Not really, or at least I can not find it:
Part 6: Data deletion says nothing about when the data of a visitor will be deleted. Deletion on request is not enough. You have to specify how long you need the data of a visitor to secure my site and when is it deleted afterwards (automatically).
E.G. How long will the IP address of a visitor be used and when is it deleted afterwards or transformed into anonymous form?
If a visitor asks: ‘How long do you store my IP address’, the answer: ‘As long as I need it’, is not valid. The answer should be: ‘Your IP address is stored for 30 days in order to … and automatically deleted afterwards’.