Applies To: All Bizoso Consulta employees, systems, and partners handling digital records or client communications.
(Under the Qanun-e-Shahadat Order, 1984 – Pakistan)
Effective Date: May 27, 2025
1. Purpose of the Policy
This policy ensures that Bizoso Consulta complies with the Qanun-e-Shahadat Order (QSO), 1984, specifically regarding the admissibility, integrity, and authenticity of digital evidence in any legal, regulatory, or civil proceeding. Our objective is to establish a recordkeeping framework that ensures any electronic data generated or maintained by our company can be legally recognized and accepted in Pakistani courts.
2. Scope of the Policy
This policy applies to all electronic records created, processed, or stored by Bizoso Consulta, including:
-
Client applications and identity documents
-
Emails, chat transcripts, and mobile app communications
-
Electronic contracts, declarations, and consent forms
-
Financial transactions and payment receipts
-
Internal system logs and data access logs
-
Screenshots, uploads, and scanned documents submitted by users
3. Legal Framework (Under QSO 1984)
Under QSO 1984 (as amended), the following sections are particularly relevant to Bizoso Consulta:
-
Article 46: Recognizes electronic and digital records as admissible forms of evidence.
-
Article 164: Permits modern devices and scientific evidence (including email, cloud logs, and mobile app data) if authenticated properly.
-
Requirements:
-
Records must be generated in the ordinary course of business.
-
Records must be reliably stored and retrievable.
-
The chain of custody and integrity of the data must be preserved from creation to presentation in court.
-
4. Data Integrity & Authenticity Measures
To ensure our digital records can serve as legally valid evidence:
-
Digital Time-Stamping: All application records and communications are automatically time-stamped at the point of creation.
-
Metadata Preservation: Bizoso Consulta stores metadata (such as timestamps, IP addresses, device information) with each client interaction.
-
Audit Trails: Every modification or access to client data is logged with user, timestamp, and action type for complete traceability.
-
Hashing for Verification: Important digital documents may be cryptographically hashed (e.g., SHA-256) to prove they remain unaltered since storage.
-
File Naming & Version Control: All scanned and uploaded documents are stored under uniquely named identifiers, with version control.
5. Chain of Custody & Storage Protocols
Bizoso Consulta maintains strict chain of custody protocols:
-
Original Record Storage: All digital records are stored in secure cloud servers with redundancy.
-
Record Access Log: Access to evidence is strictly logged, and only authorized personnel (designated compliance or legal officers) can retrieve original copies.
-
Tamper Prevention: Security controls (e.g., write-protection, access restrictions) are in place to ensure records are not tampered with once stored.
-
Export Format: Data can be exported in court-accepted formats (PDF/A, XML, TXT) and is backed by certification of system integrity.
6. Retention & Legal Hold Requirements
-
Retention Period: All records relevant to legal obligations or client transactions are retained for at least 7 years from the date of transaction.
-
Legal Hold: If a legal dispute or court matter is anticipated or active, all potentially relevant records are preserved immediately, regardless of normal retention timelines.
-
Certifications: Upon request, Bizoso Consulta can provide certified copies of records along with metadata and affidavits confirming authenticity.
7. Admissibility Support in Court
In the event Bizoso Consulta must produce evidence in court:
-
A sworn affidavit from a responsible officer (usually the Data Compliance Officer or IT Officer) will accompany the digital evidence.
-
The affidavit will confirm:
-
The system used was secure and functioning properly at the time of record creation.
-
The records were generated during normal business operations.
-
The data has not been altered or tampered with post-storage.
-
-
Any request from a court or regulatory body will be responded to with verified, legally formatted evidence.
8. Employee & Vendor Responsibilities
-
Employee Training: All employees are trained on proper data entry, secure storage practices, and handling records that may be used as evidence.
-
Third-Party Systems: All external vendors or systems used for storage or processing must comply with Bizoso Consulta’s documentation and retrieval requirements under QSO.
-
Misconduct Consequences: Any intentional falsification, destruction, or tampering with electronic records may lead to immediate disciplinary action and potential criminal prosecution under QSO and PECA.
9. Policy Review & Amendments
This policy is reviewed annually or in response to changes in the legal framework of Pakistan. Updates will be reflected on our website and all relevant staff will be notified. Any significant change in legal precedent or QSO interpretation will prompt an immediate compliance reassessment.
10. Legal Compliance Statement
Bizoso Consulta certifies that its data and recordkeeping infrastructure is designed to ensure compliance with QSO 1984 and related laws, thereby protecting the company from liability and ensuring legal defensibility in all civil and regulatory matters in Pakistan.
11. Contact for PECA-Related Concerns
Bizoso Consulta
🇨🇦 735d - 2967 Dundas St. W Toronto, Ontario
🇨🇦 735a - 1122 3 St SE, Calgary, Alberta
🇺🇸 211 E 43rd St, 753 - 7th Floor, Newyork
🇵🇰 8th Floor Fakhri Trade Center, New Chali, Karachi
✉ [email protected] | [email protected]
📞+1-(437)-5246-729 | +1-(332)-2445-578