Chat on WhatsApp

Data Retention and Deletion Policy 

Effective Date: 01th April 2025 
Last Updated: 29th June 2026 
Company Legal Name: Treewalker Digital Private Limited 
Product: Galla.app 
Website: https://galla.app 
Registered Office: Vikas Plaza.38/ 1A (4), Kanappana Agrahara, Hosur Rd, Phase II, Electronic City, Bengaluru, Karnataka 560100 
Support Email: support@treewalkerlabs.com 
Legal Email: legal@treewalkerlabs.com  
CIN: U72900KA2021PTC153840
GSTIN: 29AAICT9733E1ZXs

This Data Retention and Deletion Policy (“Policy”) explains how Treewalker Digital Private Limited (“Treewalker Digital”, “Galla”, “Galla.app”, “Company”, “we”, “us”, or “our”) retains, stores, archives, deletes, anonymises, or returns data processed through Galla.app and related services. 

Galla.app is a SaaS platform for retail management, POS billing, warehouse management, inventory management, WhatsApp marketing, ecommerce development, third-party integrations, APIs, dashboards, reporting, automation, hardware-assisted workflows, and related business operations. 

This Policy applies to customers, businesses, organisations, companies, firms, proprietorships, partnerships, users, buyers, subscribers, and entities (“Customer”, “you”, or “your”) that use Galla.app. 

This Policy should be read together with our Terms of Service, Privacy Policy, Cookie Policy, Data Processing Addendum, Subprocessor List, Acceptable Use Policy, WhatsApp Marketing Policy, Security Overview, SLA and Support Policy, Refund and Billing Policy, Responsible Disclosure Policy, and Incident Response Policy. 

1. Purpose of this Policy

The purpose of this Policy is to clearly explain: 

  1. What data Galla.app retains. 
  2. Why data is retained. 
  3. How long different categories of data are retained. 
  4. When data is deleted. 
  5. How account closure and deletion requests are handled. 
  6. How backups are handled. 
  7. How legal, tax, accounting, GST, audit, security, and dispute-related retention works. 
  8. How customer data export works. 
  9. How WhatsApp, POS, WMS, ecommerce, integration, support, and hardware data is retained. 
  10. What the Customer must do before account closure or deletion. 

2. General Retention Principle

Treewalker Digital Private Limited retains data only for as long as reasonably required for: 

  1. Providing Galla.app services. 
  2. Operating subscribed modules. 
  3. Supporting retail, POS, warehouse, inventory, WhatsApp, ecommerce, and integration workflows. 
  4. Providing customer support. 
  5. Maintaining business records. 
  6. Meeting legal, tax, GST, accounting, audit, security, and compliance obligations. 
  7. Preventing fraud, abuse, spam, security incidents, or unauthorised access. 
  8. Resolving disputes. 
  9. Enforcing agreements and policies. 
  10. Maintaining backups and business continuity. 

When data is no longer required for these purposes, it may be deleted, anonymised, archived, or securely restricted. 

3. Recommended Default Retention Schedule

Unless a separate agreement, law, product setting, or enterprise contract states otherwise, Galla.app follows the recommended retention schedule below. 

Data Category 

Recommended Retention Period 

Deletion / Purge Timeline 

Active Customer Data inside SaaS account 

During active subscription 

Not deleted while account is active unless requested and technically feasible 

Customer Data after account closure 

90 days from account closure / expiry / termination 

Production deletion after 90 days 

Customer Data after approved deletion request 

Within 30 days of approved request 

Deleted from active production systems within 30 days, unless legal retention applies 

Backup copies 

30 to 90 days from backup creation 

Automatically overwritten or purged within backup cycle 

Deleted user records 

30 days soft-delete, then deletion/anonymisation 

Permanent deletion/anonymisation after 30 days, unless retained for audit/security 

POS invoice and billing records 

8 financial years or longer if required 

Deleted/archived after statutory period 

GST/tax records 

72 months from due date of annual return, or longer if proceedings exist 

Deleted/archived after legal period ends 

Company accounting records 

8 financial years or longer if required 

Deleted/archived after legal period ends 

Payment and invoice records 

8 financial years 

Deleted/archived after legal period ends 

Support tickets 

3 years after ticket closure 

Deleted/anonymised after 3 years unless needed for dispute/security 

Implementation and onboarding records 

3 years after project closure 

Deleted/anonymised after 3 years 

WhatsApp campaign logs 

24 months 

Deleted/anonymised after 24 months unless required for billing/dispute/compliance 

WhatsApp consent and opt-out records 

Active account period + 3 years 

Deleted/anonymised after retention period, unless legal/dispute hold applies 

API logs 

90 days to 12 months 

Deleted/anonymised based on log type and security need 

Security logs 

12 to 24 months 

Deleted/anonymised after retention period unless incident/legal hold applies 

Audit logs 

12 to 36 months 

Deleted/anonymised after retention period unless required for compliance 

Ecommerce order data 

Active account + 90 days after closure, or legal period if invoice/tax record 

Deleted/archived as per data type 

Warehouse transaction data 

Active account + 90 days after closure, or longer if part of billing/legal records 

