When data goes,
it's gone.

This policy defines how consumer data is permanently destroyed once its retention period ends — enforced by the system, not a request queue.

Purpose and scope

This policy governs the secure disposal of all consumer data handled by MySubscriptions — financial data received through Plaid, account information, cancellation records, and operational copies (backups, logs) — across production systems and internal tooling. What we keep and for how long is defined in our Data Retention Policy; this document covers what happens when that time is up.

What triggers disposal

How data is destroyed

Enforcement

Disposal is built into the application rather than performed by hand: deletion cascades are database constraints, connection pruning and backup age-out run on a schedule, and the deletion flow is covered by our automated test suite. A human forgetting is not a failure mode.

Policy review

This policy is reviewed at least annually, and whenever we add a new category of data or a new processor. Questions or data requests: security@mysubscriptions.com.