Data Retention
Deletion via the API
The Patient resource exposes a delete operation (Delete patient), so removing a specific Patient record is possible through the API rather than only through Zentake support. This is a soft delete: the record is removed from normal views and access but is recoverable, rather than being immediately and irreversibly purged.
Retention periods
- Active accounts. While a team's account is active, Patient, Response, and Message data is retained for as long as the account remains open (no fixed expiry).
- After account termination. Data is retained for 24 months after a team or organization closes its account, after which it is removed.
- Backups. The production database keeps 30 days of automated, encrypted backups; backup copies roll off on that schedule.
Right to deletion
A patient (data subject) can request deletion of their own record outside of the API. Contact Zentake to initiate a patient-initiated deletion request.
Audit log retention
Audit-log entries follow their own retention handling. See Audit Logs.