Skip to main content
This feature requires administrator or workspace owner permissions. Changes made here affect all users in your workspace.
By the end of this guide, you will have handled data deletion requests, configured retention policies, and reviewed your workspace’s privacy compliance records. This guide helps you handle data deletion requests, configure retention policies, process privacy requests, and maintain compliance audit trails.
Who should read this: Workspace administrators and designated privacy officers. Privacy management requires the Admin or System Administrator role. If your organization has a Data Protection Officer (DPO), grant them Admin access to the privacy settings.

Handle data deletion requests

1
Step 1: Navigate to Privacy Settings
2
In the Settings section, select Privacy & Compliance and open the Deletion Requests tab.
3
Step 2: Create a new deletion request
4
Click New Deletion Request. Enter the requestor’s identifying information and select the applicable regulation (GDPR, CCPA, or Internal policy).
5
Step 3: Review the data scope
6
The system displays all records associated with the individual across modules.
7
Aviation safety records may be subject to retention requirements under 14 CFR Part 5.95-5.97 and 49 CFR Part 830 (NTSB reporting). Review regulatory obligations before deleting safety-related data. The system flags records that fall under regulatory retention holds.
8
Step 4: Approve or deny the request
9
Select Approve, Partially approve, or Deny. If you deny, document the reason.
10
Step 5: Execute the deletion
11
For approved requests, click Execute Deletion. The system removes the selected data and generates a deletion certificate.
12
Step 6: Confirm completion
13
Download the deletion certificate and provide it to the requestor.
Set up a recurring calendar reminder to review the Deletion Requests dashboard weekly. The system highlights requests approaching their regulatory deadline with a countdown indicator.

Configure data retention policies

Retention policies define how long different categories of data are stored before automatic archival or deletion.
1
Step 1: Navigate to Retention Settings
2
In Settings > Privacy & Compliance, select the Retention Policies tab.
3
Step 2: Review and customize retention periods
4
If you want to adjust a retention period, click Edit on the category. You can extend retention beyond the default but cannot reduce it below the regulatory minimum.
5
Step 3: Save retention configuration
6
Click Save Retention Policies. Changes apply prospectively.
Retention policies interact with deletion requests. If a data subject requests deletion of records that are still within a regulatory retention hold, the system retains those records and documents the exemption in the deletion certificate.

Manage privacy requests

Beyond deletion requests, data subjects may submit access requests (right to access their data) or rectification requests (right to correct inaccurate data).
1
Step 1: View all privacy requests
2
Navigate to Settings > Privacy & Compliance > All Requests.
3
Step 2: Process the request
4
For access requests, click Generate Data Package, review for redactions, and click Release Data Package. For rectification requests, verify the requestor’s identity, update the records, and confirm the changes.
PlaneConnection tracks consent for data processing across several touchpoints — account creation, safety report submission, newsletter opt-in, and third-party integrations.
2
In Settings > Privacy & Compliance, select the Consent Log tab.
3
Step 2: Filter and review
4
Use the filters to search by user, consent type, date range, or status.
5
Step 3: Export (optional)
6
If you want to download the consent log for compliance audits, click Export.

Export user data

If you need to fulfill a data portability request, navigate to Settings > Privacy & Compliance > Data Export, enter the user’s email, select data categories and format, and click Generate Export.
User data exports may contain Sensitive Security Information (SSI) as defined by 49 CFR Part 1520. Do not transmit SSI via unencrypted email.

Monitor compliance with the audit trail

If you want to review all privacy-related actions, navigate to Settings > Privacy & Compliance > Audit Trail. Export the audit trail before regulatory audits to demonstrate your compliance program.

Export Data

Full workspace data exports for backup and compliance.

Data Privacy and Compliance

Conceptual overview of the platform’s privacy architecture.

Manage Users

User account lifecycle and role management.

Permissions Matrix

Role-based access controls for privacy features.
Last modified on April 11, 2026