Data Retention

Orum adheres to data retention requirements due to various regulations as well as the agreements that we have with our financial partners. Due to the Bank Secrecy Act (BSA), Orum retains all data from our customers containing Personal Identifiable Information (PII) for a minimum of seven (7) years. Because of this, Orum does not hard delete any customer data during this retention period. Specifically, the data that Orum would retain includes, but is not limited to the following:

  • Transfers (including all parties and identifiable information within the transaction)
  • Accounts *
  • Person PII *
  • Business PII *
  • Onboarding Documentation
  • Ongoing Monitoring Reviews



Should there be any issue with the information uploaded to Orum’s APIs, you must adjust the customer information via the API. Reach out to your Orum representative if you made duplicate resources by mistake. Orum will not in any way adjust, update, modify, or delete any information you uploaded via our APIs on your behalf.