This document sets out our policy for responding to requests for deletion of data under the General Data Protection Rule (GDPR). This document explains the data subject’s rights concerning data deletion and the responsibilities of Orokii in responding to such a request.
An individual has the right to erasure, also known as ‘the right to be forgotten.’ The principle underpinning this right enables an individual to request the deletion or removal of personal data where there is no compelling reason for its continued processing.
As stipulated in GDPR, individuals have a right to have personal data erased and to prevent processing in specific circumstances:
Because we are a regulated financial institution, Orokii is obliged to store some of your personal and transactional data. Only a small number of our employees can see that data, and they will look at it if they need to. We permanently delete information that we no longer need. And everything we need to keep is subject to the highest levels of security. This data is used and stored following Orokii’s Privacy Policy, which is available at:
https://orokii.com/privacy-policy
If orokii receives user consent, we may store personal data, including address, telephone number, and email address, to contact you regarding Orokii news, products, and promotions.
If you are a user of our system, Orokii acts as a data controller. Therefore, Orokii will delete data it does not need to hold for regulatory purposes upon request (via email to privacy@orokii.com), upon closure of a user account, or after seven years. Data that has been deleted or otherwise destroyed is no longer available in our system. Data may remain in the system’s back-up files, which will be deleted periodically.
When Orokii receives a request for data deletion, we will fulfill this request within one month (30 calendar days). Once we remove user information, the user will receive a confirmation notice as soon as possible.