Fitbit
· Fitbit Privacy Policy
Your sensitive health data may remain on Fitbit's servers even after you stop using the service or delete your account, potentially for extended legal or …
Your data may be kept long after you stop using Eventbrite, potentially being used for ongoing analytics, advertising, or compliance purposes without your active awareness.
Klarna
· Klarna Privacy Policy
Long retention periods mean your financial and personal data remains in Klarna's systems long after you have stopped using the service, increasing the risk of …
The absence of specific retention timelines means your data — including viewing history and account information — could be held indefinitely, limiting your ability to …
Noom
· Noom Privacy Policy
Noom may keep your sensitive health data for an extended and somewhat open-ended period, even after you stop actively using the service, unless you request …
Without defined retention periods, users have no clear expectation of when their conversation data, account information, or other personal data will be deleted — potentially …
There is no specific maximum retention period stated, meaning your data could be held indefinitely under broad justifications such as 'legal obligations' or 'enforcing agreements'.
Open-ended retention language means Robinhood has broad discretion over how long your financial and personal data is kept, with no specific timeframes disclosed to users.
OpenAI
· OpenAI Privacy Policy
OpenAI may hold your personal data — including conversations — for extended periods, meaning information shared years ago could still be on file unless you …
How long Xfinity keeps your data determines how long you are potentially exposed to privacy risks from data breaches, legal subpoenas, or unauthorized use of …
Even after you stop using Dropbox, your data may be retained for an extended and potentially indefinite period, which limits your ability to fully remove …
Microsoft
· Microsoft Privacy Statement (Legacy)
Vague retention periods mean your data may be held by Microsoft for years beyond your active use of a product, and without clear timeframes, it …
Waze
· Waze Privacy Policy
Vague retention periods mean your location history and personal data could be stored indefinitely unless you actively request deletion.
Grindr
· Grindr Privacy Policy
Indefinite or lengthy data retention means that sensitive information — including location history and health data — may remain on Grindr's systems and those of …
The open-ended retention standard — 'as long as necessary' — gives Shopify broad discretion to retain data, and the alternative of anonymization rather than deletion …
Open-ended data retention means your personal information could be held indefinitely without clear limits, increasing the risk of exposure in a data breach or misuse …
Vague data retention language means your data could be held indefinitely under broad interpretations of 'legal obligations' or 'business purposes', limiting your ability to have …
Xbox
· Xbox Privacy Statement
The absence of specific retention periods means your Xbox gameplay history, voice data, and account information could be kept indefinitely without a clear timeline for …
Meta
· Meta Privacy Policy
The absence of specific retention periods and the explicit carve-out for data shared about you by others means account deletion does not result in comprehensive …
Chegg
· Chegg Privacy Policy
The absence of defined retention periods means Chegg could retain your academic and behavioral data indefinitely, and 'anonymization' is not always irreversible or complete.
Webull
· Webull Privacy Policy
For a broker-dealer, legal retention requirements under SEC and FINRA rules can require keeping financial records for 3-7 years or more, meaning your personal and …
Closing your Coinbase account does not result in deletion of your data; your personal and financial records remain in Coinbase's systems for years and continue …
Deleting your account does not immediately erase all data WhatsApp holds about you, which may be kept for an unspecified period for compliance or safety …
Indefinite or open-ended data retention means your historical location records, call logs, financial data, and behavioral profiles could be stored for years or decades, increasing …
Visa
· Visa Privacy Notice
Open-ended retention periods tied to broad 'business purposes' and legal obligations can mean your data is held indefinitely, limiting the practical effect of deletion rights.
Even if you close your Coinbase account and request data deletion, your identity and transaction records will be retained for years due to AML and …
Many users assume closing an account means their data is deleted; Coinbase's regulatory obligations under AML/KYC laws mean your most sensitive financial and identity data …
Google
· Google Privacy Policy
Vague retention language means users cannot know how long their sensitive data (search history, location data, email metadata) is stored, making it difficult to exercise …
Netflix
· Netflix Privacy Statement
Vague retention language without specific periods makes it difficult for users to know when their data will be deleted and creates compliance risk under GDPR's …
Chase
· Chase Privacy Notice
Vague retention language means Chase may hold your personal financial data for extended and undefined periods, which increases the risk of exposure in the event …