Deleted/archived as per data type 

Hardware sales and warranty records 

8 financial years for invoice/tax records; 3 years for support history 

Deleted/archived after applicable period 

Marketing lead data of Galla.app 

24 months from last interaction 

Deleted/anonymised unless consent or business relationship continues 

Trial/demo account data 

30 days after trial expiry 

Deleted after 30 days unless converted to paid account 

Abuse, fraud, or policy violation records 

3 to 7 years depending on severity 

Deleted/archived after risk period 

Legal dispute records 

Until dispute is closed + 3 years, or as advised by legal team 

Deleted/archived after legal hold is released 

4. Important Deletion Timelines

The following deletion timelines are recommended for Galla.app: 

Trigger 

Recommended Action 

Timeline 

Customer requests deletion of selected data 

Validate request and delete where technically feasible 

Within 30 days 

Customer closes account 

Keep data for retrieval/export window 

90 days 

Customer does not renew subscription 

Keep data in restricted/inactive state 

90 days from expiry 

Trial account expires 

Delete trial data 

30 days after expiry 

Customer asks for full account deletion 

Delete active production data after approval 

Within 30 days 

Backup data after deletion 

Allow backup overwrite cycle 

Within 90 days 

Legal/tax/accounting data 

Retain as legally required 

6 to 8 years or longer 

Security incident data 

Retain for investigation and defence 

3 to 7 years 

Opt-out records 

Retain to avoid future unlawful messaging 

Active account + 3 years 

Support tickets 

Retain for service history and dispute defence 

3 years 

5. Scope of this Policy

This Policy applies to data processed through or in connection with: 

  1. Galla.app SaaS platform. 
  2. Retail Management module. 
  3. POS Billing module. 
  4. Warehouse Management module. 
  5. Inventory Management module. 
  6. WhatsApp Marketing and Customer Communication module. 
  7. Ecommerce Development and Managed Ecommerce Services. 
  8. Third-party integrations. 
  9. APIs and webhooks. 
  10. Reports and dashboards. 
  11. Customer support. 
  12. Implementation and onboarding. 
  13. Data migration. 
  14. Hardware support. 
  15. Billing and invoicing. 
  16. Website forms and demo requests. 
  17. Security and audit logs. 
  18. Trial, pilot, and demo accounts. 

6. Types of Data Covered

This Policy covers the following data categories. 

6.1 Account and business data 

This may include: 

  1. Customer name. 
  2. Company name. 
  3. Business address. 
  4. GSTIN. 
  5. CIN, where applicable. 
  6. Billing contact. 
  7. Admin user details. 
  8. Subscription plan. 
  9. Contract details. 
  10. User roles. 
  11. Account settings. 
  12. Store, warehouse, and branch details. 

6.2 SaaS operational data 

This may include: 

  1. Product data. 
  2. Customer records. 
  3. Vendor records. 
  4. Employee or user records. 
  5. POS records. 
  6. Invoice records. 
  7. Purchase records. 
  8. Sales records. 
  9. Inventory records. 
  10. Warehouse movement records. 
  11. Dispatch records. 
  12. Barcode, QR, RFID, batch, and serial number data. 
  13. Ecommerce orders. 
  14. WhatsApp campaigns. 
  15. Reports and dashboards. 
  16. API logs. 
  17. Integration data. 

    6.3 Support and implementation data 

    This may include: 

    1. Support tickets. 
    2. Emails. 
    3. Chat records. 
    4. Call notes. 
    5. Screenshots. 
    6. Videos. 
    7. Attachments. 
    8. Remote support session details. 
    9. Issue logs. 
    10. Implementation documents. 
    11. Training records. 
    12. Configuration records. 

    6.4 Technical and security data 

    This may include: 

    1. IP address. 
    2. Device information. 
    3. Browser details. 
    4. Login logs. 
    5. API logs. 
    6. Audit logs. 
    7. Error logs. 
    8. Security logs. 
    9. System performance logs. 
    10. Integration error logs. 
    11. Access records. 

    6.5 Hardware-related data 

    This may include: 

    1. Hardware model. 
    2. Serial number. 
    3. Purchase invoice. 
    4. Delivery date. 
    5. First use date. 
    6. Warranty status. 
    7. Replacement request. 
    8. Service ticket. 
    9. Inspection report. 
    10. Repair record. 
    11. Service partner report. 
    12. Photos or videos shared for troubleshooting. 

    7. Active Account Retention

    During an active paid subscription, Galla.app retains Customer Data required to provide the service. 

    Active account data is generally retained for the full subscription period unless: 

    1. Customer deletes specific data using available tools. 
    2. Customer requests deletion. 
    3. Data is no longer needed. 
    4. Data violates our policies. 
    5. Data is unlawful. 
    6. Legal or security reason requires restriction or deletion. 
    7. A separate agreement defines a different retention term. 

    Customer should not use Galla.app as the only archive for legal, tax, statutory, or accounting records. Customer should export and maintain required business records separately. 

    8. Inactive Account Retention 

    An account may become inactive due to: 

    1. Subscription expiry. 
    2. Non-renewal. 
    3. Non-payment. 
    4. Customer request. 
    5. Suspension. 
    6. Termination. 
    7. Trial expiry. 
    8. Project closure. 

