This page describes n8n's data privacy practices.
Data protection addendum#
For Cloud versions of n8n, n8n is considered both a Controller and a Processor as defined by the GDPR. As a Processor, n8n implements policies and practices that secure the personal data you send to the platform, and includes a Data Processing Addendum as part of the company's standard Terms of Service.
The n8n Data Protection Addendum includes the Standard Contractual Clauses (SCCs). These clarify how n8n handles your data, and they update n8n's GDPR policies to cover the latest standards set by the European Commission.
You can find a list of n8n sub-processors here.
For self-hosted versions, n8n is neither a Controller nor a Processor, as we don't manage your data
Submitting a GDPR deletion request#
Email email@example.com to request data deletion.
This is a list of sub-processors authorized to process customer data for n8n's service. n8n audits each sub-processor's security controls and applicable regulations for the protection of personal data.
|Sub-processor name||Contact details||Geographic location of processing|
|Microsoft Azure||Microsoft Azure
1 Microsoft Way
Contact information: https://privacy.microsoft.com/en-GB/privacystatement#mainhowtocontactusmodule
|Germany (West Central Region)|
|Hetzner Online||Hetzner Online GmbH
Subscribe here to receive updates when n8n adds or changes a sub-processor.
GDPR for self-hosted users#
If you self-host n8n, you are responsible for deleting user data. If you need to delete data on behalf of one of your users, you can delete the respective execution. n8n recommends configuring n8n to prune execution data automatically after few days to avoid effortful GDPR request handling as much as possible. Configure this using the
EXECUTIONS_DATA_MAX_AGE environment variable. Refer to Environment variables for more information.
What n8n collects#
- Error codes and messages of failed executions (excluding any payload data, and not for custom nodes)
- Error reports for app crashes and API issues
- The graph of a workflow (types of nodes used and how they're connected)
- From node parameters:
- The 'resource' and 'operation' that a node is set to (if applicable)
- For HTTP request nodes, the domain, path, and method (with personal data anonymized)
- Data around workflow executions:
- The user ID of the user who ran the execution
- The first time a workflow loads data from an external source
- The first successful production (non-manual) workflow execution
- The domain of webhook calls, if specified (excluding subdomain).
- Details on how the UI is used (for example, navigation, nodes panel searches)
- Diagnostic information
- n8n version
- Selected settings:
- Execution variables
- OS, RAM, and CPUs
- Anonymous instance ID
- IP address
What n8n doesn't collect#
n8n doesn't collect private or sensitive information, such as:
- Personally identifiable information (except IP address)
- Credential information
- Node parameters (except 'resource' and 'operation')
- Execution data
- Sensitive settings (for example, endpoints, ports, DB connections, username/password)
- Error payloads
How collection works#
Most data is sent to n8n as events that generate it occur. Workflow execution counts and an instance pulse are sent periodically (every 6 hours).
Opting out of telemetry#
Telemetry collection is enabled by default. To disable it you can configure the following environment variables.
To opt out of telemetry events:
To opt out of checking for new versions of n8n:
See configuration for more info on how to set environment variables.
Retention and deletion of personal identifiable data#
PID (personal identifiable data) is data that's personal to you and would identify you as an individual.
n8n only retains data for as long as necessary to provide the core service.
For n8n Cloud, n8n stores your workflow code, credentials, and other data indefinitely, until you choose to delete it or close your account. The platform stores execution data according to the retention rules on your account.
n8n deletes most internal application logs and logs tied to subprocessors within 30 days. The company retains a subset of logs for longer periods where required for security investigations.
If you choose to delete your n8n account, n8n deletes all customer data and event data associated with your account. n8n deletes customer data in backups within 30 days.
Self-hosted users should have their own PID policy and data deletion processes. Refer to What you can do for more information.
n8n uses Paddle.com to process payments. When you sign up for a paid plan, Paddle transmits and stores the details of your payment method according to their security policy. n8n stores no information about your payment method.