Data Policy

Introduction

This Data Policy explains how Node Enterprise handles, processes, and retains data. It complements our Privacy Policy by providing more detailed information about our data practices.

Last updated: June 1, 2024

Data Classification

We classify data into the following categories:

  • Customer Content: Data that you upload, create, or modify using our services
  • Account Data: Information about your account, such as name, email, and billing information
  • Service Data: Data generated through your use of our services, such as logs and analytics
  • Derived Data: Insights and analytics derived from aggregated data

Data Storage and Processing

We store and process data in accordance with the following principles:

  • Customer Content is stored in secure, encrypted databases and file systems
  • Data is processed in compliance with applicable laws and regulations
  • We use industry-standard security measures to protect data from unauthorized access
  • Data is stored in geographically distributed data centers for redundancy and availability
  • Enterprise customers may specify geographic regions for data storage to comply with data residency requirements

Data Retention

Our data retention policies are designed to retain data only as long as necessary:

  • Customer Content: Retained for the duration of your subscription and for 30 days after termination
  • Account Data: Retained for the duration of your account and for 7 years after account closure for legal and tax purposes
  • Service Data: Retained for up to 2 years for service improvement and troubleshooting
  • Derived Data: May be retained indefinitely in anonymized form

Enterprise customers may negotiate custom retention periods as part of their service agreement.

Data Backup and Recovery

We implement comprehensive backup and recovery procedures:

  • Automated backups are performed daily
  • Backups are encrypted and stored in geographically separate locations
  • We test our recovery procedures regularly to ensure data can be restored if needed
  • Backup retention follows our data retention policies

Data Portability and Export

We provide mechanisms for you to export your data:

  • You can export your Customer Content at any time through our user interface
  • Data is exported in standard, machine-readable formats
  • Enterprise customers can request additional export options

Data Deletion

When data is deleted:

  • Data is marked for deletion and removed from active systems within 30 days
  • Deleted data is removed from backups according to our backup rotation schedule (typically within 90 days)
  • We use secure deletion methods to ensure data cannot be recovered
  • Upon request, we can provide a certificate of deletion for enterprise customers

Data Processing Agreements

For customers subject to GDPR, CCPA, or similar regulations:

  • We offer Data Processing Agreements (DPAs) that comply with applicable regulations
  • Our DPAs clearly define roles and responsibilities for data processing
  • We maintain a list of sub-processors and notify customers of changes
  • We support international data transfers with appropriate safeguards

Related Policies

Please also review our other policies:

Contact Us

If you have any questions about our data practices, please contact us at:

Email: data@nodeenterprise.com
Address: 123 Tech Plaza, San Francisco, CA 94105