Delete your account & data

You can permanently delete your Digi SetuSeva account, along with all your families, members, applications, bills, documents, and operator profile data, at any time. This page explains both the in-app self-service path (recommended) and the email fallback for users who can no longer sign in.

Deletion is governed by Section 12 of the Digital Personal Data Protection Act, 2023 (DPDP Act) and our Privacy Policy.

1. Delete from inside the app (recommended)

If you can still sign in, this is the fastest path. Deletion is processed immediately on confirmation — no email back-and-forth, no waiting period.

1. Sign in at digisetuseva.in/auth/login.
2. Open Settings from your profile menu (top-right of the Workboard).
3. Scroll to the Danger zone section at the bottom of the page.
4. Click Delete account.
5. Step 1 of 2: enter your 6-digit Recovery PIN to confirm it's you.
6. Step 2 of 2: type the phrase Confirm Permanently Delete my account exactly (case-sensitive) into the input box.
7. Click Permanently delete my account. You'll be signed out and redirected to the home page once deletion completes.

Forgot your Recovery PIN? Use the "Forgot PIN" link on the sign-in screen to reset it via your registered email or biometric (if enabled), then return to this flow. If both are inaccessible, use Method 2 below.

2. Email request (for users who can't sign in)

If you've lost access to your account — forgotten credentials, lost device, or similar — send a deletion request from the email address you registered with:

We acknowledge requests within 24 hours and complete deletion within 7 business days. We may ask one verification question (registered phone, last invoice number, etc.) to confirm your identity before processing — DPDP Act, Section 12(3) — but we will never charge a fee.

3. What is deleted

The following are permanently and irreversibly removed:

• Your user account (email, name, password hash, recovery PIN hash, biometric credentials, sessions)
• Operator profile — KIOSK/MOL ID, Kendra name, shop address, contact details, UPI ID
• All family records you created, including head-of-family details and members
• All service applications (Aadhaar, CSC, Aaple Sarkar, Maha-eSeva, etc.) and their workflow state
• All bills, invoices, and receipts generated under your account
• All uploaded documents (Aadhaar scans, address proof, photos) from our Cloudflare R2 storage
• Linked Google OAuth tokens, if you signed in with Google (revoked from our side; you should also revoke them at myaccount.google.com/permissions)
• Your subscription record (the underlying Razorpay payment records are retained — see "What is retained" below)

4. What is retained, and why

Certain records cannot be deleted on request because Indian law requires us to keep them. These are kept in a separate, restricted-access archive and are not used for any other purpose:

• Tax invoices & GST records — retained for 8 years as required by the Income Tax Act, 1961 (Section 44AA) and CGST Act, 2017 (Section 36)
• Payment records — held by Razorpay (our payment processor) under their own retention policy; deletion requests for Razorpay-side data go directly to [email protected]
• Security audit logs — IP, user-agent, and timestamp of significant actions, retained for a minimum of 1 year under DPDP Rule 8 and the IT Rules, 2021
• Backup snapshots — may contain your data until the next purge cycle (maximum 30 days); they are not accessible to any operator-facing surface

These retained records are pseudonymised where feasible — your name and contact details are replaced with the deleted-account ID — and are purged automatically once their statutory retention period expires.

5. Timeline

• In-app deletion (Method 1): the user record and all linked live data are deleted within seconds. Cascade across families, bills, applications, and R2 documents completes within 5 minutes.
• Email request (Method 2): acknowledged within 24 hours; deletion completes within 7 business days of identity verification.
• Backup purge: within 30 days.
• Statutory archive purge: automatic on expiry of the relevant retention period (see Section 4).

6. Your rights under the DPDP Act, 2023

As a Data Principal, you have the following rights under the Digital Personal Data Protection Act, 2023:

• Section 11 — Access: request a summary of the personal data we hold about you and the purposes of processing
• Section 12 — Correction & erasure: request correction of inaccurate data, completion of incomplete data, updating of out-of-date data, and erasure of data we no longer need (this page implements your erasure right)
• Section 13 — Grievance redressal: contact our Grievance Officer (below) if a request is denied or unanswered
• Section 14 — Nomination: nominate another individual to exercise these rights on your behalf in case of incapacity or death

7. Grievance Officer

If a deletion request is not processed in the timeline above, or you believe we are mishandling your data, contact our Grievance Officer appointed under the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021:

If unresolved after 30 days, you may escalate to the Data Protection Board of India under Section 27 of the DPDP Act, 2023.

8. Contact