TABLE OF CONTENTS

• Data Categories Eligible for Deletion
  • What is excluded?
  • How the Deletion Timeline Works
  • Triggers
• Ongoing Business Relationships
  • Default retention periods
• Legislation and jurisdiction-specific behaviour
  • Australian organisations
  • New Zealand organisations
  • United Kingdom organisations
  • How to Configure Data Deletion
  • Office-Level Overrides
• In-Platform and Audit Trails
  • Visual Placeholders
  • Audit Trail
• ID Documents & Biometrics: Whenever a ID Document or Biometric video is deleted, the case Activity Log will record what was removed and when, due to data deletion policy.
  • Pausing deletion
  • Frequently Asked Questions
    • What happens when an individual's document is retrieved into a new case?
    • What happens if our compliance administrator changes the AML record retention period in our settings?
    • How does the system behave if an individual is shared across multiple office profiles with different deletion rules?

The Data Deletion feature allows your organization to automatically purge sensitive client information once it is no longer required for compliance purposes. By configuring customized timelines for identity documents, biometric videos, and full AML records, the platform seamlessly tracks and destroys data at specified intervals after a case is finalized or a document is collected.

This feature gives you the tools to ensure you are meeting your responsibilities and legal obligations under applicable AML/CFT legislation and privacy law.

Data Categories Eligible for Deletion

First AML categorizes data into three distinct buckets for automated deletion. Each category can be configured independently by your compliance administrator.

• Identity Document Images: This includes original images and files of identity documents where metadata is extracted, such as Passports, Driver Licences, National ID cards, and accompanying anti-tampering reference images.
• Biometric Video Recordings: This encompasses the video recordings captured during electronic identity verification checks.
• AML Records: This represents the core compliance history, including the entire case file, profile records, verification outcomes, case histories, and risk assessments.

What is excluded?

• Documents collected without extracted metadata—such as Birth Certificates or generic Certified ID documents—are excluded from automatic file deletion. These documents are permanently retained alongside the core AML record to ensure you maintain the mandatory evidence of how an identity was verified.

How the Deletion Timeline Works

The automated deletion cycle is governed by the retention periods you configure in your platform settings. Data will be deleted at the end of the retention period.

Triggers

For ID Documents and Biometrics, the platform supports the option of two distinct triggers to start the retention period:

• Case Completion: The retention period begins counting as soon as a case reaches a terminal status. The specific statuses that trigger the retention period are Completed, Abandoned, Deleted, and Rejected. Active case statuses—such as Draft, In Progress, or Ready For Review—will not trigger the retention period countdown.

• Document Collection: Alternatively, you can start the retention period from the date each ID Document or Biometric was collected, independent of the case status. This can result in a document being deleted while the case is still being worked on.

For AML Records, the retention period begins counting down once a case reaches a terminal status, such as Completed, Abandoned, Deleted, or Rejected.

Once the specified deletion period is reached, the data is permanently and irrecoverably deleted from the platform.

Ongoing Business Relationships

To ensure AML Records are retained for ongoing business relationships, AML Records are only deleted once all records for all individuals/entities associated with a case have reached the end of the AML Records retention period. For example, if an individual is retrieved into a newer case, the system automatically extends the retention period for their older case to align with the newer case. This prevents the accidental removal of an active customer's historical profile and ensures entire cases are preserved as long as the business relationship remains active.

Default retention periods

Depending on your organisation’s country, the platform applies pre-configured jurisdiction defaults:

Legislation and jurisdiction-specific behaviour

Australian organisations

Identity document image deletion is enabled by default, consistent with OAIC guidance under APP 11.2 and the AML/CTF Act. ID Document images collected before 31 March 2026 are excluded from automatic deletion; these records are authorised for retention for 7 years from the end of the business relationship or from the date of the last occasional transaction, as permitted under the AML/CTF Act. ID document images collected on or after 31 March 2026 are deleted once the configured retention period expires.

New Zealand organisations

Biometric video deletion is enabled by default, consistent with Rule 9 of the Biometric Processing Privacy Code 2025. Image deletion of identity documents is available as an opt-in feature.

United Kingdom organisations

Image and biometric video deletion for identity documents is available as an opt-in feature. The Money Laundering Regulations 2017 require copies of identity documents and supporting records to be retained for a minimum of five years following the end of a business relationship or the completion of an occasional transaction.

How to Configure Data Deletion

1. As a Compliance Admin, navigate to Admin > Settings in the left-hand menu.
2. Click on the Data Deletion page.
3. Toggle the status to enable or disable automatic deletion for each individual category: Identity Documents, Biometric Videos, or AML Records.
4. Set your desired retention duration if different to default. Document and biometric thresholds are defined in days, while core AML records are defined in years.
5. Save your changes.
6. You will be prompted for confirmation. Please be aware that enabling this feature will automatically apply your data deletion settings, and any data that meets deletion criteria will be immediately deleted.

Office-Level Overrides

If your organization operates multiple offices with distinct regional compliance mandates, administrators can set organization-level defaults and explicitly override those retention rules on a per-office basis.

In-Platform and Audit Trails

Visual Placeholders

Anywhere a deleted document image, anti-tampering file, or biometric video was previously displayed, the platform renders a “Document deleted” placeholder. These placeholders appear consistently across the Case Requirements screen, Verification Reports, Profile Verification tabs, and printed or downloaded PDF reports.

Audit Trail

• ID Documents & Biometrics: Whenever a ID Document or Biometric video is deleted, the case Activity Log will record what was removed and when, due to data deletion policy.

• AML Records: When an AML record is deleted, it is completely removed, and no evidence of these records will be presented.

Pausing deletion

In some situations, such as investigations or disputes, you may need to retain information longer than your configured retention period. Deletion can be paused for a case, which will retain all ID Documents, Biometrics and AML Records associated with that case until deletion is again resumed. To do this:

• When viewing a case, select the hamburger menu, and select “Pause data deletion”.
• Applicable document images and biometrics within this case will now indicate that deletion is paused. You can also find cases that are paused for deletion by filtering for this within the Cases table.
• To unpause and resume deletion, select the hamburger menu again and select “Resume data deletion”.

Frequently Asked Questions

What happens when an individual's document is retrieved into a new case?

• When an individual is retrieved, their documents are linked between cases, rather than copied into the new case. So:
  • If the individual is added to the second case before their document has been deleted: When the retention period is reached for Case A, the document will also be deleted from Case B.
  • If the individual is added after their document has been deleted: The individual will be retrieved into the new case without their ID Document images / Biometric videos. Their document metadata will still be available.

What happens if our compliance administrator changes the AML record retention period in our settings?

• Configuration changes take effect on the very next scheduled run of the automated background job. The platform applies the updated duration live at run time, meaning there is no backend data recomputation step required for your historical backlog.

How does the system behave if an individual is shared across multiple office profiles with different deletion rules?

• Deletion remains strictly constrained to the client and office scope of the case. Storing the retention parameters at the localized case level allows the platform to safely clear data for one office that has reached its deletion criteria, while leaving the records completely intact for another office that is required to maintain them.