Target · Target Privacy Policy · View original document ↗

Data Retention and Deletion Rights

Medium severity Rare · 8 of 343 platforms
Share 𝕏 Share in Share 🔒 PDF
Recent governance activity Target recorded 66 documented changes in the last 30 days.
Start monitoring updates
Monitor governance changes for Target Create a free account to receive the weekly governance digest and monitor one platform for governance changes.
Create free account No credit card required.

This analysis describes what Target's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

This provision establishes Target's data retention framework by anchoring retention periods to multiple operational and legal criteria rather than fixed timeframes. The clause authorizes extended retention when justified by business purposes (personalization, fraud prevention, guest insights) or legal requirements, which determines the duration users' personal information remains within Target's systems.

Clause Stability Stable

0
Changes
3
Months Monitored
Apr 3, 2026
First Seen
Apr 17, 2026
Last Seen
This clause type exists across 343 other provisions on other platforms.

Consumer impact (what this means for users)

Users' personal information will be retained according to Target's assessment of necessity across four stated categories: guest-related needs, business operations, legal compliance, and risk mitigation. The provision specifies that data will be removed through deletion, destruction, or deidentification once Target determines retention is no longer necessary under these criteria.

How other platforms handle this

Public.com Medium

We retain personal information for as long as necessary to provide our Services and fulfill the transactions you have requested, comply with our legal obligations, resolve disputes, enforce our agreements, and for other legitimate and lawful business purposes.

Spotify Medium

Please note there are situations where Spotify is unable to delete your data, for example when: it's still necessary to process the data for the purpose we collected it for; we have an overriding interest in continuing to process the data, for example where we need the data to protect our services f...

X Medium

If you follow the instructions here, your account will be deactivated and your data will be queued for deletion. When deactivated, your X account, including your display name, username, and public profile, will no longer be viewable on X.com, X for iOS, and X for Android. For up to 30 days after dea...

See all platforms with this clause type →

Monitoring

Target has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →
▸ View Original Clause Language DOCUMENT RECORD
"
We retain your personal information for as long as reasonably necessary to fulfill the purposes described in this Privacy Policy or for the period legally permitted or required. The retention period varies based on a number of factors, including: Guest needs (e.g., returns, guest service, purchase history, account information, opt choices), Business needs (e.g., order fulfillment, personalization, marketing, guest insights, fraud prevention), Legal obligations (e.g., statutory requirements, tax audit, contractual requirements, legal hold, regulatory inquiry), Potential risks of harm. At the end of the retention period, personal information will be deleted, destroyed, or deidentified.

— Excerpt from Target's Target Privacy Policy

Applicable regulations

CCPA/CPRA
California, USA
Indiana Consumer Data Protection Act
US-IN

Provision details

Document information
Document
Target Privacy Policy
Entity
Target
Document last updated
May 5, 2026
Tracking information
First tracked
May 21, 2026
Last verified
May 21, 2026
Record ID
CA-P-001377
Document ID
CA-D-00260
Evidence Provenance
Source URL
Wayback Machine
Content hash (SHA-256)
d7515e630a65aad58c9148a9c23310bdb5ac55c05508e24d7e9bb18074d57946
Analysis generated
May 21, 2026 02:11 UTC
Methodology
Evidence
✓ Snapshot stored   ✓ Hash verified
Citation Record
Entity: Target
Document: Target Privacy Policy
Record ID: CA-P-001377
Captured: 2026-05-21 02:11:48 UTC
SHA-256: d7515e630a65aad5…
URL: https://conductatlas.com/platform/target/target-privacy-policy/data-retention-and-deletion-rights/
Accessed: July 4, 2026
Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.
Classification
Severity
Medium
Categories

Other risks in this policy

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies
Start Compliance free trial

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Target's Data Retention and Deletion Rights clause do?

This provision establishes Target's data retention framework by anchoring retention periods to multiple operational and legal criteria rather than fixed timeframes. The clause authorizes extended retention when justified by business purposes (personalization, fraud prevention, guest insights) or legal requirements, which determines the duration users' personal information remains within Target's systems.

How does this clause affect you?

Users' personal information will be retained according to Target's assessment of necessity across four stated categories: guest-related needs, business operations, legal compliance, and risk mitigation. The provision specifies that data will be removed through deletion, destruction, or deidentification once Target determines retention is no longer necessary under these criteria.

How many platforms have this type of clause?

ConductAtlas has identified this type of provision across 8 platforms. See the full comparison.

Is ConductAtlas affiliated with Target?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Target.