GDPR API
Endpoints for GDPR compliance including data export, data deletion, and audit capabilities. All endpoints require a tenant API key.
GET
/api/v1/tenant/gdpr/data-exportTenant Data Summary
Returns a summary of all data held for your tenant.
GET
/api/v1/tenant/gdpr/users/:userId/exportExport User Data
Export all data for a specific user (GDPR Subject Access Request).
POST
/api/v1/tenant/gdpr/users/:userId/export-requestRequest Async Export
Request an asynchronous data export. Optionally specify format and delivery email. Returns 202 Accepted.
bash
curl -X POST "https://api.puzzlesection.app/api/v1/tenant/gdpr/users/user-uuid/export-request" \ -H "X-API-Key: ps_live_xxxxxxxxxxxx" \ -H "Content-Type: application/json" \ -d '{ "format": "json", "email": "user@example.com" }'DELETE
/api/v1/tenant/gdpr/users/:userIdRequest User Deletion
Request deletion of all user data (GDPR Right to Erasure). Requires confirmation email. Returns 202 Accepted and processes asynchronously.
bash
curl -X DELETE "https://api.puzzlesection.app/api/v1/tenant/gdpr/users/user-uuid" \ -H "X-API-Key: ps_live_xxxxxxxxxxxx" \ -H "Content-Type: application/json" \ -d '{ "confirmEmail": "user@example.com", "reason": "User requested deletion" }'POST
/api/v1/tenant/gdpr/users/:userId/deletion-cancelCancel Deletion
Cancel a pending deletion request before it is processed.