks.
Document your data processing activities, retention policies, and procedures for handling customer rights requests.
You have the right to request a copy of your account data at any time. While standard data exports are available free of charge through your account settings, comprehensive data access requests that require manual processing and additional resources are subject to administrative fees.
You can export your data at any time through your account settings at no cost:
How to Export: Navigate to Account Settings > Data Export and select the data categories you wish to download. Exports are typically generated within minutes for standard datasets.
If you require a comprehensive data access request that goes beyond standard exports, we may charge an administrative fee to cover the costs of manual processing, data compilation, and delivery. This applies to requests that require:
| Request Type | Processing Time | Fee |
|---|---|---|
| Standard Self-Service Export | Immediate to 1 hour | Free |
| Basic Comprehensive Request Historical data, custom formats (up to 10GB) |
5-10 business days | £150 |
| Advanced Comprehensive Request Forensic analysis, system logs, large datasets (10GB+) |
10-15 business days | £350 |
| Legal/Certified Request Certified copies for legal proceedings |
15-20 business days | £500+ |
To submit a comprehensive data access request:
Response Time: We will acknowledge your request within 2 business days and provide an estimated completion timeline. Standard GDPR access requests (free self-service exports) are fulfilled immediately. Comprehensive requests may take 5-20 business days depending on complexity.
For questions about data retention, account deletion, GDPR compliance, or data access requests, please contact us using the details below.
Response Times: We aim to respond to all data protection inquiries within 5 business days. Formal GDPR requests will be processed within the legally required timeframes (typically 30 days).
Our data protection team is here to help you understand your obligations and our policies.
© Copyright 2026 www.ltcsoftware.co.uk