Response SLA

Leadership reply within 24 hours

Delivery Regions

USA, Spain, India, Ecuador, and global remote

Engagement Control

NDA-first, written authorization required

Control Alignment

Mapped to SOC 2, ISO 27001, PCI DSS, HIPAA

Data Governance

Data retention and deletion schedule.

Updated: February 19, 2026. Contract-specific overrides apply where required by law or customer agreement.

Retained for up to 24 months after last engagement communication.

Retained for up to 12 months unless shorter period is agreed in SOW/DPA.

Retained for up to 24 months for audit and assurance traceability.

Processed within 30 days, except where legal obligations require retention.