Data Retention
Last updated June 18, 2026
Uploaded Archives
Raw ZIP archives are stored only as local scan inputs for the MVP. When an owner or admin deletes a scan, ShipFix removes the stored upload file and scan workspace artifacts associated with that scan.
Scan Reports
Reports, findings, scan logs, fix prompts, and share tokens remain available until the scan is deleted by the owner or an admin. Deleting a scan removes the owner report and invalidates any public share page.
Share Links
Owners and admins can revoke or regenerate report share links. Revoking a link makes the old public URL invalid without deleting the owner report.
Operational Logs
Audit events and rate-limit events are retained for abuse prevention, support, billing reconciliation, and incident review. Scan logs are removed when the scan is deleted; audit events are not deleted by scan deletion.
Backups
SQLite backups are operator-managed and stored outside Git in the local ignored backups directory. Production deployments should configure a separate encrypted backup destination and retention schedule.
Deletion Requests
Scan deletion is available from the report danger zone for authenticated owners and from the admin scan console. If you cannot access a report, contact the operator with the account email, scan id, or share link.