Skip to content

Trust center / Legal

Data removal

A verified, trackable process for deleting an account or selected Hive Citadel data and disconnecting linked services.

Verified privacy request

Request data removal

Choose complete account deletion or a narrower cleanup. Processing runs in the background and this panel tracks the result.

Verification required
1. Verify the account email
2. Select the removal scope

1. What happens when you submit

  1. Identity verification. Signed-in users use their active session. Signed-out users verify the account email with a one-time code.
  2. Request receipt. We create a unique reference and queue the selected cleanup actions. Signed-out request-status credentials are sent in a protected header rather than placed in the URL.
  3. Background cleanup. The system removes the selected account records, workflow history, stored files, search-index entries, and/or connection credentials associated with the verified user.
  4. Result tracking. The page polls for completion. If a subsystem reports an exception, the request is marked completed with exceptions so it can be investigated instead of appearing fully complete.

2. Removal scope

ChoiceDesigned to removeDoes not itself remove
Complete account deletionAccount profile; personal workflow and agent records; uploaded/generated files; personal source documents and indexes; workspace/brand references; stored connection records and tokensData held independently by a connected provider; another organization’s records it must retain; lawful minimal compliance records
Workflow historyChats, agent memory/context, task and workflow records matched to the userAccount profile, uploads, or connections not selected
Uploaded contentUser source documents, generated files, associated knowledge rows and vector-index entries, and user storage objectsProvider originals or organization-owned copies outside the user’s scope
Disconnect integrationsStored Hive Citadel connection records and encrypted access/refresh credentials, plus connector-imported personal source records covered by the cleanupThe provider’s own copy of data or, in every case, the provider-side consent grant

3. Disconnect here and revoke at the provider

Deleting a stored credential prevents future Hive Citadel use of that credential. For defense in depth, also revoke Hive Citadel in the provider’s security or connected-app settings. Provider revocation immediately changes the provider-side authorization boundary and is especially important if a request is still processing.

Removing Hive Citadel data does not delete content held by Google, Microsoft, GitHub, YouTube, or another provider. Delete provider-held content using that provider’s product or an authorized tool that supports deletion.

