Data Retention Policy
Effective Date: April 4, 2026
This policy explains how long AdForge Studios, Inc. ("AdForge") retains your data, the schedules for automatic purging, and how you can request early deletion. This policy supplements our Privacy Policy.
1. Retention Schedule
Different categories of data are kept for different periods based on their purpose:
| Data Category | Retention Period | Purge Method |
|---|---|---|
| Account data Email, auth metadata, profile | Active account + 90 days after closure | Automatic cascade delete |
| Business data Brands, products, personas, audiences | Active account + 90 days after closure | Automatic cascade delete with account |
| Generated content Creatives, ad kits, video jobs, intelligence reports | Active account + 90 days after closure | Automatic cascade delete with account |
| Uploaded media Product images, logos, inspiration images, videos | Active account + 90 days after closure | Storage bucket purge after DB deletion |
| Usage & billing logs API cost records, feature usage counters | 12 months from record creation | Scheduled purge job |
| Payment data Stripe customer & subscription IDs | Managed by Stripe per their retention policy | Stripe handles purging; our references deleted with account |
| Server & error logs Vercel function logs, Sentry error reports | 30 days (Vercel) / 90 days (Sentry) | Automatic by platform provider |
| Intelligence raw data Web-scraped snapshots from BrightData | Not stored — processed in memory, discarded after analysis | N/A — never persisted to disk |
| Privacy & deletion requests CCPA/GDPR request audit trail | 3 years (legal compliance requirement) | Scheduled purge after retention window |
2. What Happens When You Close Your Account
- Immediate: Your account is deactivated and you can no longer sign in. Active subscriptions are cancelled via Stripe. Your data is no longer accessible through the platform.
- 90-day grace period: Your data is retained in a soft-deleted state for 90 days in case you change your mind. During this window you can contact us at privacy@adforgestudios.com to reactivate your account with all data intact.
- After 90 days: All data associated with your account is permanently and irreversibly deleted. This includes brands, products, personas, audiences, creatives, ad kits, video jobs, intelligence reports, uploaded media, and workspace memberships. Database records are cascade-deleted. Files in storage buckets are purged.
3. How Data Purging Works
Database records
All user-owned tables use foreign key relationships with ON DELETE CASCADE. When the root user record is deleted, all dependent data (brands → products → creatives, etc.) is automatically removed by the database engine in a single atomic transaction.
File storage
Uploaded images, generated creatives, and video files stored in Supabase Storage are purged after the database records referencing them are deleted. Storage cleanup runs as a post-deletion job to ensure no orphaned files remain.
Third-party systems
When your account is deleted, we also initiate deletion of your data from third-party sub-processors where applicable:
- Stripe: Customer records are deleted per Stripe's data retention policies
- Sentry: Error reports containing your user ID are automatically purged after 90 days
- Vercel: Function logs are automatically purged after 30 days
- AI providers (OpenRouter, Google): We do not send persistent identifiers to AI providers; prompts and responses are not stored by these providers beyond their processing window
Backups
Database backups are retained for 7 days. Your data may exist in backups for up to 7 days after deletion. Backups are encrypted at rest (AES-256) and are not used for any purpose other than disaster recovery.
4. Your Rights & Self-Service Options
Delete your account
Go to Settings → Delete My Account in the dashboard. This triggers immediate account deactivation and starts the 90-day grace period. All data is permanently removed after 90 days.
Download your data
Go to Settings → Download My Data to export a JSON file containing all data associated with your account — brands, products, personas, creatives, ad kits, intelligence reports, usage records, and billing history.
Request immediate deletion
If you want your data deleted immediately without the 90-day grace period, email privacy@adforgestudios.com with the subject line "Immediate Data Deletion Request." We will process your request within 5 business days and confirm completion by email.
CCPA / GDPR requests
California residents (CCPA) and EU/UK residents (GDPR) may exercise their rights to access, delete, correct, or port their data by emailing privacy@adforgestudios.com. We respond to all verified requests within 45 calendar days. For more details, see our Privacy Policy and Do Not Sell page.
5. Exceptions to Deletion
We may retain limited data beyond the standard retention periods when required by law:
- Tax and financial records: Transaction records may be retained for up to 7 years as required by US tax law.
- Legal disputes: Data relevant to pending or anticipated legal proceedings may be preserved until the matter is resolved.
- Privacy request audit trail: Records of deletion and access requests are retained for 3 years to demonstrate compliance with CCPA/GDPR obligations.
6. Changes to This Policy
We may update this policy from time to time. Material changes will be communicated via email or a prominent notice on the platform at least 30 days before they take effect.
7. Contact
Questions about data retention? Email us at privacy@adforgestudios.com.