Data Retention Policy

Email, username, avatar URL, bio, tags, and recommendations are retained while the account is active and deleted when the user deletes the account, subject to limited legal and security exceptions.

Terms, Privacy, and age-confirmation records are retained for the life of the account and up to six years afterward when needed to prove compliance.

Abuse, copyright, privacy, and security reports may be retained for up to three years after closure, or longer if needed for legal claims, repeat-abuse analysis, or law enforcement.

Donation records are retained for tax, accounting, fraud prevention, and dispute purposes for the legally required period, generally up to seven years depending on jurisdiction.

Media-search cache should be refreshed or removed after approximately seven days. Hosting, security, and application logs should be minimized and generally retained for 30 to 180 days unless needed for investigation.

Deleted data may persist briefly in encrypted provider backups until those backups expire through normal rotation.