Data Retention Policy
Last updated: May 17, 2026
This policy explains how long Ad Forge Studios, LLC ("AdForge") retains data, what is preserved in backups, and how to request earlier deletion. It supplements our Privacy Policy.
1. Retention Schedule
| Data Category | Retention | Notes |
|---|---|---|
| Account Email, auth metadata | Until you delete your account | Auth managed in Supabase Auth. |
| Workspace data Brands, products, personas, audiences, Ad Kits | Until you delete each record or your account | No auto-purge today. |
| Generated content AI creatives, intelligence reports, Design Reviews | Until you delete each record or your account | No auto-purge today. |
| Uploaded media Logos, product photos, inspiration images | Until you delete each record or your account | Stored in Supabase Storage. Not currently replicated cross-region. |
| Cost & usage telemetry api_costs rows — per AI / scraper call | Retained indefinitely for billing-audit and dispute-handling | We may move to a 24-month rolling policy in the future. |
| Intelligence task records collection_tasks — scraper snapshot IDs, status, cost | Retained alongside the parent intelligence report | Raw scraped payloads are not stored long-term. |
| Payment data Stripe customer & subscription IDs | Per Stripe's retention policy | Card numbers are never stored by AdForge. Our references are deleted with your account. |
| Diagnostic / error logs Sentry events, Vercel function logs | ~90 days (Sentry); ~30 days (Vercel) | Per the provider's default retention. |
| Database backups Managed daily backups | 7 days, rolling | Encrypted at rest. Used only for disaster recovery. |
| Privacy-request audit trail | Up to 3 years | Retained to demonstrate compliance with CCPA / similar laws. |
2. Backups & Recovery — Honest Disclosures
- Daily database backups, 7-day retention. We do not currently use point-in-time recovery. In a worst-case disaster scenario, up to 24 hours of data could be lost (Recovery Point Objective ≤ 24h).
- Object storage is not currently backed up cross-region. Uploaded files (logos, product photos, inspiration images) and AI-generated image files live in our primary storage bucket. If that primary bucket is lost, those files are not recoverable from a backup. For AI-generated images, we retain the prompt + parameters + model and can regenerate in many cases; user-uploaded files cannot be regenerated.
- After deletion, your data may persist in backups for up to 7 days before rolling off. Backups are never used for any purpose other than disaster recovery and are not accessible to operators for normal use.
- We re-evaluate point-in-time recovery and cross-region storage replication on an ongoing basis. We will update this section when our posture changes.
3. What Happens When You Close Your Account
- Immediately: your subscription is set to cancel at the end of the current billing period via Stripe; you can no longer sign in.
- Within 30 days: account, brand, product, persona, audience, creative, intelligence report, Design Review, and uploaded-media records are deleted from the live database. Files in object storage are purged.
- Within 37 days (30 + 7): data rolls off the backup window.
- We retain limited records required for legal, tax, or accounting purposes (e.g. invoice records) and the privacy-request audit trail described in the table above.
4. How Deletion Works
Database
User-owned tables use foreign-key relationships with ON DELETE CASCADE. Deleting the parent user record cascades to all dependent rows (brands → products → creatives → intelligence_reports, workspace memberships, audiences, ad_kits, etc.) inside a single atomic transaction.
Object storage
Files in Supabase Storage are deleted after the database rows referencing them are removed. Cleanup is run as a post-deletion job to avoid orphan files.
Third-party systems
- Stripe:the customer / subscription record persists per Stripe's policy; our local references are deleted with your account.
- Sentry:error events containing your user ID roll off per Sentry's ~90-day retention.
- Vercel:function logs roll off per Vercel's ~30-day retention.
- AI providers (OpenRouter, Google Gemini):we do not send long-lived account identifiers with prompts. Each provider's retention is governed by its own policy — see the Subprocessors page.
- BrightData: intelligence-scrape snapshots live in BrightData briefly before our worker fetches them and discards raw payloads. We retain the snapshot ID + status + cost for billing audit, not the underlying scraped content.
5. Self-Service Options
Delete your account
Go to Settings → Delete Account in the dashboard.
Export intelligence reports
Open any intelligence report in the dashboard and use the Download DOCX or Download PDF button.
Request a copy of your data
Email privacy@adforgestudios.comwith subject "Data Export Request." We respond within 45 days.
Privacy-rights requests
See the Privacy Policy for the full process for access, correction, and deletion requests under CCPA and similar state laws.
6. Exceptions to Deletion
We may retain limited data beyond the standard retention periods when required by law:
- Tax & financial records: transaction records may be retained up to 7 years to comply with US tax law.
- Legal disputes: data relevant to pending or anticipated legal proceedings will be preserved until the matter is resolved.
- Privacy-request audit trail: records of deletion and access requests are kept up to 3 years.
7. Changes
We may update this policy. Material changes will be communicated by email or in-app notice at least 14 days before they take effect.
8. Contact
Data-retention questions? Email privacy@adforgestudios.com.