I understand the current process is name and email is stored indefinitely, unless the user sends you a support email to have their details removed. This, in my opinion, is poor.
I'm not a GDPR expert but even if the current process does not break GDPR rules, it doesn't really feel in the spirit of them.
When entering personal details, you should have a check box
[ ] Please tick if you would like your details to be retained for future events. Otherwise, they will be deleted immediately following the event.
Please sign in to leave a comment.