Site icon SSL.com

How to Deactivate Your SSL.com Account and Request Data Deletion

Managing digital certificates requires accurate account records, secure validation history, and reliable audit trails. In some cases, you may no longer need an SSL.com account, may have created a duplicate account by mistake, or may want to remove stored information from an account.

Because SSL.com is a publicly trusted Certificate Authority (CA), some account and certificate-related records must be retained for security, compliance, audit, and legal purposes. This means an SSL.com account cannot always be permanently deleted in the same way as a typical consumer website account. Instead, SSL.com provides a secure account deactivation and privacy request process that helps protect your information while maintaining required CA compliance obligations.

This guide explains how SSL.com handles account deactivation and data deletion requests, what information may need to be retained, and how to submit a request.

Who This Guide Is For

This guide is intended for SSL.com customers who want to:

SSL.com processes eligible privacy requests in accordance with applicable privacy regulations, which include the EU General Data Protection Regulation (GDPR), UK GDPR, California Consumer Privacy Act (CCPA), LGPD, and similar data protection laws.

Why SSL.com May Need to Retain Some Account Data

SSL.com issues publicly trusted digital certificates. As part of that role, SSL.com must maintain certain records related to certificate issuance, validation, certificate lifecycle events, customer transactions, and security activity.

These records support:

The CA/Browser Forum Baseline Requirements establish requirements for publicly trusted TLS certificates and are a key compliance framework for Certificate Authorities. SSL.com also publishes its Certificate Policy and Certification Practice Statement (CP/CPS) in its public CA repository, which describes operational, validation, audit, and retention practices.

As a result, SSL.com may not be able to immediately erase all information connected to an account, especially if the account contains active certificates or certificates that recently expired or were revoked.

Account Deactivation vs. Data Deletion

Account deactivation and data deletion are related, but they are not always the same.

Account deactivation disables future use of the account. Once deactivated, the account can no longer be used to place orders, manage certificates, or access customer portal functions.

Data deletion refers to the removal of eligible personal data or account-related records, subject to applicable legal, regulatory, security, and Certificate Authority retention obligations.

In some cases, SSL.com may be able to delete certain records. In other cases, SSL.com may need to retain, archive, or place data beyond active use until the applicable retention period has been satisfied.

What Happens When an SSL.com Account Is Deactivated?

Once an SSL.com account is deactivated:

Account deactivation is commonly used when a customer created a duplicate account, no longer needs an SSL.com account, wants to remove payment information from an unused account, or wants to disable access to an inactive account.

Before You Request Account Deactivation

Before contacting SSL.com Support, review the following items to avoid delays or accidental loss of access.

1. Remove Stored Payment Information

If you have a saved credit card or billing profile, remove it before requesting account deactivation.

To remove a stored payment method:

  1. Log in to your SSL.com account.
  2. Go to Dashboard.
  3. Navigate to Manage Billing Profiles.
  4. Locate the saved payment method.
  5. Select Delete.

Removing stored payment information helps prevent future charges from being applied to the account.

2. Review Active Certificates

Before requesting deactivation, check whether the account contains certificates you still need to manage.

Do not request account deactivation if you still need to:

  1. Download, reissue, renew, revoke, or manage active certificates.
  2. Access validation records.
  3. Manage certificate contacts or order details.
  4. Maintain access for your organization’s IT or security team.

If you no longer need the certificates associated with the account, you may need to complete any required certificate management tasks before requesting deactivation.

3. Confirm the Correct Account

If you created multiple SSL.com accounts, confirm which account should be deactivated.

This is especially important if one account is still in use and another account is a duplicate. Providing the correct email address helps SSL.com Support prevent accidental deactivation of the wrong account.

How to Request Account Deactivation or Data Deletion

If you want to submit a data deletion request or another data subject rights request, email privacy@ssl.com or support@ssl.com and clearly state that you are requesting deletion of your personal data. You can also reach our privacy team through the live chat on ssl.com.

To protect your account, SSL.com will need to verify your identity before processing the request.

You will be asked to provide two of the following:

  1. The email address associated with your SSL.com account.
  2. Your SSL.com Account ID.
  3. An Order ID for a certificate purchased through the account.

SSL.com uses this verification step to help ensure that account or certificate data is not disclosed, altered, or disabled based on an unauthorized request.

