Back
EN | ES

Export your data

Under GDPR Article 15 (and good engineering hygiene) you have the right to a copy of every piece of data we hold about you. Zendrhax ships that as a one-click download.

What the export contains

A single JSON file with three top-level sections:

  • manifest — metadata: schema version, your user id, the UTC timestamp of the export, and the list of data sources included.
  • core — your profile, the workspaces you own, your audit log entries, your active sessions, login history, API keys, your workspace memberships, your app access, and announcement reads.
  • modules — one section per app that stores personal data keyed to you. The JSON key is modules for historical reasons (apps used to be called modules internally); the slug under it is the app's identifier — e.g. modules.invoices.

The shape is stable — once we declare a schema_version: 1, the top-level keys don't change.

How to download

  1. Sign in.
  2. Go to /me/data-export directly from your browser address bar.

The platform builds the JSON, streams it back as a file download (data-export-user-<id>-<timestamp>.json), and logs the request in the audit trail.

Rate limit: one successful export every 24 hours. If you try again sooner the platform returns HTTP 429 with a Retry-After header pointing at the next allowed time.

What's NOT in the export

  • Other users' data — only what's keyed to you.
  • Workspace-level data you don't own but use (an invoice your colleague created, a client they added). That belongs to the workspace, not to you personally.
  • Passwords and 2FA secrets (we wouldn't recognise them ourselves — they're stored as cryptographic hashes).

How apps contribute

Each app declares what it stores about a user and contributes its own slice to your export. If a workspace has activated several apps and you've authored data in each, all of them surface under modules.{slug} in the same archive.

Compliance backstop

If you need a signed letter on official letterhead confirming the export contents — for a court, regulator, or B2B due diligence — write to support@zendrhax.com with the request. We'll respond within the GDPR-required 30 days.

  • Delete your account — Article 17 (right to erasure).