See how data-subject rights work in the product itself — export, deletion, consent, and retention, exercised without a ticket.

Rights exercised in-product

Right	How it works
Access / portability	Users export their own data from account settings. The export is user-initiated and covers the personal data the platform holds about them.
Erasure	Users request deletion from account settings. Deletion is processed against retention obligations (see below); data without a retention basis is removed or anonymized.
Rectification	Profile data is user-editable directly; SSO/SCIM-managed attributes follow the organization's directory.
Objection / consent withdrawal	Consents — including meeting recording consent — can be declined or withdrawn; the corresponding processing does not occur.

Both export and deletion are protected operations on the user's own authenticated account; they cannot be triggered anonymously against someone else's address.

Recording in Quantum Meetings is consent-gated before any capture begins:

A blocking consent dialog appears before a recorded meeting starts capturing.
Consent is granular: video, audio, and transcription are separate, unchecked choices — no pre-ticked boxes.
Declining is always possible; a participant can leave the meeting instead of consenting.
The consent decision and timestamp are recorded, so the lawful basis for each recording is auditable.

№ 1

Granular, affirmative, documented consent is the GDPR Article 4(11) standard. The recording flow was designed against that definition rather than a generic "this call may be recorded" banner.

Retention

Data is kept only as long as a defined purpose requires:

Operational logs have explicit retention windows — for example, the SCIM synchronization log is pruned after 90 days.
Deprovisioned accounts (via SCIM) are suspended with the profile retained for audit, consistent with employment-related record obligations.
Deletion requests remove or anonymize personal data that has no remaining retention basis.

Anti-enumeration as a privacy control

Account-related flows such as recovery return identical responses for known and unknown email addresses. Whether a person uses The Quantum Club is itself treated as personal information and is not disclosed to probing third parties. See account recovery.

For organization admins

Point data-subject requests at the product first

Export and deletion are self-service. Most Article 15 and 17 requests resolve without a support ticket.

Brief recording hosts

Hosts should know that participants see a real consent gate and can decline. Plan meetings accordingly rather than treating recording as guaranteed.

Use SCIM for leavers

Deprovisioning through your IdP gives you a directory-driven, auditable offboarding record — stronger evidence than manual account cleanup.

You know where users export and delete their own data, how recording consent is captured, and which retention windows apply to operational logs.

Updated 12 June 2026 · 3 min read

Was this useful?

Rights exercised in-product

Right	How it works
Access / portability	Users export their own data from account settings. The export is user-initiated and covers the personal data the platform holds about them.
Erasure	Users request deletion from account settings. Deletion is processed against retention obligations (see below); data without a retention basis is removed or anonymized.
Rectification	Profile data is user-editable directly; SSO/SCIM-managed attributes follow the organization's directory.
Objection / consent withdrawal	Consents — including meeting recording consent — can be declined or withdrawn; the corresponding processing does not occur.

Both export and deletion are protected operations on the user's own authenticated account; they cannot be triggered anonymously against someone else's address.

Recording in Quantum Meetings is consent-gated before any capture begins:

A blocking consent dialog appears before a recorded meeting starts capturing.
Consent is granular: video, audio, and transcription are separate, unchecked choices — no pre-ticked boxes.
Declining is always possible; a participant can leave the meeting instead of consenting.
The consent decision and timestamp are recorded, so the lawful basis for each recording is auditable.

№ 1

Granular, affirmative, documented consent is the GDPR Article 4(11) standard. The recording flow was designed against that definition rather than a generic "this call may be recorded" banner.

Retention

Data is kept only as long as a defined purpose requires:

Operational logs have explicit retention windows — for example, the SCIM synchronization log is pruned after 90 days.
Deprovisioned accounts (via SCIM) are suspended with the profile retained for audit, consistent with employment-related record obligations.
Deletion requests remove or anonymize personal data that has no remaining retention basis.

Updated 12 June 2026 · 3 min read

Was this useful?

GDPR and data rights

Rights exercised in-product

Retention

Anti-enumeration as a privacy control

For organization admins

Point data-subject requests at the product first

Brief recording hosts

Use SCIM for leavers

On this page

GDPR and data rights

Rights exercised in-product

Retention

Anti-enumeration as a privacy control

For organization admins

Point data-subject requests at the product first

Brief recording hosts

Use SCIM for leavers

On this page