GDPR: Data Retention Policy
This hotel booking engine is owned and run by Roomex Limited.
- The purpose of this policy
Roomex Limited (“Roomex”) is committed to complying with our data protection obligations. In this context, and to achieve consistency and excellence of service, we believe that it is important to have a policy setting out how we manage document retention.
The General Data Protection Regulation (the GDPR) and the Data Protection Act 2018 impose obligations on us, as a Data Controller, to process personal data in a fair manner which notifies data subjects of the purposes of data processing and to retain the data for no longer than is necessary to achieve those purposes.
Under these rules, individuals have a right to be informed about how their personal data is processed. The GDPR and Data Protection Act set out the information that we should supply to data subjects and when data subjects should be informed of this information. We are obliged to provide individuals with information on our retention periods or criteria used to determine the retention periods.
1.1. Grounds for processing
Under the GDPR, Roomex are required to provide data subjects with the lawful basis that they are relying on for processing personal data.
The legal grounds for processing personal data are as follows:
- Performance of a contract;
- Legal obligation;
- Vital interest;
- Public interest; or
- Legitimate interests.
Explicit consent is required where special categories, also known as sensitive personal data are being processed.
Roomex may be able to rely a number of legal bases for collecting personal data. For example, as employers, Roomex can justify processing an employee’s personal data as necessary for the performance of a contract and as part of a statutory requirement.
If there is no justification for retaining personal information, then that information should be routinely deleted. Information should never be kept "just in case" or because it “always has been kept”. If we want to retain information about our users of Roomex services to help us to provide a better service to them in the future, we must obtain their consent in advance.
1.2. Further processing
Further retention of the personal data should be lawful only when it is compatible with the purposes for which it was originally collected. In this case no separate legal basis is required- it should be relied on where it is necessary, for exercising the right of freedom of expression and information, for compliance with a legal obligation, for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller, on the grounds of public interest in the area of public health, for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes, or for the establishment, exercise or defence of legal claims.1.3. Right of erasure
Individuals have the right to have their personal data erased and no longer processed in the following circumstances:
- where the personal data are no longer necessary in relation to the purposes for which they are collected or otherwise processed,
- where a data subject has withdrawn his or her consent or objects to the processing of personal data concerning him or her, or
- where the processing of his or her personal data does not otherwise comply with the GDPR.
This right is relevant in particular where the data subject has given his or her consent as a child and is not fully aware of the risks involved by the processing, and later wants to remove such personal data, especially on the internet.
The data subject should be able to exercise that right notwithstanding the fact that he or she is no longer a child.
- Document Retention Procedure
We are required to retain certain records, usually for a specific amount of time, for statutory purposes. The accidental or intentional destruction of these records during their specified retention periods could result in the following consequences:
- Fines and penalties.
- Loss of rights.
- Obstruction of justice.
- Contempt of court.
- Disadvantages in litigation.
We must retain certain records because they contain information that:
- Have enduring business value (for example, they provide a record of a business transaction, evidence Roomex’s rights or obligations, protect our legal interests or ensure operational continuity.)
- Must be kept in order to satisfy legal, accounting or other regulatory requirements.
We must balance these requirements with our statutory obligation to only keep records for the period required and to comply with data minimisation principles. The retention schedule below sets out the relevant periods for the retention of Roomex’s documents.
- Types of Documents
This policy explains the differences among records, disposable information, personal data and confidential information belonging to others.3.4. Records
A record is any type of information created, received or transmitted in the transaction of Roomex business, regardless of physical format. Examples of where the various types of information are located are:
- Appointment books and calendars.
- Audio and video recordings (including CCTV).
- Computer programs and software.
- Electronic files.
- Handwritten notes.
- Letters and other correspondence.
- Detachable devices such as USB and memory sticks.
- Magnetic tape.
- Memory in mobile phones and PDAs.
- Online postings, such as on Facebook, Twitter etc.
- Performance reviews.
- Excel spreadsheets
- Other identifiable repositories where documents are kept.
Therefore, any paper records and electronic files, that are part of any of the categories listed in the Records Retention Schedule contained in the Appendix to this policy, must be retained for the amount of time indicated in the Records Retention Schedule.
A record must not be retained beyond the period indicated in the Record Retention Schedule, unless a valid business reason (or a litigation hold or other special situation) calls for its continued retention. If you are unsure whether to retain a certain record, contact firstname.lastname@example.org.
3.5. Disposable Information
Disposable information consists of data that may be discarded or deleted at the discretion of the user once it has served its temporary useful purpose and/or data that may be safely destroyed because it is not a record as defined by this policy. Examples may include:
- Duplicates of originals that have not written notes on them.
- Preliminary drafts of letters, memoranda, reports, worksheets and informal notes that do not represent significant steps or decisions in the preparation of an official record.
- Books, periodicals, manuals, training binders and other printed materials obtained from sources outside of Roomex and retained primarily for reference purposes.
- Spam and junk mail.
- Back up data for technical purposes.
3.1. Personal Data
Personal Data is defined as any data which can identify an individual either on its own or when combined and linked with other data which we possess. Some examples of personal data include names and addresses, email addresses, CVs, details of previous employment, medical records and references. We have specific obligations relating to personal data as set out in the GDPR.
- The role of Data Protection in Records Management
Our senior management is responsible for identifying the documents that Roomex must or should retain, and determining, in collaboration with other departments within Roomex, the proper period of retention. The responsibilities include:
- Arranging for the storage and retrieval of records, coordinating with outside agencies where appropriate.
- Handling the destruction of records whose retention period has expired.
- Planning, developing and prescribing document disposal policies, systems, standards and procedures.
- Developing and implementing measures to record what information Roomex has and where it is stored, that only authorised users have access to the information, and that Roomex keeps only the information it needs, thereby efficiently using space.
- Establishing protocols for filing and storage equipment and recordkeeping supplies.
- Identifying essential records and establishing a disaster plan for each office and department to ensure maximum availability of Roomex’s records in order to re-establish operations quickly and with minimal interruption and expense.
- Periodically reviewing the records retention schedules and legislation to determine if Roomex’s document management program and its Records Retention Schedule is in compliance with legislation.
- In conjunction with the HR Department explaining to employees their duties relating to the document management program.
- Ensuring that the maintenance, preservation, microfilming, computer disk storage, destruction or other disposition of Roomex’s records is carried out in accordance with this policy, the procedures of the document management program and our legal requirements.
- How to Store and Destroy Records
Roomex’s records must be stored in a safe, secure and accessible manner. Any documents and financial files that are essential to our business operations during an emergency must be duplicated and/or backed up at least once per week and maintained off site.
Roomex’s Records Management Officer is responsible for the process of identifying records that have met their required retention period and supervising their destruction. The destruction of personal data, confidential, financial and personnel-related records must be conducted by shredding. The destruction of electronic records must be coordinated with the IT Department or in conjunction with Roomex’s I.T service provider.
Any documents subject to litigation hold must not be destroyed.
- Questions About the Policy
Any questions about this policy should be referred to email@example.com.
Record Retention Schedule
In this policy Roomex establishes retention or destruction schedules or procedures for specific categories of records. This is done to ensure legal compliance and accomplish other objectives, such as protecting intellectual property and controlling costs. Employees should give special consideration to the categories of documents listed in the record retention schedule below. Avoid retaining a record if there is no business reason for doing so, and consult with the Data Protection Contact or Legal Department if unsure.