Organizations must ensure their records retention schedule is compliant with the data protection requirements in the jurisdictions where they operate. The good news is that these laws are consistent with the objectives of existing retention schedules. Organizations are urged to retain only records of value and dispose of records with little or no value.
Organizations can update their records retention schedule to incorporate data protection records, reflect the actual records created and retained, and limit the retention period of personal data.
This article was originally published in ARMA Magazine.
- Data security
- Information governance
- Records management
- Show all 5