Medium
· Medium Privacy Policy
This clause defines the operational framework for data retention duration and grounds for post-termination retention. It establishes that retention extends beyond active account status for specified institutional purposes, rather than limiting retention to the active service period alone.
This clause defines the operational scope and duration of Calendly's data stewardship obligations. It establishes that retention decisions are tied to stated business purposes and legal requirements, with a requirement to dispose of or de-identify data once those purposes no longer apply.
Rumble
· Rumble Privacy Policy
The clause creates a standard data retention framework tied to operational necessity while preserving Rumble's ability to maintain data longer when legally required, establishing the institutional basis for how long personal data remains in active use or storage systems.
The clause defines the operational retention timeline for user data and establishes a deletion initiation process rather than immediate deletion upon account termination. The 30-day window creates a defined transition period between account closure and data removal completion.
The retention period is not specified in concrete terms, meaning your data could be kept for an indefinite period under the broadly stated 'legitimate interests' justification, and residual backup copies may persist even after a deletion request.
The clause defines the operational parameters for data lifecycle management by tying retention duration to stated business and legal purposes rather than establishing a fixed time period, which affects the scope and duration of DocuSign's data stewardship obligations.
Udemy
· Udemy Privacy Policy
The provision establishes a flexible retention framework that ties data persistence to operational and legal necessity rather than fixed time periods. This structure authorizes retention decisions based on multiple justifications, each with potentially different duration implications.
Figma
· Figma Privacy Policy
The clause establishes retention criteria based on functional necessity rather than fixed time periods, meaning data persistence is tied to stated operational and legal purposes rather than automatic deletion schedules. This framework allocates responsibility for determining retention duration based on the purposes identified at collection.
The clause creates a need-based retention standard rather than fixed retention periods, authorizing Squarespace to maintain data for operational and compliance purposes while establishing obligations to remove or isolate data when business justification ends. This affects the duration and scope of data processing the company conducts.
This provision establishes the data retention framework governing how long AWS maintains personal information in its systems. The retention period is tied to service delivery necessity, stated purposes, legal mandates, and specific communications to users rather than a fixed timeframe.
The provision operationalizes how long Thomson Reuters maintains personal data across its systems and establishes the criteria governing retention decisions. This framework directly affects data lifecycle management, compliance with regulatory retention mandates, and the timing of data deletion or anonymization processes.
This provision establishes Home Depot's operational framework for data lifecycle management, defining both the retention period (tied to stated purposes and legal obligations) and the company's obligation to dispose of data upon purpose completion. The clause creates a time-limited retention model rather than indefinite data storage.
Glean
· Glean Privacy Policy
The clause establishes the operational framework for data retention periods across different processing contexts. It distinguishes between Glean's independent data controller retention practices and its processor obligations, which are governed by customer instructions rather than unilateral Glean policy.
Kick
· Kick Privacy Policy
The clause defines the retention standard as tied to legitimate business necessity rather than establishing fixed retention periods, which means data retention duration depends on the classified purpose of collection and applicable regulatory obligations.
Waze
· Waze Privacy Policy
The provision defines the operational scope of data retention by linking persistence to service delivery and legal obligations, while separately authorizing prolonged retention of location and usage data as a distinct operational practice for service enhancement.
The retention policy creates a tiered framework that ties data persistence to operational relationship status and legal requirements rather than a fixed retention schedule. This structure permits extended retention periods when legal obligations or litigation risk factors are present, giving the entity discretion in applying retention timeframes within the bounds stated.
Webull
· Webull Privacy Policy
This clause defines the operational boundaries for how long Webull stores user data, establishing that retention periods are governed by necessity of purpose and legal compliance rather than indefinite storage. The provision creates a structured framework requiring ongoing assessment of retention appropriateness based on specified criteria.
This provision establishes the temporal scope and operational basis for data retention. By anchoring retention to legal compliance obligations and dispute resolution, the clause creates an indefinite retention framework where retention duration is determined by regulatory requirements and contractual enforcement needs rather than a fixed time period.
Bumble
· Bumble Privacy Policy
The clause operationalizes data retention constraints by tying data lifecycle management to dual criteria: functional necessity and legal compliance ceilings. This establishes a procedural framework for when Bumble must delete or depersonalize user data rather than maintaining indefinite archives.
The policy does not specify fixed retention periods for most data categories, instead using purpose-based retention language; the carve-out allowing extended retention to improve service functionality could cover a broad range of operational activities.
Eufy
· Eufy Privacy Policy
Without specific retention periods stated for sensitive data categories like video footage and biometric data, users cannot know how long their most sensitive information is kept, and regulators may view this as inconsistent with data minimization principles.
The clause operationalizes data lifecycle management by anchoring retention to multiple justified purposes rather than a fixed timeline. This structure permits extended retention where legal or operational justification exists while establishing that retention is not indefinite.
Ledger
· Ledger Privacy Policy
This provision establishes the operational framework for data retention duration, permitting extended retention periods when justified by legal compliance requirements or contractual enforcement needs, rather than restricting retention to a fixed timeframe.
The provision creates a dual retention framework: a service-necessity standard for ongoing operations, and a broader set of institutional purposes (legal compliance, dispute resolution, fraud prevention, agreement enforcement, legitimate interests) that may extend retention beyond active service provision. This structure allows data retention across multiple operational and legal contexts.
Netflix
· Netflix Privacy Statement
The policy does not state specific retention durations for most data categories, instead reserving discretion to determine retention based on business and legal purposes; this may be relevant to users exercising deletion rights under GDPR, CCPA, or other applicable law.
There is no fixed maximum retention period for most personal data at TransUnion, and anonymized data derived from your information may be kept and used forever, even if you later request deletion of your identifiable data.
The provision creates dual retention standards: a primary baseline tied to operational necessity and legal requirements, and an extended retention authorization upon occurrence of specified conditions. This structure establishes the operational parameters governing data lifecycle management and compliance duration.
BeReal
· BeReal Privacy Policy
The provision creates a defined data lifecycle management framework that complies with regional data protection standards while establishing the temporal boundaries for information storage. This structure governs when user data is subject to deletion or archival under the service's operational requirements.
Suno
· Suno Privacy Policy
Data retention policies establish the operational timeline for when personal information is deleted or anonymized from company systems, which affects the scope and duration of data processing activities.
This clause operationalizes Databricks' retention obligations by establishing the criteria and decision-making framework that governs how long personal data remains in the company's systems. It creates a standard tied to purpose fulfillment and regulatory compliance rather than indefinite retention or user-directed deletion timelines.