GDPR: how long can research data containing personal data be stored?
The General Data Protection Regulation (GDPR) requires that personal data cannot be kept longer than necessary to achieve the purposes for which they are processed (see the ‘storage limitation’ principle).
The RDM Policy framework of Ghent University requires that research data be kept for a minimum of 5 years after the publication of the work based on these data and/or after the end of the research project.
More information
More tips
- GDPR: how am I transparent to data subjects in my research? (Scientific Integrity)
- GDPR: how can I ensure that the processing of personal data is lawful? (Scientific Integrity)
- GDPR: how can I protect my data correctly? (Scientific Integrity)
- GDPR: how do I register personal data processing activities? (Scientific Integrity)
- GDPR: what are personal data? (Scientific Integrity)
- GDPR: what are the basic principles? (Scientific Integrity)
- GDPR: what are the different roles and responsibilities according to the GDPR? (Scientific Integrity)
- GDPR: What do I need to think about when transferring personal data to third countries or international organisations? (Scientific Integrity)
- GDPR: what do I need to think about when using a mailing list in the context of my research? (Scientific Integrity)
- GDPR: what has changed with regard to the previous privacy legislation? (Scientific Integrity)
- GDPR: what information should I include in an informed consent form when the processing of personal data is based on the consent of the data subjects? (Scientific Integrity)
- GDPR: what is the General Data Protection Regulation? (Scientific Integrity)
- GDPR: what rights do data subjects have, how do I respect them and what exceptions may apply to research? (Scientific Integrity)
- GDPR: What should I do if there is a data breach? (Scientific Integrity)
- GDPR: what should I do in the event of further/secondary processing of personal data? (Scientific Integrity)
- GDPR: what should I keep in mind when designing my research? (Scientific Integrity)
- GDPR: what should I keep in mind when processing special categories of personal data? (Scientific Integrity)
- GDPR: What should I think about when I collaborate with others or share my data? (Scientific Integrity)
- GDPR: What should I think about when processing personal data from minors? (Scientific Integrity)
- GDPR: When am I processing high-risk personal data and when do I need to conduct a DPIA? (Scientific Integrity)
- GDPR: when does it apply to my research? (Scientific Integrity)
- GDPR: who are considered as vulnerable persons? (Scientific Integrity)
- GDPR: why is it important to comply with this legislation? (Scientific Integrity)
Translated tip
Last modified Aug. 31, 2021, 1:53 p.m.