    Recommended inactive account retention: 

    Account Type 

    Retention Period 

    Paid account after expiry or non-renewal 

    90 days 

    Paid account after termination by Customer 

    90 days 

    Account suspended for non-payment 

    90 days from suspension 

    Trial account after expiry 

    30 days 

    Demo account after expiry 

    30 days 

    POC account after closure 

    30 to 90 days, based on agreement 

    Enterprise account 

    As per agreement; default 90 days 

    After the retention period, Galla.app may delete, restrict, archive, or anonymise data. 

    9. Data Export Before Deletion 

    Before account deletion, Customer should export all required data. 

    Exportable data may include, depending on plan and module: 

    1. Product master. 
    2. Customer list. 
    3. Vendor list. 
    4. Employee/user list. 
    5. Sales records. 
    6. Purchase records. 
    7. POS invoices. 
    8. Stock reports. 
    9. Warehouse movement records. 
    10. Inventory reports. 
    11. Dispatch records. 
    12. Ecommerce orders. 
    13. WhatsApp campaign reports. 
    14. Payment records. 
    15. Integration reports. 
    16. Custom reports, where available. 

    Customer is responsible for exporting data before expiry of the retention window. 

    Galla.app is not responsible for loss of data if Customer fails to export data before deletion. 

    10. Deletion After Account Closure 

    After account closure, cancellation, expiry, or termination: 

    1. Customer account may be moved to inactive state. 
    2. Customer access may be restricted. 
    3. Data may be retained for 90 days for export, reactivation, billing, dispute, and support purposes. 
    4. After 90 days, production data may be deleted or anonymised. 
    5. Backup copies may remain for up to 90 additional days depending on backup cycle. 
    6. Legal, tax, accounting, security, dispute, or abuse records may be retained longer. 

    Recommended deletion timeline after account closure: 

    Stage 

    Timeline 

    Account closure / expiry date 

    Day 0 

    Account moved to inactive/restricted status 

    Day 0 to Day 7 

    Customer export window 

    Up to Day 90 

    Production data deletion/anonymisation 

    After Day 90 

    Backup purge 

    Within next 30 to 90 days 

    Billing/legal/security records 

    Retained as per legal period 

    11. Deletion Upon Customer Request

    A Customer may request deletion of selected data or full account data by contacting Galla.app. 

    Deletion requests should be sent to: 

    Support Email: support@treewalkerlabs.com

    The request should include: 

    1. Customer name. 
    2. Company name. 
    3. Account ID or registered email. 
    4. Data to be deleted. 
    5. Reason for deletion. 
    6. Authorised signatory confirmation. 
    7. GST/legal/tax confirmation, where relevant. 
    8. Contact person details. 

    After verification and approval, Galla.app will use reasonable efforts to delete active production data within 30 days, unless retention is required for legal, tax, accounting, security, billing, contractual, fraud prevention, dispute, or compliance reasons. 

    Backup copies may be deleted or overwritten within the normal backup cycle, generally within 90 days. 

    12. Data Principal / Individual Deletion Requests 

    Individuals may request deletion of their personal data. 

    If the data belongs to a Galla.app business customer’s account, Galla.app may redirect the individual to the relevant Customer because the Customer controls the purpose and use of such data. 

    Examples: 

    1. Retail customer asking deletion from store records. 
    2. Ecommerce buyer asking deletion from merchant records. 
    3. WhatsApp recipient asking deletion from campaign list. 
    4. Vendor contact asking deletion from vendor master. 
    5. Employee asking deletion from employer’s warehouse/POS account. 
    6. Galla.app may assist the Customer where technically feasible, but the Customer remains responsible for responding to such requests where the Customer controls the data. 

    13. Deletion Exceptions

    Galla.app may refuse, delay, restrict, or partially fulfil deletion requests where retention is required for: 

    1. Legal compliance. 
    2. GST records. 
    3. Tax records. 
    4. Accounting records. 
    5. Company law records. 
    6. Billing and invoice records. 
    7. Audit requirements. 
    8. Fraud prevention. 
    9. Security investigation. 
    10. Legal claims. 
    11. Dispute resolution. 
    12. Debt recovery. 
    13. Contract enforcement. 
    14. Law enforcement request. 
    15. Regulatory request. 
    16. Backup cycles. 
    17. Technical limitations. 
    18. Customer’s contractual obligations. 
    19. Protection of rights, property, users, customers, or the public. 

    Where full deletion is not possible, Galla.app may restrict access, archive data, anonymise personal fields, or retain only the minimum required records. 

    14. Backup Retention and Deletion

    Galla.app may maintain backups for service continuity, disaster recovery, and security. 

    Recommended backup retention: 

    Backup Type 

    Retention Period 

    Daily backups 

    7 to 30 days 

    Weekly backups 

    4 to 8 weeks 

    Monthly backups 

    3 months 

    Emergency incident backups 

    Until incident closure + 90 days 

    Legal hold backups 

    Until legal hold is released 

    Backup data is generally not edited or selectively deleted immediately after a deletion request. 

    When production data is deleted, backup copies may remain temporarily and will be overwritten or purged in the normal backup cycle, generally within 90 days. 

    If backup data is restored, Galla.app will take reasonable steps to re-apply deletion requests where technically feasible.