How SSL.com Reviews Account Deactivation and Data Deletion Requests

SSL.com generally reviews data deletion requests using the following process.

Phase 1: Request Received

SSL.com receives your privacy or data deletion request and routes it to the appropriate team for review.

Phase 2: Acknowledgment

SSL.com acknowledges the request and provides next steps. You may be asked to wait for further instructions before sending additional details.

Phase 3: Identity Verification

SSL.com verifies that the requester is authorized to act on the account. This protects customer accounts, certificates, billing records, and validation data from unauthorized changes.

Phase 4: Certificate and Account Review

SSL.com reviews the account to determine whether it contains:

  1. Active certificates.
  2. Recently expired certificates.
  3. Recently revoked certificates.
  4. Validation records subject to retention requirements.
  5. Billing, support, or legal records that may need to be retained.

If the account contains records that must be retained, SSL.com may not be able to complete full deletion immediately.

Phase 5: Eligible Data Processing

For data that is eligible for deletion, SSL.com processes the request according to applicable privacy, security, legal, and compliance requirements.

Phase 6: Retained or Archived Data Review

If some data cannot yet be deleted, SSL.com may retain it in accordance with applicable CA, legal, security, or audit obligations. Where appropriate, data may be removed from public-facing systems and placed into protected internal systems until retention obligations have been fulfilled.

Phase 7: Completion Notification

After the review is complete, SSL.com will notify you of the outcome. The response may explain:

  1. What data was deleted.
  2. What data, if any, had to be retained.
  3. Why retained data could not be deleted immediately.
  4. Whether retained data has been archived or placed beyond active use.
  5. How to contact SSL.com with additional questions.

Why a Data Deletion Request May Not Be Completed Immediately

SSL.com may be unable to immediately complete a full deletion request if the account contains active certificates or certificate records that remain subject to retention requirements.

This may include records related to:

Where applicable, SSL.com may retain required records until the relevant retention period has passed. After that period, eligible data may be reviewed for deletion according to SSL.com’s data retention policies.

Deactivating a Duplicate SSL.com Account

If you accidentally created a second SSL.com account, you can request deactivation of the duplicate account while keeping your primary account active.

When contacting SSL.com Support, provide:

  1. The email address of the duplicate account.
  2. Confirmation that this is the account you want deactivated.
  3. Confirmation that the duplicate account does not contain certificates, subscriptions, or records you still need.
  4. The email address of your primary account, if helpful for clarification.

After verification, SSL.com can disable the duplicate account while your primary account remains available.

Frequently Asked Questions

Can I delete my SSL.com account from the customer portal?

No. Account deletion is not available directly through the SSL.com customer portal. Account deactivation and data deletion requests must be reviewed and processed by SSL.com Support or the SSL.com privacy team.

Will account deactivation stop future charges?

Yes, once stored billing information has been removed and the account has been deactivated, the disabled account can no longer be used for future orders or billing activity.

Can SSL.com completely erase all my account data?

Not always. SSL.com may need to retain certain records for Certificate Authority compliance, audit, security, fraud prevention, legal, or regulatory reasons. Eligible data may be deleted, while required records may need to be retained until applicable obligations are satisfied.

What happens to inactive accounts?

Inactive accounts are retained according to SSL.com’s applicable retention requirements. Over time, inactive account data may be archived or purged according to SSL.com’s data retention policies.

What if I still have active certificates?

If your account contains active certificates that you still need, do not request account deactivation until you have completed any required certificate management tasks. Deactivating the account may prevent you from managing certificates through the customer portal.

Who should I contact for account deactivation?

For account deactivation and data deletion, contact:

support@ssl.com or privacy@ssl.com

Conclusion

SSL.com provides a secure process for customers who need to deactivate an unused account, disable a duplicate account, remove billing information, or submit a privacy request. While SSL.com may not be able to immediately delete all account records due to Certificate Authority compliance, audit, security, and legal requirements, eligible data deletion requests are reviewed carefully and processed according to applicable privacy laws and retention obligations.

By removing stored payment information, reviewing active certificates, and contacting the appropriate SSL.com team, you can confidently retire an unused account while preserving the security and compliance standards required for publicly trusted digital certificates.

Exit mobile version