ItemTrack

Help center Account & security Deleting your account and exporting your data

Deleting your account and exporting your data

Under GDPR (Article 15 and 17), you have the right to request a copy of your data and to have your data deleted. ItemTrack supports both directly from the app.

Export your data

Go to your profile page → Privacy section → Export my data.

We assemble a ZIP file containing:

  • All items, boxes, closets, locations as JSON.
  • All photos, in their original format.
  • The full audit log of actions on your account.
  • Encrypted private fields, decrypted into the export (they're your data, you're entitled to them).
  • Account metadata: email, display name, language, plan, MFA settings (without secrets).

The ZIP is encrypted with a one-time password we email separately to your verified email address. You'll get two emails — one with a download link, one with the password. Download the ZIP, unzip with the password, you have your data.

The download link expires after 7 days. The password is one-time-use. If you need a fresh export, request a new one.

How long does export take

For small accounts (under 100 items), seconds. For larger accounts (1000+ items, lots of photos), can take a few minutes. We do the work in a background job and email you when ready.

Delete your account

Go to your profile page → PrivacyDelete account.

We ask for your password to confirm. After confirmation, we:

  1. Mark your account as deleted_at = NOW(). You're immediately signed out and can't sign back in.
  2. Schedule a hard-delete in 30 days. During this window, you can change your mind by emailing support.
  3. After 30 days, every database row associated with your account (items, boxes, closets, locations, photos, audit log entries, share links, marketplace listings, messages) is permanently deleted.
  4. Your encryption key is destroyed. After hard-delete, encrypted data is irrecoverable even by us.

The 30-day window exists because account deletion is a regret-frequent operation. If you really want immediate hard-delete, email support and we'll do it.

What's NOT deleted

  • Audit logs that involve other users. If you sent a marketplace message to someone, that someone keeps a copy in their messages. We anonymize your side ("[deleted user]").
  • Backups older than 30 days. Our daily backups are retained for 30 days. After 30 days post-deletion, backup retention has cycled and your data is gone from there too.
  • Anonymous aggregate data. We may keep anonymized usage stats (numbers of items per plan, average photos per item) for product analytics. These don't contain anything that identifies you.

What about shared resources

When you delete your account:

  • Share links you generated — invalidated immediately. Recipients see "this share is no longer available".
  • Items you sold on the marketplace — listings removed from public view. Buyers who had ongoing conversations see "[deleted user]" in their thread.
  • Co-owners on your household account — they lose access to your tenant. If you want to hand over the household to a co-owner instead of deleting, contact support — there's a "transfer ownership" flow.

QR Labels

After deletion, your QR Label tokens become 404s. Anyone scanning a sticker that was in your account sees a generic "This code is not active" page.

If you want to transfer a sticker to another user (selling a box of stuff with the sticker on it), don't delete your account — instead delete the resource the QR is attached to (the QR returns to your unclaimed pool), revoke the token, and let the new owner generate their own.

I deleted by mistake

Email support within 30 days of deletion. We can restore from the soft-delete state. After 30 days the data is gone.

← Back to Account & security