    15. POS Billing Data Retention 

    POS billing data may include: 

    1. Invoices. 
    2. Customer name. 
    3. Customer phone number. 
    4. Billing address. 
    5. GSTIN, where applicable. 
    6. Product details. 
    7. Tax details. 
    8. HSN/SAC codes. 
    9. Payment mode. 
    10. Return records. 
    11. Credit notes. 
    12. Debit notes. 
    13. Cashier/user records. 
    14. Store records. 
    15. Billing counter records. 

    Recommended retention: 

    POS Data Type 

    Retention Period 

    POS invoices and tax records 

    8 financial years 

    GST-related records 

    72 months from annual return due date or longer if proceedings exist 

    Sales reports 

    8 financial years 

    Return/refund records 

    8 financial years 

    POS user activity logs 

    12 to 36 months 

    Draft invoices or abandoned entries 

    30 to 90 days 

    Test invoices in test/demo environment 

    30 days 

    Customer is responsible for maintaining statutory records and verifying tax, GST, invoice, and accounting information. 

    16. Retail Management Data Retention 

    Retail data may include: 

    1. Product master. 
    2. Customer list. 
    3. Vendor list. 
    4. Sales data. 
    5. Purchase data. 
    6. Price data. 
    7. Discount data. 
    8. Loyalty data. 
    9. Store user data. 
    10. Reports. 

    Recommended retention:

    Retail Data Type 

    Retention Period 

    Product and vendor master 

    Active account + 90 days 

    Customer master 

    Active account + 90 days 

    Sales and purchase records 

    8 financial years where linked to invoices/accounts 

    Loyalty and marketing records 

    Active account + 3 years, unless consent withdrawn 

    Retail reports 

    Active account + 90 days 

    Deleted product/customer/vendor entries 

    30 days soft-delete where supported 

     

    17. Warehouse Management Data Retention 

    Warehouse data may include: 

    1. Inward records. 
    2. Outward records. 
    3. Putaway records. 
    4. Picking records. 
    5. Packing records. 
    6. Dispatch records. 
    7. Stock transfer records. 
    8. Cycle count records. 
    9. Stock adjustment records. 
    10. Location/bin records. 
    11. Barcode/QR/RFID logs. 
    12. Warehouse user activity. 
    13. Device logs. 
    14. Vendor and delivery contact data. 
    15. ERP/ecommerce/logistics integration records. 

    Recommended retention: 

    WMS Data Type 

    Retention Period 

    Stock movement records 

    Active account + 90 days, or 8 financial years if linked to accounting/tax records 

    Dispatch and delivery records 

    8 financial years where linked to sale/order/tax records 

    Cycle count and stock audit records 

    3 years 

    Barcode/QR/RFID transaction logs 

    24 to 36 months 

    Warehouse user activity logs 

    12 to 36 months 

    Device/scanner logs 

    90 days to 12 months 

    Temporary scan/session data 

    7 to 30 days 

    Customer should export warehouse records needed for audit, reconciliation, statutory, or business continuity purposes. 

    18. Inventory Management Data Retention 

    Inventory data may include: 

    1. Product data. 
    2. SKU data. 
    3. Batch data. 
    4. Serial number data. 
    5. Stock balance. 
    6. Stock movement. 
    7. Adjustment records. 
    8. Transfer records. 
    9. Purchase records. 
    10. Sales records. 
    11. Expiry data, where configured. 

    Recommended retention: 

    Inventory Data Type 

    Retention Period 

    Product/SKU master 

    Active account + 90 days 

    Stock movement records 

    3 years, or 8 financial years if linked to financial records 

    Batch/serial data 

    Active account + 90 days, or longer where legal/commercial need exists 

    Stock adjustment records 

    3 years 

    Inventory reports 

    Active account + 90 days 

    19. WhatsApp Marketing Data Retention

    WhatsApp Marketing data may include: 

    1. Recipient name. 
    2. Recipient mobile number. 
    3. Campaign name. 
    4. Message template. 
    5. Message content. 
    6. Delivery status. 
    7. Read status, where available. 
    8. Failed status. 
    9. Response data. 
    10. Consent status, where configured. 
    11. Opt-out status. 
    12. Campaign analytics. 
    13. Provider logs. 
    14. WhatsApp Business Account metadata. 

    Recommended retention: 

    WhatsApp Data Type 

    Retention Period 

    Campaign history 

    24 months 

    Message delivery logs 

    12 to 24 months 

    Message content/templates 

    Active account + 90 days 

    Recipient lists 

    Active account + 90 days, unless deleted earlier 

    Consent records 

    Active account + 3 years 

    Opt-out/suppression records 

    Active account + 3 years 

    Provider error logs 

    90 days to 12 months 

    Billing records for WhatsApp usage 

    8 financial years 

    Opt-out records may be retained longer than marketing lists to prevent sending future messages to recipients who have opted out. 

    20. Ecommerce Data Retention

    Ecommerce data may include: 

    1. Buyer name. 
    2. Email address. 
    3. Phone number. 
    4. Billing address. 
    5. Shipping address. 
    6. Order details. 
    7. Payment status. 
    8. Return/refund records. 
    9. Cart data. 
    10. Product catalogue data. 
    11. Shipping and delivery details. 
    12. Marketplace data. 
    13. Ecommerce analytics. 

