Google Analytics is asking me to review the data retention settings related to GDPR. What do I need to do?

TL;DR: Since DoctorLogic only collects standard reporting data, which is based on aggregated data, the data retention controls are not something that need to be reviewed or changed at this time.

Long Answer: According to Google, “the Google Analytics Data Retention controls give you the ability to set the amount of time before user-level and event-level data stored by Google Analytics is automatically deleted from Analytics’ servers.” DoctorLogic manages a dedicated Google Analytics account to capture visitor analytics and data from your site. Since we only collect standard reporting data, which is based on aggregated data, the data retention controls are not something that need to be reviewed or changed at this time. Keep in mind that DoctorLogic also imports analytics data into our own databases which have longer data retention policies in place. This means that even if Google deletes the data and/or the account, DoctorLogic will still have a snapshot of the data from that point in time.

If you manage you're own, seperate Google Analytics account and have it associated with your DoctorLogic website you may want to review the data retention settings for that specific analytics account. This is particularly important if your implementation leverages user-level and event-level data associated with cookies, user-identifiers (e.g., User-ID) or advertising identifiers (e.g., DoubleClick cookies, Android’s Advertising ID, Apple’s Identifier for Advertisers). Google's default data retention is 26-months.