If you have opened an account and signed a Client Agreement with Wealthfront, the company states it generally cannot delete your personal information, even if you ask, because financial regulations require them to keep records.
This analysis describes what Wealthfront's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The provision clarifies that Wealthfront's data retention practices are governed by external regulatory requirements, not internal policy. This establishes the legal basis for the company's inability to honor client deletion requests in certain circumstances.
Interpretive note: The breadth of the retention obligation as applied to all Client data categories is not fully specified; some data types may not be subject to mandatory retention under applicable regulations, and GLBA preemption of state deletion rights is a contested legal question.
Clients who request deletion of their personal data, including Social Security numbers, financial account information, and investment records, will generally be told this cannot be accommodated due to regulatory requirements, effectively making data deletion unavailable for active and former Clients.
How other platforms handle this
Customer will not, and will not permit any other person (including any End User) to: ... (c) include any personal information of children under 13 or the applicable age of digital consent as Customer Data or allow minors to use the Mistral AI Products without legally adequate consent from their pare...
To delete your information, you can: Delete your content from specific Google services; Search for and then delete specific items from your account using My Activity; Delete specific Google products, including your information associated with those products; Delete your entire Google Account.
Depending on where you live, you may have certain rights regarding your personal information. For example, you may have the right to: Access your personal information; Correct inaccurate personal information; Request deletion of your personal information; Object to or restrict processing of your per...
Monitoring
Wealthfront has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Client Deletion Requests. In connection with separate regulatory recordkeeping obligations imposed on Wealthfront, we generally must maintain and cannot delete Personal Information associated with our Clients.— Excerpt from Wealthfront's Wealthfront Privacy Policy
(1) REGULATORY LANDSCAPE: This provision directly engages the intersection of CCPA deletion rights and GLBA/Regulation S-P recordkeeping exemptions. CCPA contains a carve-out for data retained to comply with legal obligations, which Wealthfront appears to be invoking here. The SEC and FINRA impose recordkeeping obligations on registered investment advisers and broker-dealers respectively. The California Privacy Protection Agency and California AG are the primary enforcement authorities for any disputed deletion requests. (2) GOVERNANCE EXPOSURE: Medium-High. The blanket assertion that Client data 'generally must be maintained and cannot be deleted' may be overbroad in some instances, as not all Client data categories are necessarily subject to mandatory retention under GLBA or SEC rules. Applying this restriction uniformly without data-category-level mapping could expose Wealthfront to challenge if regulators find that some data was withheld from deletion without a valid legal basis. (3) JURISDICTION FLAGS: California creates heightened exposure given CCPA's explicit deletion rights and enforcement posture. The GLBA preemption of state privacy laws in this context is a legally contested area and should not be assumed to resolve all state-law deletion claims in Wealthfront's favor. Illinois, New York, and other states with financial privacy or consumer protection statutes may also create independent obligations. (4) CONTRACT AND VENDOR IMPLICATIONS: Client agreements should clearly disclose the deletion limitation at onboarding to avoid consumer surprise or dispute. Vendor contracts with data processors should align on retention schedules to ensure that processors are not retaining Client data beyond regulatory minimums on their own infrastructure. (5) COMPLIANCE CONSIDERATIONS: Legal teams should maintain a granular data retention schedule mapped to specific regulatory obligations (e.g., SEC Rule 17a-4, FINRA Rule 4511) to support defensible deletion denials. A process for responding to deletion requests with specific regulatory citations, rather than a general regulatory reference, would reduce enforcement risk.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The provision clarifies that Wealthfront's data retention practices are governed by external regulatory requirements, not internal policy. This establishes the legal basis for the company's inability to honor client deletion requests in certain circumstances.
Clients who request deletion of their personal data, including Social Security numbers, financial account information, and investment records, will generally be told this cannot be accommodated due to regulatory requirements, effectively making data deletion unavailable for active and former Clients.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Wealthfront.