Data Retention Schedule
1. Storage Limitation Principle
Under UK GDPR, personal data should not be kept longer than necessary. We apply this by setting retention periods based on service delivery needs, legal requirements, security, and dispute handling.
2. Retention Summary
The periods below are typical retention ranges used by SCS Hosts for customer-facing transparency.
| Data Category | Typical Retention Period | Reason |
|---|---|---|
| Customer account and contact records | While account is active, then up to 24 months after closure | Service continuity, support history, and dispute handling |
| Billing, invoice, and transaction records | 6 years | UK tax and accounting evidence obligations |
| Domain administration records and renewal communications | While domain is active, then up to 24 months after expiry or transfer | Operational continuity, disputes, and chargeback handling |
| Support tickets and customer communications | 24 months from last interaction | Service quality, troubleshooting, and audit trail |
| Security and audit logs | Up to 12 months | Security monitoring, incident investigation, and abuse prevention |
| Operational backups | Rolling retention of 30 to 90 days | Resilience and incident recovery |
3. Important Notes and Exceptions
Retention periods may be extended where reasonably required for legal obligations, active disputes, fraud prevention, abuse investigations, or security incident handling.
4. Disposal and Deletion
When retention periods end, we aim to securely delete or anonymise personal data where feasible and appropriate, subject to lawful exceptions.
Customers may request deletion via our contact page. We will assess requests in line with UK GDPR rights and any legal obligations that require continued retention.
5. Related Policies
For more detail on how we process personal data, see our Privacy Policy and Data Protection Policy.