Described are techniques for tracking where user sensitive data has been sent (and optionally stored). Also described are techniques for ensuring user sensitive data is deleted, from all applicable locations, in response to a user command to delete its sensitive data. In at least some embodiments, a natural language processing system may cause a skill, in communication with but not implemented by the natural language processing system, to delete sensitive data.