When a user requests deletion from my wishlist service, I fully delete everything, not only to be GDPR-compliant, but because it's the right thing to do. This includes:
- Their account changes and passports
- Their own wishlists, including all items added
- Any claims they've made on other wishlists
- Any item suggestions they've added to other wishlists
- The checked status of any item suggestions they've checked on other wishlists
- Removing them as partners on collaborative wishlists created by others
- The user
I'm not sure why someone would _want_ to keep user data around, as that seems more of a liability than an asset.
- Their account changes and passports
- Their own wishlists, including all items added
- Any claims they've made on other wishlists
- Any item suggestions they've added to other wishlists
- The checked status of any item suggestions they've checked on other wishlists
- Removing them as partners on collaborative wishlists created by others
- The user
I'm not sure why someone would _want_ to keep user data around, as that seems more of a liability than an asset.