What is your policy on data retention and destruction?

Retention policies are configurable per customer requirement. Typical customer requirements are 30mins for api data exchange and 30days within our customer portal environment. OneID® has no access to personally identifiable information flowing through our api data services.