Privacy Policy
This policy explains how NRSIP Registry processes personal data for account management, billing, audit traceability, and platform security.
Data categories
We process account identity data (name, email), billing metadata, audit event references, and operational telemetry needed to maintain service integrity and regulatory readiness.
Lawful basis and purpose
Processing is performed for contract performance, legitimate interests in security and fraud prevention, and legal obligations including financial record retention and incident response.
Retention
Billing and audit artifacts are retained according to enterprise retention schedules and jurisdictional obligations. Access logs are retained for security monitoring and forensic review.
Data subject rights
Requests for access, correction, deletion, and portability can be submitted to legal@nrsip.org. We verify requestor identity before processing rights requests.