Table of Contents
Security & Data Retention
Security & Data Retention
Great Question applies security best practices at every layer — from infrastructure and authentication to internal processes — and gives Admins configurable tools to manage data retention and compliance.
What is Security & Data Retention?
Security & Data Retention covers two areas of your Great Question workspace: the security controls that protect your data, and the retention rules that let you automatically delete recordings or candidate data after a configurable time period. Together, these features help you meet compliance requirements like GDPR, CCPA, and HIPAA while keeping your research operations running smoothly.
Why It Matters
Protect participant data at every layer. Great Question uses SOC 2 Type II certified controls, TLS encryption in transit, AES-256 encryption at rest, and field-level encryption for sensitive credentials — so your data is protected whether it is moving or stored.
Stay compliant with privacy regulations. Built-in support for GDPR, CCPA, and HIPAA means you can honor participant data rights, execute data processing agreements, and enforce retention policies without relying on manual processes.
Control exactly how long data lives in your workspace. Configurable retention rules let Admins set custom deletion schedules for recordings and candidates, supporting data minimization without removing the research context you need.
Enforce access at every level. Role-based access controls, team-scoped permissions, and SAML SSO.
Infrastructure and Encryption
Great Question's infrastructure is hosted on Heroku, using SOC 1, SOC 2, and SOC 3 certified data centers in the US-1 West region. All data in transit is encrypted with TLS, and data at rest uses AES-256 block-level encryption. Security posture is continuously monitored through Vanta, with regular penetration tests and policy reviews.
Authentication
Great Question supports multiple authentication methods that can be configured at the account level.
Password — Passwords must be 8 to 70 characters and include at least one uppercase letter, one lowercase letter, one digit, and one special character.
Google OAuth — Sign in using your Google account.
OpenID Connect — Allows users to sign in with their Microsoft accounts.
SAML SSO — Supported identity providers include Okta, Azure AD, OneLogin, JumpCloud, and Google. Multiple SAML providers can be configured per account.
Roles and Access Controls
Great Question uses a role-based access control system with four system roles:
Role | Access Level |
Admin | Full access. Can manage settings, billing, security, and assign any role. |
Creator | Can create and manage studies, candidates, and repository content. |
Observer | Read-only access to studies and the repository. |
Compliance
SOC 2 Type II
Great Question has completed SOC 2 Type I and Type II audits, with continuous monitoring through Vanta.
GDPR and CCPA
Great Question supports your compliance needs as both a data processor and a partner in protecting participant information.
Right to Access and Portability — Request data exports via [email protected].
Right to be Forgotten — Full deletion across our systems and sub-processors.
Right to Object — Participants can opt out per study or across the account.
Right to Rectification — Users can make updates directly or by contacting support.
Data Processing Agreements (DPAs)
If your legal or security team requires a DPA, contact support to request one. Enterprise plans support review and signing of custom DPAs.
HIPAA
HIPAA compliance is available for qualifying accounts. Contact your Customer Success Manager or Support for details.
Data Retention
Admins can create data retention rules that automatically delete recordings or candidate data after a configurable time period. This supports data minimization and compliance with privacy standards such as GDPR and CCPA.
Configurable Retention Periods
When creating a rule, you can choose from preset durations — 1 month, 2 months, 3 months, 6 months, 1 year, or 2 years — or set a custom duration of any value up to 100 days, weeks, months, or years. Each rule applies to a specific resource type and is scoped to your account.
Resource Types
Data retention rules can target Recordings or Candidates.
Recordings — When a recording is deleted, the following associated data is also removed: transcripts, AI-generated summaries and chapters, highlights linked to the recording, and video files and thumbnails.
Candidates — When a candidate is deleted via a retention rule, screener responses are destroyed, clips are removed from highlight reels (reels are automatically restitched), participations and linked recordings are discarded, and PII (name, email, phone number) is anonymized.
What Stays Intact
Studies, incentive records, data retention audit logs, and the retention rules themselves are not affected by data retention deletions.
How Deletion Works
Data retention runs as a two-stage background process. First, the system identifies records that have exceeded their retention period each day and marks them for deletion in an audit log. Then, marked records are processed and soft-deleted. Audit logs track the status of each deletion as pending, completed, or failed. Records are never deleted before the rule's activation date, ensuring no retroactive deletions occur immediately upon rule creation.
Audit Trail
Every data retention action is logged in a dedicated audit trail. Logs track when a record was scheduled for deletion, when it was actually deleted, whether it succeeded or failed, and who approved the rule. Audit logs are permanently retained even after the associated data is removed.
How to Set Up Data Retention Rules
- Click your name in the bottom-left corner and select Account.
- Navigate to Governance > Data Retention.
- Click New Rule to create a retention rule.
- Select the resource type (Recording or Candidate), set the retention period, and preview which records will be affected.
- Activate the rule. You can pause, resume, or archive rules at any time.
Rule Statuses
Status | Meaning |
Draft | Rule is created but not yet active. No data will be deleted. |
Active | Rule is running. Records exceeding the retention period will be automatically deleted. |
Paused | Rule is temporarily stopped. No new deletions will occur, but existing audit logs are preserved. |
Archived | Rule is permanently deactivated. |
Troubleshooting
Data Retention
Issue | Resolution |
I do not see the Data Retention settings in my account. | Only Admins can view and manage data retention settings. If you are a Creator or Observer, ask your account Admin for access. If you are an Admin and still do not see the settings, contact support — the feature may need to be enabled for your account. |
I created a rule but nothing is being deleted. | Only rules with an Active status trigger deletions. Rules in Draft, Paused, or Archived status will not process any records. Deletions run on a daily overnight schedule, so records are not removed immediately after activation. Records must exceed the retention period and the rule's activation date before they are deleted. Check the rule's audit log for any entries with a Failed status. |
A recording was deleted but I still see the study and candidate. | This is expected. Recording retention only removes the recording file, its transcript, highlights linked to that recording, and any AI-generated summaries. Studies, candidate profiles, and incentive records are not affected. |
A candidate was deleted but I still see their participation in a study. | When a candidate is removed via a retention rule, their PII (name, email, phone) is anonymized rather than fully erased. You may see anonymized placeholder data in participation records. The participation itself is soft-deleted. |
My highlight reel looks different after a data retention deletion. | When a recording is deleted, any clips from that recording are automatically removed from highlight reels, and the reel is restitched. This is expected behavior. |
Authentication
Issue | Resolution |
I cannot log in after my organization enabled SAML SSO. | If your account has been configured for SAML-only authentication, password and Google login may be disabled. Use the SSO login option on the sign-in page. If you are receiving a SAML error, confirm with your IT admin that your identity provider is correctly configured and that your user has been assigned to the Great Question app in the IdP. |
Permissions and Access
Issue | Resolution |
I cannot see certain candidates or repository items. | Your account may have Team Access Control enabled, which restricts candidate and repository access based on team membership. Ask your Admin to verify your team assignments. |
I cannot see participant email addresses or phone numbers. | PII fields are hidden by default for users without explicit PII viewing permissions. Ask your Admin to verify your role and permissions. |
Still need help? Contact us at [email protected] — we're happy to help!
