Data Retention
This page describes how long PostMCP retains your data. For data subject requests under GDPR or CCPA, email privacy@postmcp.dev.
Retention Windows
| Data class | Default retention |
|---|---|
| Logs | Application, audit, and debugging logs are retained for 90 days. Security, billing, and incident records may be retained longer when required for investigation, compliance, or fraud prevention. |
| Drafts | Retained while the workspace is active. Removed or anonymized within 30 days after workspace deletion unless a legal, billing, or security hold applies. |
| Scheduled posts | Active scheduled posts are retained until they publish, fail, or are cancelled. Completed or cancelled scheduled-post metadata is retained for 90 days. Content is removed within 30 days after workspace deletion. |
| Media | Retained while attached to active drafts, scheduled posts, or published post records. Deleted media objects are removed within 30 days. Media metadata is retained for 90 days for audit and debugging. |
| Webhooks | Delivery records for webhooks are retained for 90 days. Stored payloads are minimized and exclude bearer tokens. Sandbox webhook records may use shorter cleanup windows. |
| Deleted accounts | User profile identifiers are anonymized immediately and any active workspaces owned by that user are soft-deleted. Remaining application data is hard-deleted or anonymized within 30 days unless a hold applies. |
| Deleted workspaces | Soft-deleted immediately so they no longer appear in owner lists. Application data is hard-deleted or anonymized within 30 days unless a legal, billing, or security hold applies. |
Exports And Deletions
You can export and delete your data through the API:
GET /workspaces/{workspace_id}/export— workspace metadata export.DELETE /workspaces/{workspace_id}— soft-delete a workspace and record an audit event.GET /users/{user_id}/export— user account metadata and owned workspaces.DELETE /users/{user_id}— anonymize the user record and soft-delete any active owned workspaces.
OAuth tokens for connected accounts are deleted when you disconnect or revoke the connection. Webhooks and deleted workspaces follow the windows above: delivery records are retained for 90 days, and deleted workspaces are hard-deleted or anonymized within 30 days unless a legal, billing, or security hold applies.