Effective Date: 2026.01.01
This Data Retention and Data Lifecycle Policy describes the principles and operational guidelines governing how MaxFusion Group Inc. and its affiliated entities retain, archive, de-identify, and delete information processed in connection with their websites, services, digital platforms, and commercial activities.
This document forms part of the MaxFusion Group privacy and data governance framework and should be read together with the MaxFusion Group Privacy Policy, the MaxFusion Group Sub-Processor Disclosure, and the applicable Terms of Use governing the services operated by the Group Companies.
This policy applies to MaxFusion Group Inc., Hanson Energy Inc., ReFusion Recycling Inc., and Inquill Agency LLC, together with any subsidiaries, affiliates, or operating divisions that may from time to time operate under the MaxFusion Group ecosystem (collectively referred to as the “Group Companies”).
The purpose of this policy is to ensure that information processed by the Group Companies is retained only for as long as reasonably necessary to fulfil legitimate operational, contractual, regulatory, and security purposes, and that information is securely deleted, anonymized, or archived when those purposes have been satisfied.
The Group Companies follow several core principles in determining the retention period for information.
Information is retained only for as long as necessary to fulfil the purpose for which it was collected, including operational service delivery, contractual obligations, legal compliance, financial recordkeeping, dispute resolution, and the protection of the rights and interests of the Group Companies.
Where possible, the Group Companies seek to minimize long-term storage of personal information by applying data minimization practices, including periodic deletion, anonymization, and archival processes designed to reduce the exposure of unnecessary data.
Where information is required to be retained for longer periods due to legal or regulatory requirements, such information will be securely stored with restricted access controls and retained only for the duration required by applicable law.
Certain operational systems used by the Group Companies may also maintain backup copies of information for disaster recovery purposes. Such backups are retained in accordance with infrastructure provider policies and are overwritten according to standard backup rotation cycles.
This retention schedule applies to several broad categories of information processed by the Group Companies, including personal information, operational data, technical system data, financial records, and contractual documentation.
These categories include, but are not limited to, information submitted through website forms, communications with clients and partners, customer relationship management records, project documentation, analytics and system logs, financial transactions, and information stored within digital collaboration platforms.
The specific retention periods associated with these categories are described in the retention schedule below.
The following table provides general guidelines regarding how long different categories of information may be retained by the Group Companies.
Where the Group Companies provide digital infrastructure services, marketing services, or software platforms on behalf of clients, client operational data is generally deleted or de-identified within ninety (90) days after termination of services, unless a longer retention period is required by law, necessary for dispute resolution, fraud prevention, security investigations, or required to complete backup rotation cycles.
Where feasible, clients may request the export of their operational data prior to deletion in accordance with the terms of their service agreements.
The Group Companies may retain anonymized or aggregated data for longer periods where such information no longer identifies any individual and is used solely for internal analytics, operational improvement, statistical reporting, or research purposes.
Once information has been anonymized such that it cannot reasonably be associated with an individual, it is no longer considered personal information under most applicable data protection laws.
Certain categories of information may be retained for longer periods where required to comply with legal, regulatory, financial, or tax obligations applicable to the Group Companies.
Such records may include financial documentation, contractual agreements, corporate governance records, regulatory filings, and other documentation required under applicable business laws.
Where such obligations apply, the Group Companies will retain the relevant information only for the duration required by law.
The Group Companies implement reasonable technical and organizational measures designed to ensure that information is securely deleted or de-identified once the applicable retention period has expired.
Deletion procedures may include secure file deletion, database record removal, anonymization of stored records, and removal from active operational systems. Certain archived information may persist temporarily within backup systems until overwritten as part of standard infrastructure rotation cycles.
Access to archived data is restricted and monitored to reduce the risk of unauthorized access.
The Group Companies may update this Data Retention Policy from time to time to reflect operational changes, evolving legal requirements, or improvements to data lifecycle management processes.
The most current version of this policy will be maintained at:
Questions regarding this Data Retention Policy or requests relating to data deletion may be directed to:
legal@maxfusiongroup.com
.svg)