Data minimization

Within Bloomreach Engagement, our features allow you to control your client data to stay compliant with GDPR and data protection regulations.

Retention of data

The collected data should be kept for only as long as it is necessary for the purposes for which it is being processed. As the controller of the collected data, you have control over it, and hence, you are responsible for setting appropriate retention periods for them. This applies to both customer properties and event attributes.

Keeping data for just as long as it is necessary for the processing purposes might seem vague at first. However, the vagueness is intentional to allow application on an infinite number of cases, using common sense. Each case will be distinct and expiration limits should be considered. However, we have provided our own recommendations in the Recommended expiration periods section.

Consent given for a specific time period

Sometimes the retention period is clear. For example, if the client gives you consent to process their data solely for the purpose of participating in an online competition, you should set the data expiration for the date when the competition ends. Similarly, if you are using legitimate interest for processing the data its purpose usually has a clear expiration date.

Consent given for unlimited time period

Often, clients give you consent for a seemingly unlimited time period. For example, this is the case when your customers give you consent to use their data for analytics. Though the consent does not seem to have an expiration date, you cannot keep the data after it is no longer useful for your analytics. If you kept the data that you collected years ago, it would be very hard to argue that it is useful for any relevant analysis today.

Data expiration

You can define custom expiration for each type of event (for example,page_visit, purchase). These events will be automatically deleted when they pass their expiration period.

To set your expiration periods, go to Data & Assets > Data manager > ... > Expiration.

Efficient Engagement usage

Data expiration is useful in optimizing your data storage Maximum Event Storage (MES). Learn more about how to use this platform to get the most out of your Engagement experience in this best practices article.

Recommended expiration periods

For recommended expiration periods for your events, see the table in the How to reduce MES article. There, you can find guidance on which events are not necessary to track and the recommended retention periods for optimizing your data storage. You can use the table data as a baseline for your project.

Remember to use the recommended expiration periods as just a starting point, and these may differ across industries and specific projects. What matters is whether you can justify the particular expiration period in your particular project and its purposes. These purposes include collecting evidence for a possible data protection inquiry (unlimited retention period), making analyses that take into account seasonability (13-month retention period), recommendations, and predictions (3-month retention period), and many more.

🚧

Prevent deletion of important data

Always make sure to adjust the expiration periods to your specific case. Remember to always consult your CSM before making any changes in an existing project to prevent deletion of important data.

Some of the recommended periods are set to ensure your website and customer knowledge can operate smoothly. One example is keeping a customer’s consent preference forever, which ensures that your customers are not asked multiple times if they consent or are incorrectly contacted.