Data Deletion · Boomly

This page explains how to request deletion of all data Boomly stores about you, including any Instagram access tokens, automation rules, webhook event logs, and profile information. We comply with the Meta Platform Policy on user data deletion as well as applicable privacy law.

What we delete on request

Your Boomly account profile (name, email, avatar).
All connected Instagram accounts, including stored access and refresh tokens (which are encrypted at rest).
All automation rules, automation logs, and lead form data.
All raw webhook events that we received from Meta and stored for debugging.
Session and authentication records.

How to request deletion

You can request deletion in either of these ways:

From inside the app: Sign in, open Settings → Account and click Delete my account. This permanently removes all of the data listed above within 7 days.
By email: Send a request from the email address you used to sign up to abid.akram01@gmail.com with the subject “Boomly data deletion”. We will confirm the request, perform the deletion within 30 days, and send you a confirmation email when it is complete.
From Instagram / Meta: If Meta sends us a deletion callback for your Instagram user ID, we automatically queue your data for deletion at our endpoint POST /api/data-deletion.

Revoking Boomly's access without deleting your account

If you only want to disconnect Instagram (so we can no longer call the Graph API on your behalf) without removing your Boomly account, open Instagram → Settings → Apps and Websites → Active and remove Boomly. We will stop receiving webhook events and stop being able to send DMs as soon as you remove the permission.

Verification

For deletion requests we receive over email, we verify ownership by replying from the registered email address only and, where the data relates to an Instagram account, by asking you to send a brief confirmation message from that Instagram account.

Retention after deletion

After deletion is complete we may retain a minimal audit record (date of deletion, and a hash of the user identifier) for up to 90 days to meet our legal and security obligations. This record cannot be used to re-identify you.

Contact

Questions about deletion requests? Contact us at abid.akram01@gmail.com.

What we delete on request

Your Boomly account profile (name, email, avatar).

All connected Instagram accounts, including stored access and refresh tokens (which are encrypted at rest).

All automation rules, automation logs, and lead form data.

All raw webhook events that we received from Meta and stored for debugging.

Session and authentication records.

How to request deletion

You can request deletion in either of these ways:

From inside the app: Sign in, open Settings → Account and click Delete my account. This permanently removes all of the data listed above within 7 days.

By email: Send a request from the email address you used to sign up to abid.akram01@gmail.com with the subject “Boomly data deletion”. We will confirm the request, perform the deletion within 30 days, and send you a confirmation email when it is complete.

From Instagram / Meta: If Meta sends us a deletion callback for your Instagram user ID, we automatically queue your data for deletion at our endpoint POST /api/data-deletion.

Revoking Boomly's access without deleting your account

Data Deletion Instructions

What we delete on request

How to request deletion

Revoking Boomly's access without deleting your account

Verification

Retention after deletion

Contact

Data Deletion Instructions

What we delete on request

How to request deletion

Revoking Boomly's access without deleting your account

Verification

Retention after deletion

Contact