Data Deletion Request
Last updated: May 2026
Your right to delete
You can request full deletion of your Loocero account and the data we hold for you at any time. There is no charge and no penalty.
How to request deletion
Email us with the following:
- To: [email protected]
- Subject: Data Deletion Request
- Body: the email address associated with your Loocero account, and a short confirmation that you want the account and its data deleted.
We will reply from [email protected] to confirm we received the request and to verify the request came from the account holder. We may ask for an additional verification step (such as confirming a recent login or a recent transaction count) before executing the deletion. For non-CCPA requests we target completion within 30 days of verified confirmation. California residents are subject to the statutory 45-day response window described in the CCPA section below.
What gets deleted
On confirmation we hard-delete your authentication record. The Postgres foreign-key cascade then removes every record tied to your user across the tenant tables, including:
- Connected institutions and accounts (manual and Plaid-synced).
- Transactions, holdings, holdings snapshots, liabilities, and properties.
- Imports history, import column mappings, user-owned categories, merchant rules.
- Budgets, goals, recurring subscriptions, demo-data manifest entries.
- Plan-subscription record (the row in our database that mirrors your Stripe state).
- Your encrypted BYOK API key, if any.
For each Plaid-connected institution we will also call Plaid’s item-removal endpoint so they stop syncing on our behalf. (Self-service Plaid disconnect via the application UI is also available before requesting deletion if you want to remove specific institutions first.)
What we cannot delete
Some records survive deletion because they are held by third parties under their own retention policies, or because law requires retention:
- Stripe billing records. Stripe retains customer and invoice records per its standard retention policy. We can mark your customer record for closure but we cannot force Stripe to purge billing history. See Stripe’s privacy notice for their retention specifics.
- Operational logs. Vercel application logs containing your IP address and request paths are retained for 30 days and then expire automatically. Sentry error reports are retained per its standard plan retention.
- Backups. Database backups taken before your deletion may include your data until those backups age out per the platform retention window.
- Records we are required to keep by law. Tax, accounting, and regulatory retention requirements may require us to retain certain billing records for a defined period.
What we don’t collect in the first place
For full transparency: Loocero does not currently run any aggregate analytics, behavioral analytics, ad-network conversion pixels, or session-replay tools. We do not maintain de-identified or pseudonymized analytics data sets that would survive your account deletion. If that posture changes, we will update this page and our Privacy Policy before the change ships.
California residents — CCPA / CPRA requests
Under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), California residents have specific rights regarding their personal information:
- Right to know. You may request a copy of the personal information we have collected about you, the categories of sources, the business or commercial purpose for collecting it, and the categories of third parties with whom we share it.
- Right to delete. You may request that we delete personal information we have collected from you, subject to legal exceptions.
- Right to opt out of sale or sharing. Loocero does not sell or share your personal information for cross-context behavioral advertising. There is nothing to opt out of, but the right is yours and we will honor any opt-out signal sent to us.
- Right to non-discrimination. We will not deny you service, charge you a different price, or provide a different level of service because you exercised any CCPA right.
How to submit a CCPA request
- To: [email protected]
- Subject:
CCPA Request — [Your Account Email] - Body: the type of request (know, delete, opt-out, correction), the email address associated with your Loocero account, and confirmation that you are a California resident. If submitting through an authorized agent, include the agent’s written authorization.
Response timeline
We will confirm receipt of your CCPA request within 10 business days and will respond substantively within 45 calendar days of receipt, as required by CCPA. If we need additional time we may extend the response window by up to another 45 days and will notify you of the extension and the reason for it within the original window.
Right to appeal
If we deny a CCPA request — for example because we cannot verify your identity, because the request is manifestly unfounded or excessive, or because a legal exception applies — you may appeal the decision by replying to our denial email within 30 days. Use the subject line CCPA Appeal — [Your Account Email]. We will review the appeal and respond with our final decision and reasoning.
Verification
To protect your data we will verify that the request actually comes from you (or from an authorized agent acting on your behalf) before acting on a know, delete, or correction request. Verification typically uses information already associated with your Loocero account; we will not ask you for sensitive information you have not previously provided.
EU / UK and other jurisdictional rights
EU and UK residents have right-to-erasure and related rights under the GDPR / UK GDPR; the email process at the top of this page is how we operationalize those rights today. Contact [email protected] with any jurisdiction-specific request and we will respond within the timeline that jurisdiction requires.
A note on self-service
A self-service “Delete account” button in the application Settings is on our roadmap. Until that ships, the email request above is the supported path. Email is slower for you, but it gives us a verifiable record of intent and lets us run the irreversible step deliberately.