Delete data from the Spend Cloud (GDPR)

Delete data from the Spend Cloud (GDPR)

It is now known to everyone that you cannot store data and personal data indefinitely. After the data has served its legitimate purpose, it must be deleted. This can be read in article 5.1. of the GDPR. In this article we will tell you how the Spend Cloud can help you with this. 


Article 6 of this regulation states that there are roughly four legal purposes for storing data. 

When can you keep data?

  • When the user has given permission. For example, accepting cookies in the browser. 
  • When global or local laws and regulations give permission. For example, the retention obligation of (usually) 7 years for financial data. 

  • If there is a contractual commitment with a company. For example, our agreement states that as long as the contract is active, we may store contact details in our CRM system.  

  • If you have a legitimate interest. This is the processing of personal data for a specific interest. For example, preventing fraud or properly securing and protecting computer systems. 


Legislation and regulations ensure that all organisations have certain obligations when processing data. It is important that the Spend Cloud always handles data with care, but that customers themselves are responsible for recording and determining the legal basis. You decide when we delete data. We cannot make any assumptions about this, only facilitate it. 

I want to have data deleted for my Spend Cloud environment 

This can be done via: 
  • The Data Retention functionality in the Spend Cloud. This is an automatic cleanup for emails in the Spend Cloud.
  • The other clean-up actions can be requested via this form. As soon as you have filled out this form, a support call will be created. This support call will not be given the highest urgency, but will of course be addressed. You will receive a message when the data cleanup has been carried out. Removing this data has advantages in terms of sustainability. We will need less storage and therefore less server capacity at Google.


We recommend carrying out the above clean-up actions as soon as possible if you see that there are invoices, orders or emails in your Spend Cloud archive that are older than legally permitted.   



    • Related Articles

    • Deleting data within Invoice Processing

      Within the Spend Cloud, we process a lot of data. In principle, we do not delete data unless requested. Users can delete emails themselves using the housekeeping functionality within the Spend Cloud. This is currently the only place where customers ...
    • Data retention

      Due to GDPR regulations, we are not allowed to retain collected data longer than necessary. To comply with these regulations, you can now define retention periods for specific data in Spend Cloud. In this article, we will explain step by step how to ...
    • Managing access tokens for connection with financial package in Spend Cloud

      When you use a web service integration with your financial package, the authorization for this is often based on an access token. An access token is a key that allows your Spend Cloud to communicate with your financial package, specifying what ...
    • Configuration settings in the Spend Cloud

      In the "Configuration settings" menu, you can find settings that affect the setup of your Spend Cloud environment. Access to this menu can be configured in the rights menu per rights set. Make sure you understand what each setting does before making ...
    • How can we incorporate our modified/new organizational structure into Spend Cloud?

      Significant changes within an organization, such as a reorganization or the establishment of a new administration or department, may lead to misalignment between the Spend Cloud configuration and the organizational structure and employee roles. The ...