    Recommended retention: 

    Ecommerce Data Type 

    Retention Period 

    Orders and invoices 

    8 financial years 

    Buyer records 

    Active account + 90 days, unless legally required longer 

    Shipping/delivery records 

    3 to 8 years depending on invoice/legal linkage 

    Return/refund records 

    8 financial years 

    Cart/session data 

    30 to 90 days 

    Product catalogue 

    Active account + 90 days 

    Ecommerce support data 

    3 years 

    Website form leads 

    24 months from last interaction 

    For customer-owned ecommerce websites, the Customer is responsible for its own privacy, cookie, retention, and deletion obligations. 

    21. Third-Party Integration Data Retention 

    Integration data may include: 

    1. ERP sync logs. 
    2. Accounting sync logs. 
    3. Tally sync data. 
    4. Payment gateway response. 
    5. Marketplace sync data. 
    6. Ecommerce sync data. 
    7. Logistics sync data. 
    8. WhatsApp provider response. 
    9. API request and response logs. 
    10. Error logs. 
    11. Webhook payloads. 

    Recommended retention: 

    Integration Data Type 

    Retention Period 

    Integration logs 

    90 days to 12 months 

    Failed sync logs 

    90 days to 12 months 

    API request metadata 

    90 days to 12 months 

    Webhook logs 

    90 days to 12 months 

    Payment gateway transaction records 

    8 financial years where linked to billing/accounting 

    ERP/accounting sync records 

    8 financial years where linked to accounting/tax records 

    Third-party platforms may retain data under their own policies. Galla.app does not control third-party retention. 

    22. API Logs Retention

    API logs may include: 

    1. API key ID. 
    2. Endpoint. 
    3. Timestamp. 
    4. IP address. 
    5. Request metadata. 
    6. Response status. 
    7. Error reason. 
    8. Rate-limit event. 
    9. Webhook delivery status. 

    Recommended retention:

    API Log Type 

    Retention Period 

    Standard API logs 

    90 days 

    Error logs 

    180 days 

    Security-related API logs 

    12 to 24 months 

    High-risk or abuse logs 

    3 years 

    API billing records 

    8 financial years 

    API payloads containing personal or business data should be retained only where necessary for troubleshooting, security, billing, or compliance. 

    23. Support Ticket Retention

    Support data may include: 

    1. Ticket details. 
    2. Email communication. 
    3. Chat transcripts. 
    4. Call notes. 
    5. Screenshots. 
    6. Attachments. 
    7. Videos. 
    8. Error logs. 
    9. Remote support session details. 
    10. Resolution notes. 

    Recommended retention: 

    Support Data Type 

    Retention Period 

    Standard support tickets 

    3 years after closure 

    Hardware support tickets 

    3 years after closure 

    Critical incident tickets 

    5 years 

    Screenshots/attachments 

    12 to 36 months, depending on need 

    Remote session metadata 

    12 months 

    Call recordings, if any 

    90 days to 12 months 

    Customer training records 

    3 years 

    Customers should avoid sharing unnecessary personal or sensitive data in support tickets. 

    24. Hardware Data Retention

    Hardware data may include: 

    1. Hardware purchase records. 
    2. Invoice records. 
    3. Serial number. 
    4. Device model. 
    5. Warranty details. 
    6. Delivery records. 
    7. Installation records. 
    8. Replacement request. 
    9. Repair records. 
    10. AMC records. 
    11. Service partner reports. 
    12. Photos/videos for defect verification. 

    Recommended retention: 

    Hardware Data Type 

    Retention Period 

    Hardware invoice and tax records 

    8 financial years 

    Delivery records 

    3 years 

    Serial number and warranty records 

    Warranty period + 3 years 

    Replacement request records 

    3 years 

    Repair/service records 

    3 years 

    AMC records 

    AMC period + 3 years 

    Photos/videos shared for defect check 

    12 months, unless dispute exists 

    Hardware records may be retained longer where required for warranty, legal, tax, accounting, service, or dispute reasons. 

    25. Billing, Finance, GST, and Accounting Records 

    Billing and accounting records may include: 

    1. Invoices. 
    2. Payment receipts. 
    3. Credit notes. 
    4. Debit notes. 
    5. GST records. 
    6. Subscription records. 
    7. Payment gateway references. 
    8. Bank transaction references. 
    9. Purchase orders. 
    10. Order forms. 
    11. Contracts. 
    12. Tax records. 
    13. Refund records. 
    14. Hardware invoices. 
    15. Vendor invoices. 

    Recommended retention: 

    Record Type 

    Retention Period 

    Invoices and payment records 

    8 financial years 

    GST records 

    72 months from due date of annual return, or longer if proceedings exist 

    Company books/accounting records 

    8 financial years 

    Contracts/order forms 

    Contract term + 8 years 

    Refund and credit note records 

    8 financial years 

    Tax and audit records 

    8 financial years or longer if required 

    Records under dispute/investigation 

    Until closure + 3 years, or as advised by legal/CA 

    These records may not be deleted on customer request if legal retention applies. 

