Device information cleanup

[TSP]

Hi, 

When a device has been unused for 90 days it no longer will log you automatically in. 

However, unless I'm missing something, there is no cleanup done when a device has been deemed as expired. 

I guess there could be other reasons for keeping it, for example the device log that is now available when you view the member in the adminCP, but I would still like for the information to be cleaned up after some time. #GDPR?

Maybe add an extra retention setting for this or let it be deleted additional three months after it has expired or something. 

[Mark]

It should no longer show anywhere after 90 days. It's kept in the database so the user doesn't get another "new device" email if they decide to use it again.