Kronos AI ("Kronos," "we," "us") provides businesses with tools to manage and respond to messages across connected channels and to operate AI agents against connected applications. This page explains how authorized users, end customers, and upstream platforms (Meta, Shopify, others) can request deletion of personal data processed through Kronos, what we delete, on what timeline, and how our sub-processors are instructed.
If you are an authorized user of a business using Kronos, you may request deletion of:
Note: Your organization (the Kronos Customer) may control the workspace and connected channels. In some cases, we may require the request to be confirmed by the workspace owner/admin.
If you interacted with a business that uses Kronos (for example, you messaged the business on Instagram, Messenger, or WhatsApp, or you placed an order in a Shopify store the business operates), the business is typically the controller of your data. In most circumstances you should contact that business directly first.
If the business instructs Kronos to delete your data, or if your upstream platform sends a deletion request through its standardized webhook (see Section 7), Kronos will process the request according to the instructions and applicable law within 30 days.
Depending on the request and the Customer's configuration, deletion may include:
Important: Some information may be retained for a limited period if required for security, fraud prevention, billing, tax, or legal obligations. Backups may persist for the duration of their normal rotation cycle and are then overwritten.
Send an email to: [email protected]
Subject line: "Data Deletion Request"
Please include:
We may request additional information to verify your identity and to locate the data across the channels and integrations in scope.
For security reasons, we may need to verify that you are the account holder or an authorized representative. Once verified, we will:
The end-to-end action is completed within 30 days of receipt of a valid request, subject to:
If you are an end user who contacted a business using Kronos, or if you are a shopper whose order or customer record lives in a business's Shopify store that connects to Kronos, you can request deletion by contacting the business directly. The business can then:
Once your deletion request is completed:
Upstream platforms operate standardized deletion-request flows for apps that store user data. Kronos honors the following:
When Kronos is used with Meta products and a valid deletion request is received via Meta's user data deletion mechanism, Kronos will:
Kronos is registered with Shopify as a public-distribution app and subscribes to the three mandatory compliance webhooks Shopify defines for apps that touch customer data. Each endpoint validates the incoming X-Shopify-Hmac-Sha256 signature against the app's client secret, returns HTTP 401 if the signature is invalid, and returns a 200 series status on successful receipt. The substantive action is completed within 30 days.
customers/data_request — when an end customer of the merchant submits a personal-data access request through Shopify, Kronos receives the request payload (shop_id, shop_domain, customer identifier, optional list of order IDs, request id). Kronos locates the data it holds associated with that customer identifier across conversation transcripts, AI-agent audit entries, and any references in workspace metadata; the resulting data export is delivered to the merchant for them to forward to their end customer.customers/redact — when an end customer requests deletion through Shopify, Kronos receives the payload (shop_id, shop_domain, customer identifier, optional list of order IDs to redact). Kronos scrubs the corresponding identifier from conversation messages and audit entries, redacts any quoted customer-attributable data where reasonably feasible without destroying the conversation history needed for legitimate business records, and instructs Composio to delete its own record of tool-call payloads associated with that customer.shop/redact — 48 hours after the merchant uninstalls the Kronos app from their Shopify store, Shopify sends a payload containing shop_id and shop_domain. Kronos deletes the integration record, the linked conversations and messages, the tool-execution audit entries, and the workspace assets associated with that shop; revokes the Composio connection so the OAuth token is invalidated; and removes vault-stored references.Endpoints (HMAC-verified, idempotent, 200/401 contract): /api/webhooks/shopify/customers-data-request, /api/webhooks/shopify/customers-redact, /api/webhooks/shopify/shop-redact.
For connected applications that do not operate a standardized mandatory deletion webhook (for example, Gmail), deletion of upstream platform data is performed by the user inside that platform's own settings. Kronos honors the corresponding deletion of its own local references through Section 3.
Mexico's Federal Law on the Protection of Personal Data Held by Private Parties (LFPDPPP), in force since March 21, 2025, recognizes four core data-subject rights known as ARCO:
To exercise an ARCO right, contact [email protected] with the information requested in Section 3. We respond within 20 business days of verifying the identity of the requester, extendable by an additional 20 business days where permitted by Article 32 of the LFPDPPP. Equivalent rights are honored for data subjects in the European Economic Area, the United Kingdom, California, and any other jurisdiction whose data-protection law applies.
Kronos instructs its sub-processors to delete corresponding records when a deletion is performed in Kronos. However, some sub-processors operate under their own retention rules for operational, security, or regulatory reasons:
Where applicable, Section 6 of the Privacy Policy lists each sub-processor with their own privacy policy link.
When a Customer cancels its plan, Kronos automatically executes a server-side purge that removes the following categories of operational data without further user action:
Items intentionally retained beyond cancellation as billing or compliance history (and not user-operational data) include billing usage, AI-cost metrics, MercadoPago subscription records, regulatory bundle records for voice provisioning, and security audit trails. These records do not contain message content or end-customer personal data.
Detailed table of categories and retention rules is available in Section 7 of the Privacy Policy.
Kronos AI — Privacy
Privacy / Data Protection Officer: [email protected]
Legal: [email protected]
Security incidents: [email protected]
Support: [email protected]
For tenants who activated the agentic-calls voice channel, the deletion flow has two separate retention tracks:
purge_user_operational_data function that handles your chat conversations. Voice rows cascade alongside chat rows; there is no voice-only retention to manage separately on cancel.ai_usage_logs and other billing-side tables.Audio of calls is NEVER persisted by Kronos. Calls are transcribed in real time and only the text representation is stored — there is no audio recording to delete because there is none.
© 2026 Kronos AI. All rights reserved.