Data retention policy

DATA RETENTION POLICY WITH SCHEDULE for QUAL ACADEMY

Introduction

As part of the day-to-day running of our business, we collect and process personal data from

a variety of sources. This personal information is collated in several different formats

including emails and workshop records. The personal data is in electronic form.

Aims of the policy

Our business will ensure that the personal data that we hold is kept secure and that it is held

for no longer than is necessary for the purposes for which it is being processed. In addition,

we will retain the minimum amount of information to fulfil our statutory obligations and the

provision of goods or/and services – as required by data protection legislation, including the

General Data Protection Regulation (GDPR).

Retention

This retention policy (along with its schedule), is a tool used to assist us in making decisions

on whether a particular document should be retained or disposed of. In addition, it takes

account of the context within which the personal data is being processed and our business

practices.

Decisions around retention and disposal are to be taken in accordance with this policy.

As and when the retention period for a specific document has expired, a review is always to

be carried out prior to the disposal of the document. This does not have to be time-

consuming or complex. If a decision is reached to dispose of a document, careful

consideration is to be given to the method of disposal.

Responsibility

Fiona Holland and Elly Phillips are responsible for:

a)      keeping this retention schedule up to date to reflect changing business needs, new

legislation, changing perceptions of risk management and new priorities for our

business.

b)      determining (in accordance with this Policy) whether to retain or dispose of specific

documents.

Disposal

Our business must ensure that personal data is securely disposed of when it is no longer

needed. This will reduce the risk that it will become inaccurate, out of date or irrelevant.

The methods of disposal are deletion of computer records

The table below contains the retention period that we have assigned to each type of record.

This will be adhered to wherever possible, although it is recognised that there may be

exceptional circumstances which require documents to be kept for either shorter or longer

periods.

Date created: 22 March 2025 (reviewed annually)

Type or Record Retention Period Where stored? Reason Method of deletion

Website Enquiries 3 years from Organisation Responding Delete records

calendar year of Google Drive to enquires

Purchase Records 3 years from Organisation Accounting Delete records

purchase Google Drive records

Email Correspondence Archive emails Google mail Responding Delete emails

afer 1 year to queries