I’ve been asked this by a customer for whom we backup their Office 365 applications for (MSP set up). The answer I thought would be a simple yes. However, it doesn’t seem that simple, from https://documentation.commvault.com/11.23/essential/104288_deleting_mail_messages_in_exchange_mailbox.html it says the deleted item is hidden from the user and an admin can view and restore. We have retention policy of 1 year based on deletion. The customer will be able to delete from the required mailbox and the items can be “deleted” from browsing for restore. However, that is not deleting the data which GDPR requires.
Is the documentation correct or is the mail really deleted from the backup (archive) image(s)? Or, is there some purge function we can invoke?