Databricks keeps your personal data for as long as they think they need it for their purposes or legal obligations, without specifying exact timeframes for different types of data.
This analysis describes what Databricks's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This clause operationalizes Databricks' retention obligations by establishing the criteria and decision-making framework that governs how long personal data remains in the company's systems. It creates a standard tied to purpose fulfillment and regulatory compliance rather than indefinite retention or user-directed deletion timelines.
Databricks does not commit to specific retention periods for different categories of personal data, meaning your contact details, behavioral data, and other personal information could be held for extended periods; EU/UK residents can submit a deletion request to accelerate data removal by contacting privacy@databricks.com.
How other platforms handle this
We retain personal data for as long as needed to provide our services, comply with our legal obligations, resolve disputes, and enforce our policies. Retention periods will vary depending on the type of data and the purposes for which we use it.
Microsoft retains personal data for as long as necessary to provide the products and fulfill the transactions you have requested, or for other legitimate purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements. Because these needs can vary for differen...
We keep information as long as we need it to provide our products and services and fulfil the purposes described in this policy. This is a case-by-case determination that depends on things like the nature of the information, why it is collected and processed, relevant legal or operational retention ...
Monitoring
Databricks has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We will retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process the personal information and whether we can achieve those purposes through other means, and the applicable legal requirements.— Excerpt from Databricks's Databricks Privacy Notice
REGULATORY FRAMEWORK: Data retention is governed by GDPR Art. 5(1)(e) (storage limitation principle — data must not be kept longer than necessary), Art. 13(2)(a) and Art. 14(2)(a) (requirement to provide retention periods or criteria at collection), CCPA/CPRA §1798.100(a)(3) (right to know retention periods), and UK GDPR equivalent provisions. EDPB Guidelines on data minimisation and storage limitation apply. Enforced by EU DPAs and UK ICO.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This clause operationalizes Databricks' retention obligations by establishing the criteria and decision-making framework that governs how long personal data remains in the company's systems. It creates a standard tied to purpose fulfillment and regulatory compliance rather than indefinite retention or user-directed deletion timelines.
Databricks does not commit to specific retention periods for different categories of personal data, meaning your contact details, behavioral data, and other personal information could be held for extended periods; EU/UK residents can submit a deletion request to accelerate data removal by contacting privacy@databricks.com.
ConductAtlas has identified this type of provision across 66 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Databricks.