Data Deletion Instructions
Noleji.ai respects your right to have your personal data deleted. This page describes how we permanently delete the data we hold about you, in accordance with Korea's PIPA, the GDPR, the CCPA/CPRA, and Meta Platform Terms 4.b.
What We Delete
- Your email address and newsletter subscription records.
- Membership identifiers and payment metadata (records mandated by Korea's E-Commerce Act are retained for 5 years in anonymized form).
- OAuth tokens and external platform user IDs (Threads, Instagram, Facebook, Google, etc.).
- For advertising SaaS users: ad account identifiers, API tokens, and campaign metadata.
- Access logs (deleted on or before the end of statutory retention).
- Support inquiries (on request).
How to Request Deletion
Method 1 — Email request (recommended)
- Send an email to noleji.ai@gmail.com.
- Subject:
[Data Deletion] Request - Include in the body:
- The email address used for sign-up or payment.
- (If applicable) the name of the external platform connected and the user ID or username on that platform.
- (If applicable) the advertising account ID.
- (Optional) the reason for deletion.
- After identity verification, we will complete the deletion within 7 business days (and in any event within 30 days under statute) and confirm by reply.
Method 2 — Revoke access from Meta
- Open your Meta account settings → Apps and Websites.
- Facebook: facebook.com/settings?tab=applications
- Instagram/Threads: Profile → Settings → Security → "Apps and Websites".
- Find Noleji.ai and click "Remove" or "Revoke access".
- Meta will send a deletion callback to our endpoint, and we will purge the affected tokens and user data immediately.
Meta App Review — Data Deletion Request URL: https://noleji.synology.me/legal/data-deletion/en/
Method 3 — Automated OAuth deauthorize callbacks
We receive Meta's deauthorize / data deletion callbacks at the following URLs (these are not directly called by Users):
https://noleji.synology.me/oauth/threads/deauthorizehttps://noleji.synology.me/oauth/threads/delete
These endpoints are registered with Meta and trigger immediate token revocation and queue user-data deletion. You can verify status by reaching us via the email channel above.
Timeline
- Acknowledgement: within 3 business days.
- Completion: within 7 business days (statutory cap: 30 days).
- Data subject to mandatory legal retention is auto-deleted at the end of its retention period.
After Deletion
Once deletion is complete, we guarantee:
- Information that could identify you is permanently removed from operational databases, logs, backups, and caches.
- Newsletters and posts already sent cannot be recalled, but you are excluded from all future sends.
- Content we published to external platforms must be removed separately under those platforms' policies.
Exceptions (Mandatory Retention)
Certain records are retained in anonymized form when required by law:
- Korea's Act on Consumer Protection in Electronic Commerce — payment/contract/withdrawal records, 5 years.
- Framework Act on National Taxes — transaction evidence, 5 years.
- Protection of Communications Secrets Act — access logs, 3 months.
- When required for a legal proceeding, investigation, or claim.
Contact
If you have any concerns about the deletion process, contact noleji.ai@gmail.com. We will inform you about the statutory dispute resolution procedures available under PIPA, GDPR, or CCPA/CPRA, as applicable.