Data Deletion Policy

1. Customer Data Deletion Process

When we receive a data deletion request, we take the following steps:

• Delete your personal data from our active databases and systems.
• Anonymize data where deletion is not feasible.
• Retain historical records for legal and regulatory compliance.

2. Handling Past Transactions (Invoices and Tickets)

Invoices and tickets generated for past transactions are considered legal and financial records and cannot be deleted due to compliance requirements.

These records are securely stored, and access is strictly controlled to protect your privacy.

3. Data Deletion Request Acknowledgment

Upon submitting a data deletion request, we will confirm the deletion of personal data from our active systems and provide an explanation regarding the retention of historical records.

4. Compliance with Third-Party Platforms (e.g., Facebook)

If your data deletion request originates from a third-party platform, such as Facebook, we use a Data Deletion Callback URL to facilitate compliance. This ensures your data is deleted or anonymized in our systems.

The data deletion request is processed and sent back to Facebook using the following callback structure:

app.post('/facebook-data-deletion-callback', (req, res) => {
  const userId = req.body.user_id;

  // Process data deletion for the user
  deleteUserFromDatabase(userId);

  // Log historical records as retained for compliance
  logComplianceRecord(userId);

  // Send response back to Facebook
  res.json({
    status: "success",
    message: "User data deleted. Historical records retained for compliance."
  });
});

5. Your Rights and Transparency

We understand the importance of transparency and control over your data. If you have any questions about this policy, contact us at [email protected].

6. Legal and Regulatory Compliance

This policy is designed to align with applicable data protection regulations, such as GDPR, CCPA, and other relevant laws.