As part of its everyday business operations, Gong collects and stores records of many types in a variety of different formats. The relative importance and sensitivity of these records also varies and is subject to Gong’s security classification scheme.
Gong has implemented systems, applications and procedures to minimize the risks of loss, destruction, falsification, unauthorized access and unauthorized release, and a range of controls are used to ensure this, including backups, access control and encryption.
Gong must comply with all the legal, regulatory, and contractual requirements which apply to its collection, storage, retrieval and destruction of records, in particular such records which contain personal data.
This policy applies to cases where a customer has decided to stop using the Gong application, and the various types of data that have been accumulated in the Gong app and platform and processed by Gong on such customer’s behalf should be deleted as requested by such customer.
This policy defines how this data would be deleted, and what the customer can do to retrieve the data before its deletion.
If you are an individual with an account in Gong, your relationship with Gong is governed by your employer. Contact your employer’s Gong administrator to administer management of your account within Gong.
Unless otherwise noted in any such governing agreements, 30 days after your subscription has terminated, Gong will delete all customer data as described in Section 10 of our Data Processing Addendum.
The customer can choose to retrieve the data generated in the Gong application through the Gong API. This will be available prior to setting the account as “inactive” or through a support ticket request after the account has been deactivated.
Destruction is defined as physical or technical destruction, sufficient to render the information contained in the records irretrievable by ordinary commercially available means.
The Gong Security team shall maintain and enforce a detailed list of approved destruction methods appropriate for each type of archived information, whether on physical storage or in database records or backup files.
Paper records shall be shredded using secure, locked consoles designated in each office, from which waste shall be periodically collected by security-screened personnel for disposal.