# Data Deletion Policy – Visitorwon.com
### 1. Purpose
This Data Deletion Policy explains how user data and related records are deleted upon request, subscription cancellation, or account termination on **Visitorwon.com**. It ensures that all personal and business data is removed securely, consistently, and transparently while meeting operational and legal requirements.
### 2. Scope
This policy applies to all personal data, campaign data, logs, analytics, and any other information attributable to a user or customer account in the **Visitorwon.com** platform.
### 3. Types of Data Covered
Data subject to deletion includes:
* **Account & Profile Data** – name, email, login credentials, settings
* **Billing & Subscription Records** – invoices, payment history, subscription status
* **Campaigns & Popups Data** – configuration of social proof popups, campaigns, targeting rules
* **Usage, Analytics & Logs** – impressions, clicks, event logs, performance metrics
* **Notifications & Widgets** – active and past notifications, stored campaigns
* **Integrations & API Settings** – API keys, third-party integrations, webhooks
### 4. When Deletion Occurs
| Trigger | What Happens | Timeframe |
| ---------------------------------------------- | --------------------------------------------------------------- | ------------------------- |
| **User requests deletion** | User requests account or data deletion via dashboard or support | Within 30 days |
| **Subscription cancellation / account expiry** | Account flagged for deletion after grace period | e.g. 60 days after expiry |
| **Inactivity** | Long-term inactive accounts flagged for deletion | e.g. 12 months |
| **Legal compliance** | When required by laws like GDPR/CCPA | As mandated |
### 5. Deletion Process
1. **Soft Deletion**
* Account is flagged as deleted (e.g., `deleted_at` field).
* User cannot access account; notifications and campaigns stop.
* Short recovery period allowed (e.g., 7 days).
2. **Permanent Deletion**
* After recovery window, all user data (campaigns, analytics, logs, notifications) is permanently deleted.
* Associated records in relational tables are removed via cascading deletes.
3. **Backup & Log Retention**
* Backups are retained only as per backup policy (e.g., 90 days).
* Deleted accounts are not restorable from backups after this period.
* System logs may be anonymized instead of fully deleted if legally required.
4. **Third-Party Integrations**
* If user data is shared with connected third-party services (e.g., analytics or CRMs), deletion requests will also be forwarded where possible.
### 6. User Communication
* Users receive confirmation when a deletion request is received.
* Final confirmation sent once deletion is completed.
* Once data is deleted permanently, it cannot be recovered.
### 7. Exceptions
Minimal data may be retained when required by law (e.g., financial transactions for tax purposes). Any retained data is anonymized or limited strictly to legal obligations.
### 8. Security & Verification
* User identity is verified before deletion.
* Data is deleted using secure methods.
* Internal deletion logs are kept (without storing sensitive user details).
### 9. Policy Updates
This policy may be updated from time to time. Users will be notified of material changes.
### 10. Compliance
Visitorwon.com follows international data protection standards, including **GDPR Article 17 (Right to Erasure)** and **CCPA deletion rights**, ensuring compliance with user data rights.
---