Last updated: May 2025 | Version 1.0
This policy explains how long Attento retains different categories of personal data, in compliance with UK GDPR Article 5(1)(e) (storage limitation principle).
| Data Type | Retention Period | Reason |
|---|---|---|
| Name, email, phone | Duration of account + 30 days | Service provision |
| Password (hashed) | Duration of account | Authentication |
| Profile photo | Duration of account + 30 days | Service provision |
| Home address | Duration of account | Job matching |
| Data Type | Retention Period | Reason |
|---|---|---|
| SIA licence details | Account + 12 months | Compliance |
| Identity documents | Account + 12 months | Legal obligation |
| Earnings records | 7 years from tax year end | HMRC requirement |
| Data Type | Retention Period | Reason |
|---|---|---|
| Job details | 7 years | HMRC / legal disputes |
| OTP codes | Deleted on completion | No ongoing need |
| Payment records | 7 years | HMRC requirement |
| Data Type | Retention Period | Reason |
|---|---|---|
| Real-time guard location | Active job only — deleted immediately on completion | Live tracking only |
| Job destination address | 7 years (stored with job record) | Legal disputes |
| Location history | Not retained | Not collected |
| Data Type | Retention Period | Reason |
|---|---|---|
| Support emails | 3 years | Customer service |
| In-app messages | 90 days after job | Dispute resolution |
| Incident reports | 7 years | Legal obligation |
When an account is deleted, personal data is erased within 30 days. Financial records are anonymised and retained for 7 years to comply with HMRC requirements. Location and OTP data is deleted immediately.
You have the right to request deletion of your data at any time, subject to legal retention obligations. Contact support@attentoservices.com to make a request.
support@attentoservices.com