    26. Security Logs and Audit Logs 

    Security and audit logs may include: 

    1. Login records. 
    2. Failed login attempts. 
    3. Password reset logs. 
    4. Admin activity. 
    5. User activity. 
    6. API access logs. 
    7. Data export logs. 
    8. Permission change logs. 
    9. Suspicious activity logs. 
    10. Incident records. 
    11. IP address and device metadata. 
    12. Integration activity logs. 

    Recommended retention: 

    Log Type 

    Retention Period 

    Login logs 

    12 months 

    Admin activity logs 

    24 to 36 months 

    Data export logs 

    24 to 36 months 

    Security incident logs 

    5 years 

    Abuse/fraud logs 

    3 to 7 years 

    Standard application logs 

    90 to 180 days 

    Error logs 

    180 days 

    Audit logs for enterprise customers 

    As per agreement, default 24 months 

    Security logs may be retained longer to investigate incidents, prevent fraud, enforce policies, or defend legal claims. 

    27. Website and Marketing Lead Data 

    Galla.app may collect website and marketing data through: 

    1. Contact forms. 
    2. Demo requests. 
    3. Landing pages. 
    4. Webinars. 
    5. Campaigns. 
    6. Email inquiries. 
    7. Chat tools. 
    8. Cookies and analytics. 
    9. Download forms. 
    10. Sales calls. 

    Recommended retention: 

    Marketing Data Type 

    Retention Period 

    Demo request data 

    24 months from last interaction 

    Website contact forms 

    24 months 

    Marketing leads 

    24 months from last meaningful interaction 

    Newsletter subscribers 

    Until unsubscribe or inactivity period of 24 months 

    Unsubscribed contacts 

    3 years in suppression list 

    Cookie consent records 

    12 months 

    Website analytics data 

    14 to 26 months, depending on tool settings 

    28. Trial, Demo, and Pilot Data

    Trial, demo, and pilot accounts are not intended for long-term data storage. 

    Recommended retention: 

    Account Type 

    Retention Period 

    Free trial data 

    30 days after trial expiry 

    Demo account data 

    30 days after demo expiry 

    POC account data 

    30 to 90 days after POC closure 

    Sales sandbox data 

    30 days 

    Test data 

    7 to 30 days 

    Converted paid account 

    Retained as active Customer Data 

    Customers should not upload sensitive, statutory, or production data into demo/trial accounts unless expressly approved. 

    29.Deleted Data and Soft Delete 

    Some modules may support soft deletion. 

    Soft deletion means data is removed from normal user view but may remain recoverable for a limited period. 

    Recommended soft-delete period: 

    Data Type 

    Soft-Delete Period 

    User records 

    30 days 

    Product/customer/vendor records 

    30 days 

    Draft records 

    7 to 30 days 

    Deleted reports 

    30 days 

    Deleted campaign drafts 

    30 days 

    Deleted files/attachments 

    30 days 

    After the soft-delete period, data may be permanently deleted, anonymised, or archived. 

    Some records may not be deletable if they are linked to invoices, tax records, audit logs, security logs, or legal records. 

    30. Anonymisation 

    Where full deletion is not possible or not required, Galla.app may anonymise data. 

    Anonymisation may include: 

    1. Removing names. 
    2. Removing phone numbers. 
    3. Removing email addresses. 
    4. Removing addresses. 
    5. Removing identifiers. 
    6. Aggregating data. 
    7. Masking personal fields. 
    8. Replacing values with random identifiers. 
    9. Removing direct customer/user references. 

    Anonymised data may be used for: 

    1. Product improvement. 
    2. Security improvement. 
    3. Usage analytics. 
    4. Performance benchmarking. 
    5. Internal reporting. 
    6. Service reliability. 
    7. Statistical analysis. 

    Anonymised data should not identify a specific individual. 

    31. aggregated data

    Galla.app may retain aggregated data that does not identify individual users or customers. 

    Aggregated data may include: 

    1. Total number of transactions. 
    2. Feature usage trends. 
    3. Average system performance. 
    4. Error frequency. 
    5. General product analytics. 
    6. Industry-level benchmarks. 
    7. Anonymous campaign statistics. 
    8. General API usage patterns. 

    Aggregated data may be retained indefinitely if it does not identify an individual or customer. 

    32. Legal Hold

      Galla.app may place data under legal hold where required for: 

      1. Legal claims. 
      2. Regulatory inquiry. 
      3. Court order. 
      4. Government request. 
      5. Tax investigation. 
      6. GST proceedings. 
      7. Audit. 
      8. Security incident. 
      9. Fraud investigation. 
      10. Customer dispute. 
      11. Debt recovery. 
      12. Policy violation. 
      13. Law enforcement request. 

      Data under legal hold will not be deleted until the hold is released. 

      After the legal hold is released, data will be deleted, archived, or retained according to the normal retention schedule. 

      33. Customer-Controlled Third-Party Platforms 

      Customers may connect Galla.app with third-party platforms such as: 

      1. ERP systems. 
      2. Accounting software. 
      3. Tally or similar tools. 
      4. Ecommerce platforms. 
      5. Marketplaces. 
      6. Payment gateways. 
      7. Logistics providers. 
      8. WhatsApp/Meta. 
      9. SMS providers. 
      10. Email providers. 
      11. Analytics tools. 
      12. Custom APIs. 

      These third parties may retain data under their own policies. 

