Summit Automates

Last updated: 2026-05-19

Data Deletion Instructions

This page tells you how to delete data Summit Automates holds about you or about social media accounts you have connected via OAuth. We provide both self-service and email-based deletion paths. Meta, Google, TikTok, and LinkedIn all require us to provide this information publicly — this is that page.

Option A — Self-service deletion (recommended)

If you have access to your Summit Automates workspace:

  1. Sign in to your workspace at summitautomates.com/login.
  2. Disconnect each social account from Social Accounts in the sidebar. This immediately deletes our stored OAuth tokens for those accounts. We also recommend revoking the app on each platform itself (links below).
  3. Delete your API keys from API Keys. We permanently remove the encrypted blobs from our database.
  4. Delete generated posts from Postsif you want media files removed from our storage too. Each post's videos, images, voiceover, and music are deleted with it.
  5. Cancel your subscription in your Whop dashboard. Your workspace will be automatically purged 30 days after cancellation.

Option B — Immediate full deletion by email

To request immediate deletion of your entire workspace and all associated data — including encrypted API keys, encrypted OAuth tokens, generated content, usage events, and any backups:

  1. Email admin@summitautomates.com from the email address tied to your account.
  2. Subject line: Data deletion request
  3. Include in the body: a confirmation that you want all data deleted and any specific scope (e.g. "delete only my Instagram connection and its tokens" vs "delete my entire workspace").

We respond within 3 business days with confirmation and complete the deletion within 30 days of receipt (typically much sooner — usually the same day for workspace data; any backup copies are purged on our scheduled rotation within 30 days).

Option C — Revoke the app on the platform itself

You can revoke Summit Automates' access to a connected social account directly on the platform. This invalidates the tokens we hold, even before we delete them, so we can no longer act on your behalf:

Revoking on the platform stops further activity but does not delete the data we already hold. Use Option A or B in addition for full deletion.

What gets deleted

A full workspace deletion removes:

  • Your user account and password hash
  • Your tenant's niche configurations and prompt overrides
  • All stored API keys (encrypted blobs)
  • All stored OAuth tokens (encrypted blobs)
  • All discovered topics and their scores
  • All generated posts, including video files, images, voiceover audio, music, and thumbnails (from our application database and from media storage)
  • All scheduled posts and posting attempts
  • All usage events / cost tracking history
  • Posting rules and prompt templates

Server-side request logs (containing only HTTP paths, status codes, and error stack traces — never your content) may be retained for up to 30 days for security and debugging purposes, after which they are deleted automatically.

Confirmation

After deletion completes, you will receive an email at the address associated with your account confirming the action and listing what was removed. If you don't receive this confirmation, contact us again at admin@summitautomates.com.

For Meta App Review reviewers

The deletion endpoint for compliance with Meta's Platform Terms is the email address admin@summitautomates.com plus the self-service flow described in Option A above. We respond to all deletion requests within the timeframe required by Meta's Platform Terms (currently 30 days). A user-initiated revoke on Facebook (Option C above) also triggers our automatic deletion of their OAuth tokens via Meta's deauthorization callback once we ship that endpoint in a future release; until then, the manual paths in Options A and B apply.