Customer Data Deletion
How to Request Deletion of Your Data
Wildix processes PBX and communication data on behalf of its Customers as a data processor under the Wildix Data Processing Agreement (DPA). This page explains what data Wildix holds, how it is deleted, and how to submit a deletion request.
This page applies to Wildix Cloud PBX customers globally. References to GDPR apply to customers in the EU/EEA. Customers in other jurisdictions have similar rights under their applicable local privacy laws.
What data does Wildix hold?
For each Cloud PBX, Wildix stores the following data on behalf of the Customer:
| Data type | Examples |
|---|---|
| Call recordings | Audio files of recorded calls |
| Voicemail messages | Voicemail audio files |
| AI call transcriptions | Text transcriptions generated by voice agents and AI features |
| Conference recordings | Wizyconf video/audio recordings |
| Call analytics | Call Detail Records (CDRs), call statistics |
| Chat attachments | Files shared in collaboration channels |
| System backups | PBX configuration backups |
Data retention during an active contract
During an active contract, data retention periods are configurable by the Customer. Customers with regulatory obligations (e.g. financial institutions required to retain call recordings under MiFID II or equivalent local regulations) can set retention periods accordingly. Wildix does not delete data before the Customer-configured retention period expires.
Automatic deletion — end of contract
When a Customer terminates their contract with Wildix, data is deleted automatically — no action required:
- The PBX and all data becomes inaccessible within 28 days of contract termination.
- Call recordings, voicemails, backups, and conference recordings are permanently deleted within 90 days.
- AI call transcriptions and call analytics data are permanently deleted within 150 days (these data types are backed up before deletion as part of our deletion verification process).
Deletion on request — GDPR / DSAR
Are you an end-user?
If your personal data is processed through a Wildix PBX operated by your employer or service provider, please contact them directly — they are the data controller responsible for handling your request. Wildix will assist them upon their request.
If you are a Customer or Partner and need to delete data for a specific end-user (for example, in response to a GDPR Article 17 right to erasure request), Wildix will assist as required by DPA §4.3.
To submit a request, open a ticket via Tech Support.
Please include:
- Company name and PBX hostname (e.g. yourcompany.wildixin.com)
- Affected user(s) and/or date range
- Data categories to be deleted (e.g. call recordings, AI transcriptions)
SLA: Wildix will complete deletion within 30 calendar days, in line with GDPR Article 17 and DPA §3.8.
On-premise PBX
For PBX systems deployed on Customer-owned hardware or virtual machines, the Customer is responsible for data deletion. Wildix’s obligations cover only data mirrored to Wildix Cloud (e.g. call analytics, if enabled).
Questions?
Contact our Privacy Officer: privacy@wildix.com.
