Data Deletion and Right to Erasure | LocalGuard

1. Transparency commitment

At LocalGuard, we believe digital sovereignty starts with full control over personal information. This page details, in a clear and exhaustive manner, the procedures through which you can exercise your right to data deletion, also known as the Right to Erasure (Art. 17 GDPR).

Our architecture is designed to minimize data collection from the outset. We do not sell information to third parties, monetize personal data, or maintain hidden data silos.

2. Right to erasure (Art. 17 GDPR)

As a LocalGuard user, you have the right to request the complete deletion of your personal data and account at any time, without needing to justify your decision. This right applies to all information LocalGuard has collected, generated, or inferred during your relationship with the service.

Deletion applies to both data stored in the Core (backend) and configuration information linked to your account, including custom rules, network activity histories, device identifiers, and any associated operational metadata.

3. How to request deletion

A. Self-managed deletion from the dashboard

The fastest and safest way to delete your account and all your data is through the LocalGuard control panel:

• Log in to your LocalGuard account.
• Go to Settings > Account.
• Scroll to the account deletion section.
• Confirm your identity by entering your current password.
• Confirm permanent deletion. The process is immediate and irreversible.

Access control panel →

B. Request by email

If you cannot access the panel or prefer a privacy officer to handle your request manually, you can send us an email from the address associated with your account. Our privacy team will process the request within a maximum of 30 calendar days, as required by current regulations.

[email protected]

4. Inventory of data we delete

When we proceed to delete a LocalGuard account, the following information is permanently purged from our active systems and operational backups:

Below is the full set of data categories affected by the deletion process:

• Access credentials: Username, email address, password hash (bcrypt with individual salt), active session tokens, and refresh token families.
• Linked devices: Persistent hardware identifiers (HWID), historical IP addresses, device names, associated network profiles, and synchronization states.
• Rules and policies: All custom blocking rules, whitelists and blacklists, category configurations, protection schedules, and application profiles.
• Activity and telemetry: Full history of DNS queries, SNI records, blocking events, connection logs, application usage metrics, and activity heatmaps.
• Aggregated analytics: Anonymized usage metrics generated by Google Analytics 4 linked to your internal client identifier; the association and subsequent tracking are removed.
• Local billing data: Records of subscribed plans, internal billing dates, subscription statuses, and support notes related to payments managed directly in our panel.
• Cryptographic secrets: PASETO v4 tokens, session signing keys, agent pairing certificates, and encryption vectors associated with your tenant.

5. Data we retain for legal obligations

Although LocalGuard deletes all operational and personal data from its active systems, certain legal and tax obligations require us to keep some information for a minimum period. This data is kept in separate, properly isolated and encrypted archives, and is not used for any commercial or operational purpose.

• Billing data managed by Stripe: subject to fiscal blocking and anti-money laundering obligations (5 to 10 years, depending on jurisdiction).
• Minimum accounting records required by Spanish and European regulations for tax administration.
• Evidence of communications related to formal claims or ongoing legal proceedings, for the duration of such proceedings.

Once the applicable legal deadlines have passed, these records are also securely destroyed.

6. Timeframes and retention policy

After confirming your deletion request, all operational data enters immediate purge. During the first 30 days, data resides in AES-256-GCM encrypted snapshots as a security measure against accidental or fraudulent deletions.

After this cooling-off period, a logical physical overwrite protocol is applied that guarantees the technical impossibility of recovering the deleted information.

7. Consequences of deletion

It is important that you understand the effects of completely deleting your account before confirming the action:

• All linked devices will lose connection to the central panel and will stop receiving filtering rules.
• Windows and Android agents associated with your account will enter isolated mode, cease SNI inspection, and destroy their local keys.
• The usage license will be immediately revoked and you will not be able to access updates or technical support.
• Any customized configuration (rules, schedules, lists) will be permanently lost with no possibility of later export.
• If you have an active subscription, you must cancel it beforehand from the billing panel to avoid improper charges, unless account deletion does so automatically.

8. Other rights you can exercise

In addition to the right to erasure, the GDPR grants you other rights over your personal data that you can exercise by contacting our privacy officer:

• Right of access: Obtain a complete copy of the personal data we process.
• Right to rectification: Correct any inaccurate or incomplete data associated with your account.
• Right to data portability: Receive your data in a structured, commonly used, and machine-readable format (JSON/CSV).
• Right to object: Object to the processing of your data when it is based on legitimate interests.

9. Contact the Data Protection Officer

If you have questions about this deletion procedure, need help exercising your rights, or wish to file a complaint, you can contact our Data Protection Officer (DPO) via the following email:

[email protected]

You can also consult our full Privacy Policy.