This analysis describes what Glean's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The clause establishes the operational framework for data retention periods across different processing contexts. It distinguishes between Glean's independent data controller retention practices and its processor obligations, which are governed by customer instructions rather than unilateral Glean policy.
The provision authorizes Glean to maintain personal data throughout the service relationship and for specified post-termination purposes including legal compliance and dispute resolution. For users whose data is processed under a Data Processing Agreement with a business customer, retention periods are determined by that customer's instructions rather than this policy alone.
How other platforms handle this
We retain personal data for as long as needed to provide our services, comply with our legal obligations, resolve disputes, and enforce our policies. Retention periods will vary depending on the type of data and the purposes for which we use it.
Microsoft retains personal data for as long as necessary to provide the products and fulfill the transactions you have requested, or for other legitimate purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements. Because these needs can vary for differen...
We keep information as long as we need it to provide our products and services and fulfil the purposes described in this policy. This is a case-by-case determination that depends on things like the nature of the information, why it is collected and processed, relevant legal or operational retention ...
Monitoring
Glean has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We retain personal data for as long as necessary to provide our services, comply with our legal obligations, resolve disputes, and enforce our agreements. When we process personal data as a processor on behalf of business customers, we retain personal data in accordance with the customer's instructions and our Data Processing Agreement.— Excerpt from Glean's Glean Privacy Policy
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The clause establishes the operational framework for data retention periods across different processing contexts. It distinguishes between Glean's independent data controller retention practices and its processor obligations, which are governed by customer instructions rather than unilateral Glean policy.
The provision authorizes Glean to maintain personal data throughout the service relationship and for specified post-termination purposes including legal compliance and dispute resolution. For users whose data is processed under a Data Processing Agreement with a business customer, retention periods are determined by that customer's instructions rather than this policy alone.
ConductAtlas has identified this type of provision across 67 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Glean.