Provider revocation directory (47)
ProviderMethodProvider-side action
SharePoint
sharepoint
OAuthRevoke in Microsoft account or tenant enterprise app consent.
OneDrive
onedrive
OAuthRevoke in Microsoft account or tenant enterprise app consent.
Outlook Email
outlook-email
OAuthRevoke in Microsoft account or tenant enterprise app consent.
Outlook Calendar
outlook-calendar
OAuthRevoke in Microsoft account or tenant enterprise app consent.
Microsoft Teams
teams
OAuthRevoke in Microsoft account or tenant enterprise app consent.
Gmail
gmail
OAuthRevoke in Google Account > Security > Third-party access.
Google Drive
google-drive
OAuthRevoke in Google Account > Security > Third-party access.
Google Calendar
google-calendar
OAuthRevoke in Google Account > Security > Third-party access.
Google Contacts
google-contacts
OAuthRevoke in Google Account > Security > Third-party access.
YouTube
youtube
OAuthRevoke in Google Account > Security > Third-party access.
GitHub
github
OAuthRevoke in GitHub Settings > Applications.
Jira
jira
OAuthRevoke in Atlassian account connected apps and security settings.
LinkedIn
linkedin
OAuthRevoke in LinkedIn Settings > Data Privacy > Permitted services.
LinkedIn Business
linkedin-business
OAuthRevoke in LinkedIn company/organization app permissions.
Instagram
instagram
OAuthRevoke in Meta/Instagram security and app permissions.
X
x
OAuthRevoke in X connected apps settings.
WHOOP
whoop
OAuthRevoke Hive Citadel in WHOOP account app or connected-service settings.
TikTok
tiktok
OAuthRevoke in TikTok security > app permissions.
Stripe
stripe
OAuthRevoke app access in Stripe connected applications.
Azure DevOps
azure-devops
OAuthRevoke in Microsoft/Azure DevOps app authorization settings.
App Store Connect
app-store-connect
Customer credentialRevoke API key in App Store Connect > Users and Access > Integrations.
Google Play Console
google-play-console
OAuthRevoke in Google Account > Security > Third-party access and remove access in Play Console Users and permissions if needed.
PlugLayer
pluglayer
Customer credentialRotate/revoke API keys in PlugLayer and delete local key configuration.
Cloudflare
cloudflare
Customer credentialRevoke or roll the scoped token in Cloudflare Dashboard > My Profile > API Tokens, then disconnect it in Hive Citadel.
GoDaddy
godaddy
Customer credentialDelete or regenerate the customer-owned key at developer.godaddy.com/keys, then disconnect it in Hive Citadel.
RevenueCat
revenuecat
Customer credentialRevoke or rotate the RevenueCat secret API key and disconnect it in Hive Citadel.
Twilio WhatsApp
twilio-whatsapp
Customer credentialRotate the Twilio auth token and remove or update the configured WhatsApp webhook if applicable.
SAP ECC
sap-ecc
Customer credentialRotate or revoke customer-managed credentials in your SAP environment.
SAP S/4HANA
sap-s4hana
Customer credentialRotate or revoke customer-managed credentials in your SAP environment.
SAP Ariba
sap-ariba
Customer credentialRotate or revoke customer-managed credentials in your Ariba tenant.
Oracle Fusion ERP
oracle-fusion-erp
Customer credentialRotate or revoke customer-managed credentials in Oracle IAM/tenant controls.
Dynamics 365 Finance & Operations
dynamics-365-finance-operations
Customer credentialRotate or revoke customer-managed credentials in your Microsoft tenant.
Salesforce
salesforce
Customer credentialRotate or revoke connected app credentials/tokens in Salesforce setup.
Dynamics 365 Sales
dynamics-365-sales
Customer credentialRotate or revoke customer-managed credentials in your Microsoft tenant.
HubSpot Enterprise
hubspot-enterprise
Customer credentialRotate or revoke private app tokens/API keys in HubSpot.
ServiceNow
servicenow
Customer credentialRotate/revoke API users, keys, or OAuth credentials in ServiceNow.
Jira Service Management
jira-service-management
Customer credentialRotate/revoke API tokens or app credentials in Atlassian admin.
BMC Helix
bmc-helix
Customer credentialRotate/revoke customer-managed credentials in BMC Helix admin.
Freshservice
freshservice
Customer credentialRotate/revoke API keys or OAuth credentials in Freshservice admin.
Databricks
databricks
Customer credentialRevoke PAT/service credentials in Databricks workspace admin.
Snowflake
snowflake
Customer credentialRotate or revoke credentials, key pairs, or integration users in Snowflake.
Microsoft Fabric
microsoft-fabric
Customer credentialRotate/revoke tenant credentials in Microsoft Fabric/Entra admin.
BigQuery
bigquery
Customer credentialRotate/revoke service account keys in Google Cloud IAM.
Redshift
redshift
Customer credentialRotate/revoke DB credentials, IAM roles, or integration secrets in AWS.
DocuSign
docusign
Customer credentialRevoke integration keys/tokens in DocuSign admin.
Adobe Acrobat Sign
adobe-acrobat-sign
Customer credentialRevoke integration credentials in Adobe Acrobat Sign admin.
Telegram
telegram
Environment credentialDisable connector in-app and rotate Telegram bot token via BotFather.

4. Limited retention and backups

Deletion is subject to applicable law and legitimate preservation needs. We may retain a minimal deletion-request record, security and fraud evidence, billing/accounting records, records subject to legal hold, and information needed to establish or defend legal claims. These records are access-restricted and are not retained for ordinary product use.

Residual copies may remain in protected backups until normal rotation. They are not restored to active use except for disaster recovery, and deletion controls are reapplied where appropriate.

5. Organization-managed data

If your account belongs to an organization, some workspace data may be controlled by that organization. A personal request removes data within the verified user’s deletion scope; it may not authorize deletion of records the organization owns or must retain. Contact your workspace administrator for organization-level deletion.

6. Manual escalation

If the form is unavailable, a request shows completed with exceptions, or you cannot access the account email, contact support@hivecitadel.com with “Data Removal Request” and any request reference. Do not send passwords, access tokens, or one-time codes.