Data Retention Policy
Last updated: July 11, 2026
This Data Retention Policy explains how ZairoHealth retains, stores, deletes, anonymizes, and manages personal data and related records collected through the ZairoHealth website, mobile applications, and related platforms.
By using ZairoHealth, you agree to this policy along with our Privacy Policy and Terms & Conditions.
1. Purpose
ZairoHealth retains data only for as long as reasonably necessary to provide services, meet legal and regulatory requirements, protect users, prevent misuse, resolve disputes, and operate the platform.
We aim to avoid keeping personal data longer than needed for the purpose for which it was collected.
2. Data Covered by This Policy
This policy may apply to:
- Account information
- Profile details
- Doctor and healthcare professional verification documents
- Hospital partner documents
- KYC or identity verification records
- Job and shift applications
- Event bookings
- Product orders
- Payment and billing records
- Support tickets and communications
- Referral and reward records
- Reviews, ratings, comments, and uploaded content
- Device, log, analytics, and security data
- Consent and privacy preference records
3. General Retention Principles
ZairoHealth may retain data based on:
- The purpose for which the data was collected
- Active account status
- Legal, tax, accounting, regulatory, and audit requirements
- Security, fraud prevention, and dispute-resolution needs
- Contractual obligations with hospitals, partners, sellers, or service providers
- User consent, where applicable
- Requests for deletion, withdrawal of consent, or account closure
Where data is no longer required, we may delete, anonymize, aggregate, or securely archive it.
4. Account Data
Account and profile data may be retained while your account remains active.
If you delete your account or request deletion, ZairoHealth may delete or anonymize account data, except where retention is required for legal, regulatory, security, accounting, fraud-prevention, dispute-resolution, or legitimate operational purposes.
5. Doctor Verification and KYC Data
Doctor verification, professional registration, qualification, KYC, and identity records may be retained for as long as needed to:
- Verify user identity and credentials
- Maintain trust and safety
- Support hospital and platform interactions
- Respond to complaints or disputes
- Meet legal or regulatory obligations
- Prevent impersonation, fraud, or misuse
Some verification records may be retained even after account closure where necessary for compliance, fraud prevention, audit, or dispute handling.
6. Hospital Partner and Vendor Records
Hospital, clinic, seller, vendor, and service provider records may be retained while the partner relationship remains active and for a reasonable period after closure to meet legal, tax, audit, contractual, dispute-resolution, and compliance requirements.
7. Jobs, Shifts, Events, and Booking Records
Records related to job applications, shift bookings, hospital calls, event registrations, service requests, and bookings may be retained as needed to:
- Provide the service
- Track application or booking history
- Support hospital or partner workflows
- Resolve payment, service, or user disputes
- Maintain audit trails
- Comply with legal obligations
8. Payment, Billing, and Transaction Records
Payment, billing, order, invoice, refund, tax, and transaction records may be retained for the period required under applicable tax, accounting, payment, audit, and business laws.
ZairoHealth does not intend to store full card, UPI, or banking credentials unless handled securely through authorized payment partners and permitted by law.
9. Support and Communication Records
Support tickets, emails, calls, chats, WhatsApp messages, feedback, and complaint records may be retained to:
- Resolve user issues
- Improve service quality
- Maintain complaint history
- Investigate misuse or policy violations
- Comply with grievance redressal obligations
10. User Generated Content
Reviews, ratings, comments, listings, documents, images, and other user-submitted content may remain visible while the relevant account, listing, service, or platform feature is active.
ZairoHealth may remove, anonymize, or retain such content depending on platform needs, legal obligations, policy enforcement, or user requests.
11. Device, Log, Analytics, and Security Data
Device information, IP addresses, app logs, browser data, crash reports, analytics events, and security logs may be retained for platform security, fraud prevention, debugging, performance improvement, and legal compliance.
Aggregated or anonymized analytics data may be retained for longer because it does not directly identify individual users.
12. Consent and Preference Records
ZairoHealth may retain consent records, privacy preferences, cookie choices, communication preferences, and withdrawal records as needed to demonstrate compliance and respect user choices.
13. Data Deletion Requests
Users may request deletion of their personal data or account by contacting:
Email: support@zairohealth.com
Website: https://zairohealth.com
Deletion requests will be reviewed according to applicable law, platform requirements, and any outstanding legal, payment, security, or dispute-related obligations.
14. When We May Not Delete Data Immediately
ZairoHealth may retain certain data even after a deletion request if needed for:
- Legal or regulatory compliance
- Tax, audit, accounting, or payment records
- Fraud prevention and platform safety
- Dispute resolution
- Enforcement of Terms & Conditions
- Investigation of misuse or unlawful activity
- Compliance with court, government, or regulatory requests
- Establishment, exercise, or defense of legal claims
15. Anonymization and Aggregation
Where appropriate, ZairoHealth may anonymize or aggregate data so that it no longer identifies a specific individual.
Anonymized or aggregated data may be used for analytics, research, service improvement, reporting, business planning, and platform safety.
16. Backups and Archives
Deleted data may remain in encrypted backups or disaster-recovery systems for a limited period before being overwritten or securely deleted.
Access to backup data is restricted and used only for recovery, security, legal, or compliance purposes.
17. Security of Retained Data
ZairoHealth uses reasonable technical and organizational safeguards to protect retained data from unauthorized access, misuse, alteration, disclosure, or loss.
However, no storage or transmission system can be guaranteed to be completely secure.
18. Review of Retention Periods
ZairoHealth may periodically review retained data and delete, archive, or anonymize records that are no longer required.
Retention periods may vary by data type, legal requirement, user role, service category, and operational need.
19. Changes to This Policy
ZairoHealth may update this Data Retention Policy from time to time. Updated versions will be posted on the website or app with a revised “Last updated” date.
Continued use of ZairoHealth after changes means you accept the updated policy.
20. Contact Us
For questions or deletion requests, contact:
ZairoHealth Privacy Team
Email: support@zairohealth.com
Website: https://zairohealth.com