Account settings

Privacy control center

Give users a clear place to manage consent, profile visibility, retention, exports, and sensitive privacy requests.

Synced with policy

Protection score

92%

Falls as more optional sharing controls are enabled.

Optional controls off

2

User-controlled consent areas currently disabled.

High sharing choices

0

Marketing, enrichment, discoverability, or long retention.

Profile visibility

Control how much of the profile is discoverable inside the product.

Review payload

Show a compact version of the data you will persist before the user saves. 

{
  "profileVisibility": "team",
  "activityRetention": "12-months",
  "exportFormat": "portable-json",
  "enabledConsent": {
    "productAnalytics": true,
    "personalization": true,
    "marketing": false,
    "thirdPartyEnrichment": false,
    "securityOperations": true
  }
}

Consent controls

Let users opt in or out while preserving processing needed for safety and account operations.

2 optional enabled

Product analytics

Measure feature usage, reliability, and activation trends.

Improves product quality

On
Personalized recommendations

Use activity patterns to rank suggestions, templates, and shortcuts.

Improves relevance

On
Lifecycle education

Send product education, lifecycle messages, surveys, and beta invitations.

Optional outreach

Off
Third-party enrichment

Attach company firmographic data from approved processors.

Higher data sharing

Off
Security and fraud processing
Required

Process sign-in, abuse, billing, and access signals needed to protect the account.

Required protection

OnLocked

Retention window

Choose how long activity and recommendation signals remain available.

Export format

Offer formats that support both human review and account portability.

Data rights actions

Move sensitive privacy actions into explicit confirmation jobs instead of silent client-only state changes.

Download account data
Available

Create an export job using the selected format and notify the user when the archive is ready.

Reset recommendation profile
No open job

Clear personalization signals while keeping required operational, security, and billing records.

Start account data deletion
Sensitive

Begin an auditable deletion workflow with identity checks, ownership review, legal holds, and cancellation windows.

Latest request

No privacy job requested yet

Policy explainers
Store consent decisions with policy version, locale, region, actor, timestamp, and source surface so future audits can explain exactly what changed.
Required security, billing, legal, and fraud controls can stay locked, but the UI should explain why they cannot be disabled and where users can read more.
Export, deletion, and profiling reset actions usually become backend jobs with email confirmation, rate limits, identity checks, and download expiry.

Effective policy privacy-2026-05 for region GB.

Confirm privacy request

Confirm this privacy request before creating a backend job.

This should create a backend job, notify the user, and store an audit event with the current policy version.

Job context

Export format: portable-json

Retention window: 12-months

Visibility: team