Data Retention & Data Protection Policy
Mokaya Data Retention and Protection Policy · Last Updated: June 2026
Purpose
This policy explains how Mokaya retains, manages, protects, and disposes of customer, business, and operational information.
Data Categories
Customer Data
- Name
- Contact Information
- Addresses
- Order History
Business Data
- Wholesale Requests
- Corporate Orders
- White Label Projects
- Distributor Records
Financial Data
- Invoices
- Tax Records
- Payment References
Operational Data
- Inventory Records
- Shipping Information
- Customer Communications
Retention Periods
Customer AccountsRetained while the account remains active.
Order RecordsRetained for up to 8 years for accounting, taxation, compliance, and customer service purposes.
Corporate and Wholesale RecordsRetained for up to 10 years.
Marketing PreferencesRetained until consent is withdrawn.
Support TicketsRetained for up to 3 years after resolution.
Analytics DataMay be retained in aggregated or anonymized form indefinitely.
Data Protection Measures
Mokaya maintains:
- Role-based access controls
- Password-protected systems
- Encrypted data transmission
- Audit logging
- Backup systems
- Security monitoring
Data Minimization
Only information necessary for business operations will be collected and retained.
Data Disposal
When data is no longer required:
- Records are securely deleted
- Backups are overwritten according to retention schedules
- Access is permanently revoked
© 2026 Mokaya. All rights reserved.