Every Kodori member can download their own data. Open /settings/account and click "Download my data as ZIP" in the "Export your data" section.
What's in the archive:
- **`documents/`** — every document you authored that you can still read (permission-trimmed via canReadDocument; covers the rare case where you authored something and were later denied on it via an admin-applied deny rule). - **`documents.csv`** — manifest mapping each archive filename to its document id, MIME type, sensitivity, version hash, and created-at. - **`my-audit-events.json`** — every audit event where you were the actor. (Events about you performed by others — a role change applied to you, etc. — live on the workspace's per-tenant export, not yours.) - **`my-agent-conversations.json`** — your saved agent conversations: titles, messages, tool-call records. - **`profile.json`** — your user record (id, email, role, tenant id, external id, created-at). - **`manifest.json`** — top-level summary, counts per artifact, truncation flags. - **`README.txt`** — describes the layout and how to read it.
Caps: 500 documents · 2 GB · 25,000 audit events. The manifest flags any cap that tripped.
This export covers the user-side of GDPR — Article 15 (Right of Access) and Article 20 (Right of Data Portability). You don't need owner / admin permission to run it. The auth check is "you are signed in", nothing more.
Need MORE than your own data? The workspace owner can run the per-tenant export at /settings/account → "Export this workspace" — see /help/export-tenant-as-zip for the spec.
Need your account DELETED rather than exported? Your workspace owner removes you from /members. Per the documented retention model, removal moves you to a fresh personal tenant rather than hard-deleting (the user record is referenced by document.created_by, audit events, etc.). Hard-deletion is available on request via security@kumokodo.ai — typically completed within 30 days of a confirmed identity check.