Search

How can we help?

Icon

Frequently asked questions on data retention

  • 10 February 2025
  • Privacy and Data Protection

Data retention is the storage of data for a specific period, guided by legal, operational, and regulatory considerations. While data minimisation principles advocate for limiting the collection and storage of personal data, retaining certain information is often necessary for various purposes.

In this podcast, Jesse Akiwumi and Harry Berryman, members of the Data Protection team at Clarkslegal, address the top frequently asked questions we receive about data retention. These questions include:

  • How long can an organisation lawfully keep data?
  • What happens to data that is shared with others?
  • Why is it important to limit the storage of data?
  • Do organisations need policies to govern what data is retained and what is destroyed?
  • What are the consequences of wrongfully deleting information? Can an organisation face criminal charges for deleting or altering information that an individual has requested?
  • Can an organisation destroy or amend information after responding to a request?

If your organisation needs help drafting a data retention policy or employee training on data protection requirements, please contact our Data Protection Lawyers.

Subscribe Now

Meet the speakers
Harry Berryman

Solicitor

View profile

+44 118 960 4636

About this podcast

  • Subject
    Frequently asked questions on data retention
  • Author
    Harry Berryman
  • Expertise
    Privacy and Data Protection
  • Published
    10 February 2025

Read, listen and watch our latest insights

art
  • 19 May 2026
  • Privacy and Data Protection

New Complaints Procedure for Data Protection Coming in June – Are You Ready?

The Data (Use and Access) Act 2025 (the “Act”) received Royal Assent last year and introduces slight reforms to the UK’s data protection regime.

art
  • 06 May 2026
  • Privacy and Data Protection

Use of Personal Devices at Work: Why a Bring Your Own Device Policy is Essential

If you have employees who bring their own devices into the workplace and use said devices to deal with company data, you may want to consider a Bring Your Own Device (“BYOD”) policy.
art
  • 29 April 2026
  • Privacy and Data Protection

UK Data Protection – what’s new?

Having come into force on 19 June 2025, it comes as no surprise that we are now seeing the effects of the Data (Use and Access) Act 2025 (‘DUAA’). This article highlights a few of DUAA’s fundamental reforms, delves into one in particular, and examines how this will impact the recruitment sphere.
art
  • 10 April 2026
  • Privacy and Data Protection

Is your tech discriminatory?

Employers are increasingly reliant on technology to assist with all kinds of functions – from strengthening security to streamlining recruitment processes.

art
  • 01 April 2026
  • Privacy and Data Protection

Recognising DSARs: top tips for organisations

The UK GDPR grants Data Subjects, who are the individuals to whom the personal data relates, rights over their personal data, including the rights of access, correction and erasure.

art
  • 19 March 2026
  • Privacy and Data Protection

WhatsApp in the Workplace

This article explores the potential risks of using WhatsApp for workplace communications, the implications for GDPR compliance and under UK legislation, and provides practical tips for employers to mitigate these risks.
See More

Get in touch

+44 118 958 5321