      Galla.app cannot delete data from customer-controlled third-party platforms unless technically supported and expressly agreed. 

      Customers should review third-party retention and deletion policies separately. 

      34. Subprocessor Retention 

      Galla.app may use subprocessors for hosting, messaging, email, payment, analytics, security, support, storage, and other services. 

      Subprocessors may retain data according to: 

      1. Their service terms. 
      2. Data processing agreements. 
      3. Technical requirements. 
      4. Backup cycles. 
      5. Security and compliance needs. 
      6. Legal obligations. 
      7. Galla.app instructions. 

      Where applicable, Galla.app will take reasonable steps to ensure that subprocessors delete or return Customer Personal Data after the relevant processing purpose ends, subject to legal and technical limitations. 

      35. Data Deletion from Subprocessors

      When Customer Data is deleted from Galla.app production systems, Galla.app will use reasonable efforts to ensure that relevant subprocessors delete or stop processing such data where required. 

      Deletion from subprocessors may depend on: 

      1. Subprocessor systems. 
      2. Backup cycles. 
      3. Legal retention obligations. 
      4. Contractual obligations. 
      5. Technical feasibility. 
      6. Security needs. 
      7. Billing and audit records. 
      8. Third-party platform rules. 

      Some subprocessors may retain limited logs or billing records for legal, security, or operational reasons. 

      36. Customer Responsibilities

      The Customer is responsible for: 

      1. Exporting required data before cancellation or deletion. 
      2. Maintaining its own statutory records. 
      3. Keeping accounting, GST, tax, and audit records. 
      4. Responding to data principal/customer deletion requests. 
      5. Deleting data from customer-controlled third-party systems. 
      6. Managing users and access permissions. 
      7. Deleting inactive users. 
      8. Avoiding unnecessary personal data upload. 
      9. Keeping data accurate and updated. 
      10. Removing unlawful contact lists. 
      11. Maintaining consent and opt-out records. 
      12. Protecting exported files. 
      13. Not using Galla.app as the only legal archive. 
      14. Reviewing retention needs before account closure.

      37. Data Deletion Request Process

      To request deletion, Customer should contact: 

      Support Email: support@treewalkerlabs.com

      The request should include: 

      1. Company name. 
      2. Registered account email. 
      3. Authorised requester name. 
      4. Designation. 
      5. Data category to be deleted. 
      6. Reason for deletion. 
      7. Confirmation that required exports are completed. 
      8. Confirmation that deletion is authorised by the Customer. 
      9. Any legal, tax, or accounting instructions. 
      10. Contact details for follow-up. 

      Galla.app may verify the requester’s authority before processing deletion. 

      38. Deletion Verification 

      Before deleting Customer Data, Galla.app may verify: 

      1. Customer identity. 
      2. Authorised signatory approval. 
      3. Account ownership. 
      4. Subscription status. 
      5. Payment status. 
      6. Export completion. 
      7. Legal retention requirement. 
      8. Tax/accounting retention requirement. 
      9. Pending disputes. 
      10. Security or abuse investigation. 
      11. Technical feasibility. 

      Galla.app may refuse deletion requests from unauthorised users.

      39. Deletion Confirmation 

      After deletion is completed, Galla.app may provide confirmation where commercially and technically feasible. 

      Deletion confirmation may state: 

      1. Account name. 
      2. Data category deleted. 
      3. Date of deletion. 
      4. Whether deletion applies to production systems. 
      5. Backup deletion timeline. 
      6. Exceptions, if any. 
      7. Legal retention records retained, if any. 

      Deletion confirmation does not mean all backup, legal, accounting, security, or third-party records were immediately deleted. 

      40.  Data Restoration 

      Data restoration may be possible only in limited cases. 

      Restoration depends on: 

      1. Backup availability. 
      2. Retention period. 
      3. Account status. 
      4. Technical feasibility. 
      5. Type of deleted data. 
      6. Customer approval. 
      7. Support plan. 
      8. Payment status. 
      9. Legal restrictions. 

      Galla.app does not guarantee restoration of deleted data. 

      Once production data and backup data are permanently deleted or overwritten, restoration may not be possible. 

      41. Deletion Due to Policy Violation

      Galla.app may delete, restrict, or disable access to data if it violates: 

      1. Terms of Service. 
      2. Acceptable Use Policy. 
      3. WhatsApp Marketing Policy. 
      4. Data Processing Addendum. 
      5. Applicable law. 
      6. Third-party platform rules. 
      7. Security requirements. 
      8. Abuse prevention rules. 
      9. Examples include: 
      10. Unlawful contact lists. 
      11. Spam records. 
      12. Fraudulent campaign data. 
      13. Malware. 
      14. Illegal content. 
      15. Prohibited business data. 
      16. Fake invoices. 
      17. Unauthorised personal data. 
      18. Harmful files. 
      19. Data causing legal or security risk. 

      42. Special Rule for WhatsApp Opt-Out Records

      Opt-out records may be retained even after marketing contact deletion. 

      Purpose of retaining opt-out records: 

      1. To prevent future unwanted messages. 
      2. To prove opt-out handling. 
      3. To defend against complaints. 
      4. To support compliance. 
      5. To avoid re-importing unsubscribed contacts. 

