> For the complete documentation index, see [llms.txt](https://shinkalabs.gitbook.io/hub/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://shinkalabs.gitbook.io/hub/andromeda/guides/gdpr.md). # Your data (GDPR) When the [identity layer](/hub/andromeda/concepts/identity.md) is enabled on a deployment, an end user can export or delete the identifiable data Andromeda holds about them. If identity is not enabled, there is no such data to begin with. {% hint style="info" %} Available only when identity is enabled; check [`/capabilities`](https://api.andromedainfra.pro/capabilities). Exact request and response bodies are in the [OpenAPI spec](https://api.andromedainfra.pro/openapi.json). {% endhint %} ## Export `GET /me/export` returns a JSON dump of the user's identifiable data: their identities, account links, and related records. Use it to satisfy a data-access request, or to let a user move their data elsewhere. ## Delete `DELETE /me` cascades a purge across all of the user's linked records. After it completes, Andromeda no longer holds identity data for that user. One thing it cannot delete: the **dWallet on-chain**. A dWallet lives on Solana, in the Ika program; Andromeda does not control whether that on-chain state can be removed. This limitation is stated to the user as part of the delete flow. Deleting identity data severs the link between the user and the wallet on Andromeda's side, but the on-chain object persists according to the chain's rules. ## How identity data is protected meanwhile * **Encryption at rest.** Identity records, account-link records, and email-token rows are wrapped with AES-256-GCM, so a database dump is not directly a PII dump. (This hardening is in progress during pre-alpha; do not treat it as complete yet. See [Known limitations](/hub/andromeda/reference/limitations.md).) * **Anti-enumeration.** The email-request endpoint always returns `200`, so the API cannot be used to discover which emails have accounts. * **Single-use tokens.** Email links, OAuth state, passkey challenges and refresh tokens are consumed atomically. * **Optional audit log.** When enabled, identity-related events are recorded in sanitised form (allowlisted keys, clamped strings); the audit log never blocks a user-facing flow. See [Data protection](/hub/andromeda/security/data-protection.md) for more. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://shinkalabs.gitbook.io/hub/andromeda/guides/gdpr.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.