Data Retention

Pilot data may include workspace settings, vendor records, Smart Validation sessions, uploaded evidence metadata, risk records, audit events, and launch/usage metrics.

Retention controls are surfaced in workspace admin settings where available. Some deletion, export, and evidence cleanup work remains support-assisted during Sprint 1.

Workspace admins can request deletion through privacy@netrisk.io or support@netrisk.io. NetRisk will confirm scope before removing workspace, vendor, evidence, or secure-link records.

Deletion may require manual verification, especially for audit logs, published trust shares, exported reports, and background-job records.

Risk Register reports and selected workspace data exports may be available in-app. Broader pilot exports are support-assisted unless the workspace settings page marks the control as automated.

Export packages should include data scope, requester, timestamp, and any known unavailable tables rather than silently omitting records.