Data Retention Policy

Last updated: July 11, 2026

This Data Retention Policy explains how ZairoHealth retains, stores, deletes, anonymizes, and manages personal data and related records collected through the ZairoHealth website, mobile applications, and related platforms.

By using ZairoHealth, you agree to this policy along with our Privacy Policy and Terms & Conditions.

1. Purpose

ZairoHealth retains data only for as long as reasonably necessary to provide services, meet legal and regulatory requirements, protect users, prevent misuse, resolve disputes, and operate the platform.

We aim to avoid keeping personal data longer than needed for the purpose for which it was collected.

2. Data Covered by This Policy

This policy may apply to:

  • Account information
  • Profile details
  • Doctor and healthcare professional verification documents
  • Hospital partner documents
  • KYC or identity verification records
  • Job and shift applications
  • Event bookings
  • Product orders
  • Payment and billing records
  • Support tickets and communications
  • Referral and reward records
  • Reviews, ratings, comments, and uploaded content
  • Device, log, analytics, and security data
  • Consent and privacy preference records

3. General Retention Principles

ZairoHealth may retain data based on:

  • The purpose for which the data was collected
  • Active account status
  • Legal, tax, accounting, regulatory, and audit requirements
  • Security, fraud prevention, and dispute-resolution needs
  • Contractual obligations with hospitals, partners, sellers, or service providers
  • User consent, where applicable
  • Requests for deletion, withdrawal of consent, or account closure

Where data is no longer required, we may delete, anonymize, aggregate, or securely archive it.

4. Account Data

Account and profile data may be retained while your account remains active.

If you delete your account or request deletion, ZairoHealth may delete or anonymize account data, except where retention is required for legal, regulatory, security, accounting, fraud-prevention, dispute-resolution, or legitimate operational purposes.

5. Doctor Verification and KYC Data

Doctor verification, professional registration, qualification, KYC, and identity records may be retained for as long as needed to:

  • Verify user identity and credentials
  • Maintain trust and safety
  • Support hospital and platform interactions
  • Respond to complaints or disputes
  • Meet legal or regulatory obligations
  • Prevent impersonation, fraud, or misuse

Some verification records may be retained even after account closure where necessary for compliance, fraud prevention, audit, or dispute handling.

6. Hospital Partner and Vendor Records

Hospital, clinic, seller, vendor, and service provider records may be retained while the partner relationship remains active and for a reasonable period after closure to meet legal, tax, audit, contractual, dispute-resolution, and compliance requirements.

7. Jobs, Shifts, Events, and Booking Records

Records related to job applications, shift bookings, hospital calls, event registrations, service requests, and bookings may be retained as needed to:

  • Provide the service
  • Track application or booking history
  • Support hospital or partner workflows
  • Resolve payment, service, or user disputes
  • Maintain audit trails
  • Comply with legal obligations

8. Payment, Billing, and Transaction Records

Payment, billing, order, invoice, refund, tax, and transaction records may be retained for the period required under applicable tax, accounting, payment, audit, and business laws.

ZairoHealth does not intend to store full card, UPI, or banking credentials unless handled securely through authorized payment partners and permitted by law.

9. Support and Communication Records

Support tickets, emails, calls, chats, WhatsApp messages, feedback, and complaint records may be retained to:

  • Resolve user issues
  • Improve service quality
  • Maintain complaint history
  • Investigate misuse or policy violations
  • Comply with grievance redressal obligations

10. User Generated Content

Reviews, ratings, comments, listings, documents, images, and other user-submitted content may remain visible while the relevant account, listing, service, or platform feature is active.

ZairoHealth may remove, anonymize, or retain such content depending on platform needs, legal obligations, policy enforcement, or user requests.

11. Device, Log, Analytics, and Security Data

Device information, IP addresses, app logs, browser data, crash reports, analytics events, and security logs may be retained for platform security, fraud prevention, debugging, performance improvement, and legal compliance.

Aggregated or anonymized analytics data may be retained for longer because it does not directly identify individual users.

12. Consent and Preference Records

ZairoHealth may retain consent records, privacy preferences, cookie choices, communication preferences, and withdrawal records as needed to demonstrate compliance and respect user choices.

13. Data Deletion Requests

Users may request deletion of their personal data or account by contacting:

Email: support@zairohealth.com
Website: https://zairohealth.com

Deletion requests will be reviewed according to applicable law, platform requirements, and any outstanding legal, payment, security, or dispute-related obligations.

14. When We May Not Delete Data Immediately

ZairoHealth may retain certain data even after a deletion request if needed for:

  • Legal or regulatory compliance
  • Tax, audit, accounting, or payment records
  • Fraud prevention and platform safety
  • Dispute resolution
  • Enforcement of Terms & Conditions
  • Investigation of misuse or unlawful activity
  • Compliance with court, government, or regulatory requests
  • Establishment, exercise, or defense of legal claims

15. Anonymization and Aggregation

Where appropriate, ZairoHealth may anonymize or aggregate data so that it no longer identifies a specific individual.

Anonymized or aggregated data may be used for analytics, research, service improvement, reporting, business planning, and platform safety.

16. Backups and Archives

Deleted data may remain in encrypted backups or disaster-recovery systems for a limited period before being overwritten or securely deleted.

Access to backup data is restricted and used only for recovery, security, legal, or compliance purposes.

17. Security of Retained Data

ZairoHealth uses reasonable technical and organizational safeguards to protect retained data from unauthorized access, misuse, alteration, disclosure, or loss.

However, no storage or transmission system can be guaranteed to be completely secure.

18. Review of Retention Periods

ZairoHealth may periodically review retained data and delete, archive, or anonymize records that are no longer required.

Retention periods may vary by data type, legal requirement, user role, service category, and operational need.

19. Changes to This Policy

ZairoHealth may update this Data Retention Policy from time to time. Updated versions will be posted on the website or app with a revised “Last updated” date.

Continued use of ZairoHealth after changes means you accept the updated policy.

20. Contact Us

For questions or deletion requests, contact:

ZairoHealth Privacy Team
Email: support@zairohealth.com
Website: https://zairohealth.com