If I am not mistaken, the GDPR requires apps to delete personal data after a set period of inactivity (e.g. 1 or 2 years), because of the Storage Limitation principle.
I wonder how other apps handle this, and if this means I would need to track users with an in-app user_id, and save each time they open the app on a backend to delete them after being inactive for 1 or 2 years.
