When the business customer stops using Perplexity AI's services, the DPA typically requires Perplexity AI to delete or return personal data processed under the agreement, at the customer's choice, within a specified timeframe.
This analysis describes what Perplexity AI's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The deletion or return obligation ensures that personal data does not remain with Perplexity AI indefinitely after a contract ends. The scope of what is deleted, the timeline, and whether any exceptions exist (such as legal retention requirements) are material to assessing data governance risk.
Interpretive note: The specific deletion timeline, scope, and certification process defined in the DPA could not be confirmed from the truncated document text.
Individuals whose personal data was processed through a business's Perplexity AI integration should expect that data to be deleted from Perplexity AI's systems when the business terminates its relationship with Perplexity, subject to any legal retention obligations. The DPA governs the timeline and completeness of that deletion.
How other platforms handle this
Medium may terminate or suspend your right to use our Services at any time for any or no reason upon notice to you.
Substack is free to terminate (or suspend access to) your use of Substack, or your account, for any reason at our discretion. We will try to provide advance notice to you prior to our terminating your account so that you are able to retrieve any important Posts you may have uploaded to your account,...
We may terminate or suspend your account and bar access to the Services immediately, without prior notice or liability, under our sole discretion, for any reason whatsoever and without limitation, including but not limited to a breach of the Terms.
Monitoring
Perplexity AI has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
(1) REGULATORY LANDSCAPE: GDPR Article 28(3)(g) requires processor agreements to include deletion or return obligations upon termination. CCPA service provider contracts must similarly address data deletion. Retention exceptions for legal obligations are standard and typically permitted under both frameworks. (2) GOVERNANCE EXPOSURE: Medium. The adequacy of deletion obligations depends on whether the DPA covers all locations where Perplexity AI stores customer data, including backups, logs, and subprocessor systems. Residual data in AI training sets or model weights is a technically complex area where standard deletion commitments may be difficult to operationalize, though the DPA's scope (as a B2B processor agreement) would typically govern customer-provided data rather than training data. (3) JURISDICTION FLAGS: EU/EEA and UK customers have GDPR-based rights to ensure deletion is complete. California customers may rely on CCPA service provider deletion obligations. (4) CONTRACT AND VENDOR IMPLICATIONS: Procurement teams should confirm the deletion timeline (standard is 30-90 days post-termination) and whether a written certification of deletion is provided. Backup retention carve-outs should be noted and their duration assessed. (5) COMPLIANCE CONSIDERATIONS: Legal teams should include the DPA's deletion provision in offboarding checklists and request written confirmation of deletion upon contract termination to satisfy audit and regulatory documentation requirements.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The deletion or return obligation ensures that personal data does not remain with Perplexity AI indefinitely after a contract ends. The scope of what is deleted, the timeline, and whether any exceptions exist (such as legal retention requirements) are material to assessing data governance risk.
Individuals whose personal data was processed through a business's Perplexity AI integration should expect that data to be deleted from Perplexity AI's systems when the business terminates its relationship with Perplexity, subject to any legal retention obligations. The DPA governs the timeline and completeness of that deletion.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Perplexity AI.