What can I do about this clause?

{'method': 'EMAIL', 'recipient': 'privacy@khanacademy.org', 'difficulty': 'EASY', 'action_type': 'DELETE_DATA', 'instructions': 'Email privacy@khanacademy.org to request deletion of your personal data. State that you want all personal information associated with your account deleted and include your account email address.', 'deadline_days': None, 'deadline_hours': None}

Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'The FTC enforces against unfair data retention practices, particularly for platforms serving minors, under FTC Act Section 5 and COPPA.', 'complaint_url': 'https://reportfraud.ftc.gov/'}

What is the severity of this clause?

ConductAtlas classifies this Data Retention and Deletion clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Do other platforms have similar clauses?

Yes. ConductAtlas has identified similar Data Retention and Deletion clauses across approximately 1 other tracked platforms. You can compare how platforms differ on this clause type in the cross-platform comparison view.

Data Retention and Deletion — Khan Academy

Share 𝕏 Share in Share 🔒 PDF

What it is

Khan Academy keeps your data for as long as needed to run its services, but you can ask them to delete your personal information by emailing privacy@khanacademy.org.

Consumer impact (what this means for users)

Khan Academy does not commit to a specific maximum retention period for personal data, which means your learning history, account data, and AI conversation logs could be retained indefinitely unless you actively request deletion.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Delete Your Data

Email privacy@khanacademy.org to request deletion of your personal data. State that you want all personal information associated with your account deleted and include your account email address.

Cross-platform context

See how other platforms handle Data Retention and Deletion and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

Indefinite or vague data retention periods are a common privacy risk; the lack of a specific maximum retention period means Khan Academy could retain user data, including student data, for an extended time.

View original clause language

We retain personal information for as long as necessary to provide our services and fulfill the purposes described in this policy, or as required by law. You may request deletion of your personal information by contacting us at privacy@khanacademy.org.

Institutional analysis (Compliance & legal intelligence)

(1) REGULATORY FRAMEWORK: GDPR Article 5(1)(e) requires that personal data be kept in a form that permits identification of data subjects for no longer than necessary (storage limitation principle). CCPA/CPRA does not mandate a specific retention period but requires disclosure of retention periods by category. COPPA requires deletion of child data when no longer needed. FERPA does not mandate a retention period but restricts disclosure. (2)

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

The FTC enforces against unfair data retention practices, particularly for platforms serving minors, under FTC Act Section 5 and COPPA.
File a complaint →

Provision details

Document information

Document

Khan Academy Privacy Policy

Entity

Khan Academy

Document last updated

April 29, 2026

Tracking information

First tracked

April 18, 2026

Last verified

April 18, 2026

Record ID

CA-P-002877

Document ID

CA-D-00160

Evidence Provenance

Source URL

https://www.khanacademy.org/about/privacy-policy

Wayback Machine

View archived versions →

SHA-256

67ea8f65d5844645bdb037fbe185b7686e95e08c03fd69c0908a9f7825918090

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Khan Academy | Document: Khan Academy Privacy Policy | Record: CA-P-002877
Captured: 2026-04-18 10:26:27 UTC | SHA-256: 67ea8f65d5844645…
URL: https://conductatlas.com/platform/khan-academy/khan-academy-privacy-policy/data-retention-and-deletion/
Accessed: May 2, 2026

Classification

Severity

Medium

Data Retention and Deletion