Skip to main content

Information for childcare professionals working in Kingston and Richmond

GDPR

Retention periods for records The General Data Protection Regulation (GDPR) 2018 does not dictate how long you should keep personal data. The principle of storage limitation says:

  • You must not keep personal data for longer than you need it.
  • You need to think about – and be able to justify – how long you keep personal data. This will depend on your purposes for holding the data.
  • You need a policy setting standard retention periods wherever possible, to comply with documentation requirements.
  • You should also periodically review the data you hold, and erase or anonymise it when you no longer need it.
  • You must carefully consider any challenges to your retention of data. Individuals have a right to erasure if you no longer need the data.
  • You can keep personal data for longer if you are only keeping it for public interest archiving, scientific or historical research, or statistical purposes

Retention of Records Guidance (pdf)