GDPR Article 17

Make any company delete your data.

Generate a formal erasure request, pre-filled with the right legal references and the company's privacy contact. Copy it. Send it. They legally have 30 days to comply.

Company

✓ = email verified against the company's published privacy policy. Entries without the tick are pattern-derived (privacy@<domain>) and may bounce. Double-check on the company's site if so.

Don't see yours? Use a custom one.

Your full name

Your account email

Account ID (optional)

Your country of residence

Your deletion request

Open in mail client

✓ Copied to clipboard

How GDPR erasure actually works

Article 17 of the General Data Protection Regulation gives every EU/EEA resident the right to ask any company holding their personal data to delete it. The so-called "right to be forgotten." The company has 30 days to respond. They can refuse only on specific legal grounds (active contract, legal obligation, freedom of expression).

The process is supposed to be free and not require justification. In practice many companies bury the option behind multiple form pages or pretend not to understand the request. A formal letter quoting the right articles cuts through that.

After you send it

Save the email. Your "sent" folder is your evidence trail.
Wait 30 days. That's the legal response window under Article 12(3).
If they don't respond, file a complaint with your country's data protection authority. It costs you nothing and they take it seriously.
If they refuse, ask them to specify the legal basis under Article 17(3). Most refusals don't survive scrutiny.

Disclaimer

This is a template, not legal advice. The contact emails are sourced from companies' published privacy pages and may go out of date. When in doubt, double-check the addressee on the company's own website. For complex cases, consult a privacy lawyer.