1. Overview
This policy describes how CreatorSense AI retains, manages, and deletes user data and Platform Data from connected social media accounts.
2. Retention Periods by Data Type
Account Data
| Data Type | Retention | Deletion Trigger |
|---|---|---|
| Email, password, profile | Duration of account | Account deletion |
| Preferences/settings | Duration of account | Account deletion |
Platform Data (Analytics)
| Data Type | Retention | Deletion Trigger |
|---|---|---|
| Profile, metrics, performance | While connected | Platform disconnection |
| Audience demographics | While connected | Platform disconnection |
| Revenue data | While connected | Platform disconnection |
Logs, Billing & Compliance
| Data Type | Retention | Purpose |
|---|---|---|
| Application logs | 90 days | Debugging and monitoring |
| Access logs | 2 years | Security monitoring |
| Security/Audit logs | 7 years | Compliance and investigation |
| Billing records | 7 years | Tax compliance (legal requirement) |
| Consent records | 3 years after withdrawal | GDPR compliance proof |
| Support tickets | 3 years after resolution | Customer service history |
Inactive Accounts
| Status | Timeline | Action |
|---|---|---|
| No login for 18 months | Warning email sent | Account flagged for review |
| No login for 24 months | Final notice sent | 30-day countdown to deletion |
| No response after notice | Account deleted | Data anonymized or removed |
3. Automatic Deletion Triggers
- Platform Disconnection: Data deleted within 30 days
- Account Deletion: All data deleted within 30 days (billing records retained per law)
- User Request: Processed within 30 days
- Platform Provider Request: Within 48 hours
- Account Inactivity (24 months): Warning sent, then data deleted
4. How to Request Deletion
Self-Service
- Disconnect Platform: Settings → Connected Platforms → Disconnect
- Delete All Data: Settings → Privacy & Data → Delete All My Data
- Delete Account: Settings → Account → Delete Account
Manual Request
Email support@creatorsenseai.com with your account email and what to delete.
5. Data We Cannot Delete
- Transaction records for tax compliance (7 years)
- Fraud prevention records
- Anonymized aggregate statistics
- Security logs (limited retention)
6. Deletion Process
- Soft Delete: Data marked deleted, no longer accessible (7-day recovery window)
- Hard Delete: Permanently removed from databases within 30 days
- Backup Removal: Removed from backups within 90 days
7. Platform Compliance
We comply with deletion requirements from Meta, Google, TikTok, Twitter/X, and Twitch including:
- Delete on user request
- Delete when platform disconnected
- Delete when platform provider requests
- Provide easy self-service deletion
8. Data Classification
We classify data into categories to apply appropriate retention and protection:
| Classification | Examples | Handling |
|---|---|---|
| Restricted | Platform passwords, connection tokens, payment info | Encrypted, strict access, audit trails |
| Confidential | User profiles, revenue data, platform metrics | Encrypted at rest, role-based access |
| Internal | Aggregated analytics, feature flags | Access controls, no external sharing |
| Public | Marketing content, blog posts | No restrictions |
10. Contact
Deletion requests, retention questions, and general support: support@creatorsenseai.com