      Recommended retention: 

      Active account period + 3 years, unless a longer period is required due to dispute, legal claim, or regulatory issue. 

      Opt-out records should be used only for suppression and compliance, not for marketing. 

      43. Special Rule for Billing and Invoice Records

      Billing and invoice records cannot normally be deleted on customer request during the statutory retention period. 

      These records may include: 

      1. SaaS invoices. 
      2. Hardware invoices. 
      3. GST invoices. 
      4. Credit notes. 
      5. Debit notes. 
      6. Payment records. 
      7. Refund records. 
      8. Purchase orders. 
      9. Contracts. 
      10. Tax records. 
      11. Recommended retention: 

      8 financial years, or longer where required due to legal, GST, tax, audit, investigation, or dispute requirements. 

      44. Special Rule for Security Incident Records 

      Security incident records may be retained longer than normal operational logs. 

      Security incident records may include: 

      1. Incident timeline. 
      2. Affected systems. 
      3. Logs. 
      4. IP addresses. 
      5. User activity. 
      6. Investigation notes. 
      7. Remediation actions. 
      8. Customer notifications. 
      9. Legal advice. 
      10. Regulatory communication. 

      Recommended retention: 

      Incident Type 

      Retention Period 

      Low-risk security events 

      12 months 

      Confirmed security incidents 

      5 years 

      Major breach or legal matter 

      7 years or longer as advised by legal team 

      45. Retention Review 

      Treewalker Digital Private Limited may review retention practices periodically. 

      Retention review may include: 

      1. Data category review. 
      2. Legal requirement review. 
      3. Product module review. 
      4. Subprocessor review. 
      5. Backup review. 
      6. Security log review. 
      7. Customer request review. 
      8. Deletion process review. 
      9. Audit readiness review. 
      10. Policy update review. 

      Recommended review frequency: 

      At least once every 12 months, or earlier if there is a legal, product, security, or business change. 

      46. Internal Data Disposal 

      When data is deleted or disposed, Galla.app may use reasonable methods such as: 

      1. Database deletion. 
      2. File deletion. 
      3. Record anonymisation. 
      4. Secure overwrite, where feasible. 
      5. Backup expiry. 
      6. Token/key revocation. 
      7. Access restriction. 
      8. Log expiry. 
      9. Vendor deletion request. 
      10. Account deactivation. 

      The method may depend on data type, system design, backup cycle, subprocessor capability, and legal obligations. 

      47. Retention Schedule Summary 

      The following summary can be used as a quick reference. 

      Data Type 

      Retention 

      Active SaaS customer data 

      During subscription 

      Post-closure SaaS data 

      90 days 

      Approved deletion request 

      30 days for production deletion 

      Backup data 

      30 to 90 days 

      Trial/demo data 

      30 days after expiry 

      POS invoices 

      8 financial years 

      GST records 

      72 months from annual return due date 

      Company accounting records 

      8 financial years 

      WMS operational records 

      3 years, or longer if linked to financial records 

      Inventory reports 

      Active account + 90 days 

      WhatsApp campaign logs 

      24 months 

      WhatsApp opt-out records 

      Active account + 3 years 

      API logs 

      90 days to 12 months 

      Security logs 

      12 to 24 months 

      Security incident records 

      5 to 7 years 

      Support tickets 

      3 years 

      Hardware warranty/service records 

      Warranty period + 3 years 

      Marketing leads 

      24 months from last interaction 

      Legal dispute records 

      Dispute closure + 3 years 

      48. Changes to this Policy

      Treewalker Digital Private Limited may update this Policy from time to time to reflect: 

      1. Product changes. 
      2. Legal changes. 
      3. GST/tax/accounting changes. 
      4. Security requirements. 
      5. Backup changes. 
      6. Subprocessor changes. 
      7. Customer requirements. 
      8. Operational improvements. 
      9. New Galla.app modules. 
      10. Changes in deletion processes. 

      When we update this Policy, we will revise the “Last Updated” date. If changes are material, we may notify Customers through email, dashboard notice, website notice, or other reasonable means. 

      Continued use of Galla.app after the updated Policy becomes effective means the Customer accepts the updated Policy. 

      49. Contact Information

      For questions about data retention, deletion, export, or privacy requests, contact:

      Treewalker Digital Private Limited
      Product: Galla.app
      Registered Office: Vikas Plaza.38/ 1A (4), Kanappana Agrahara, Hosur Rd, Phase II, Electronic City, Bengaluru, Karnataka 560100
      Legal Email: legal@treewalkerlabs.com
      Support Email: support@treewalkerlabs.com
      Phone: +91-6366-740-274
      CIN: U72900KA2021PTC153840
      GSTIN: 29AAICT9733E1ZX 

      50. Related Policies

      This Data Retention and Deletion Policy should be read together with: 

      1. Terms of Service. 
      2. Privacy Policy. 
      3. Cookie Policy. 
      4. Data Processing Addendum. 
      5. Subprocessor List. 
      6. Acceptable Use Policy. 
      7. WhatsApp Marketing Policy. 
      8. Security Overview. 
      9. SLA and Support Policy. 
      10. Refund, Billing, Cancellation, and Hardware Replacement Policy. 
      11. Responsible Disclosure Policy. 
      12. Incident Response Policy.