Compliance, GDPR, and Retention Controls
Control how long data is stored, export audit trails, and honor right-to-be-forgotten requests with tenant-level policies.
Retention defaults
- Chat logs and analytics: 90 days by default
- Audit and configuration history: 365 days by default
- Tenant overrides up to 730 days
- Delete on request with compliance tombstones
Governance controls
- GDPR-aligned deletion workflows
- Field-level encryption for sensitive data
- Audit log exports to GCS or BigQuery
- Configurable retention per tenant
Evidence without sensitive content
Deletion events store a hash, actor, and timestamp without retaining the underlying PII. This maintains auditability while honoring privacy requirements.