Expert Advice Community

Home / EU GDPR / Keeping personal data

Guest

Keeping personal data

EU GDPR
  Quote
Guest
Guest user Created:   Oct 09, 2018 Last commented:   Oct 09, 2018

Keeping personal data

EU GDPR
I just wanted to ask under GDPR keeping personal data for a length of time is that decided by us as organisation?
0 0

Assign topic to the user

EU GDPR & ISO 27001 INTEGRATED DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

EU GDPR & ISO 27001 INTEGRATED DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Andrei Hanganu Oct 09, 2018

Answer:

Based on the provisions of the EU GDPR, personal data should be kept in an identifiable format for no longer than is necessary (with exceptions for public interest, scientific, historical or statistical purposes). So, unless you have a lawful obligation to keep personal data for a longer time, it should be deleted or anonymized.

You can set up within your organization a general retention period based on the purposes for which you collect and proceed the data.

Furthermore, you can find a data retention policy in our EU GDPR Documentation Toolkit (https://advisera.com/eugdpracademy/eu-gdpr-documentation-toolkit/).

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Oct 09, 2018

Oct 09, 2018

Suggested Topics
Guest user Created:   Jun 14, 2018 EU GDPR
Replies: 1
0 0

Keeping personal data of clients
Guest user Created:   Apr 28, 2018 EU GDPR
Replies: 1
0 0

ISO 27001/GDPR
Guest user Created:   Dec 10, 2021 EU GDPR
Replies: 1
0 0

Data protection