Overview
The General Data Protection Regulation (GDPR) is an EU law that protects personal data privacy and gives users more control over how their information is handled.
The GDPR outlines several “data subject rights” designed to let individuals access, manage, and sometimes delete their data.
Perplexity is committed to GDPR compliance, providing clear ways for users to understand and exercise their rights.
IMPORTANT Please read carefully
Do NOT use the Data Privacy Form for the following requests, as they are outside the scope of formal GDPR compliance rights at Perplexity:
If you want to delete one or multiple threads, spaces, or files. Please use the platform’s self-serve options for these actions.
If you want to delete your account immediately—account deletion is a process that may take up to 30 days to complete. See the account deletion article for more details.
If you want to opt out of essential data collection required to deliver core services (as described in the Terms & Conditions), as this is not possible.
If a request is submitted for any of the above, it is within our right to refuse. We've created an article on how to self serve for most of these. Please check this article out.
Difference Between Self-Serve and GDPR Requests
Self-Serve Requests:
Allows anyone to manage or delete their data directly using platform features (e.g., “Delete Account” in settings).
No need to contact support for standard actions like deletion or for changing most privacy settings.
Ideal for straightforward scenarios where you own and accesses the account.
For instructions on the self serving, please read this article.
Note: We currently do not support the right to Right to Access for self serve.
GDPR Requests:
Formal requests, typically made via a Data Privacy Form or by emailing the support team.
Used for more complex requests (e.g., data deletion by a legal representative, restrictions, data portability).
May require proof of identity or power of attorney if submitted by someone other than the account holder.
Covers rights including access, rectification, erasure, restriction, objection, and data portability under GDPR.
Timeline and steps to exercise rights.
Locate the right you'd like to exercise and read more about your rights under GDPR.
Complete the form to submit your request.
An email confirmation will be sent once your submission is successful.
We will respond within 30 days, or we will request an extension depending on volume. Perplexity, under Article 12(3) of the GDPR, is permitted to extend the response period by up to two additional months where necessary, taking into account the complexity and number of requests. If an extension is needed, you will be informed within the initial 30-day period along with the reasons for the delay.
We will send an email confirmation along with proof that we've processed the request and closed your case.
What Are Your Rights under GDPR that apply to Perplexity?
Right to Access
Request a copy of the personal data held about you.
“How do I request the right to access my data?”: Contact customer support with a request for information.
Right to Rectification
Correct inaccurate or incomplete data.
“How do I request to rectify my data?”
Please submit your request using our Data Privacy Form. If someone is making the request on your behalf, they must have a valid power of attorney to represent you.
Right to Erasure ("Right to Be Forgotten")
Ask for your data to be deleted in certain circumstances. Please note that all Right to Erasure requests result in absolute deletion of the account with no way of restoring previous information.
We are not able to process deletion under this right for the following:
Data from specific time periods.
Specific threads, spaces, queries or files.
Data without full deletion of the account.
How do I request data deletion?
For formal GDPR erasure requests (including cases where self-service is not possible or if representation by a legal agent is required), complete the Data Privacy Form or email the privacy team with supporting documentation.
In most cases, self serve is possible.
Once the deletion process is complete, all personal data will be permanently removed from the system and cannot be recovered.
Some information may be retained for compliance with legal obligations or legitimate business purposes, but this data will not be used for any other reason and will be securely stored.
If the account is reactivated before the 30-day period ends, the deletion request will be canceled and user data will remain accessible.
A confirmation email will be sent once the erasure request is processed and completed.
Right to Restrict Processing
Limit how your data is used without deleting it.
“How do I request restriction of processing?”
Contact support and specify the reason for restricting data use (e.g., contesting accuracy or objecting to processing).
Right to Object
Object to processing of your data for specific reasons, such as marketing.
“How do I object to processing?”: Use privacy controls in your account to change preferences, or contact support to opt out of non-essential data uses.