Data deletion is handled via our backend providers. When a volume is released back to the provider, the provider performs a wipe on the data in accordance with NIST 800-88. This wipe is done immediately before reuse.
All projects, except those hosted on FR-3, utilize encrypted volumes. The encryption key is destroyed when the volume is released back to the provider, which adds another layer of protection.
Media destruction is handled via our backend providers. When the provider decommissions media it undergoes destruction as outlined in NIST 800-88.
Data subject deletion requests where Platform is the controller are handled via a support ticket. For contracts designating Platform as the processor, deletion requests should be sent to the controller and we will forward any that we receive.
Our product is a Platform as a Service. Platform doesn’t directly edit customer data to ensure data confidentiality, security, and integrity. All data deletion requests for customer data must be handled by the concerned data controller.