The ICO’s recent £18000 penalty against Birthlink, a Scottish charity, in relation to destruction of a large volume of personal records highlighted the importance of ensuring compliance with the basic principles of good data governance, clear retention timeframes and secure disposal. It serves as a reminder that a personal data breach is broadly interpreted and includes destroying personal data when it ought not to have been. Organisations must have in place clear processes and procedures to manage records and personal data in them to avoid personal data breaches as well as the human impact mismanagement can have.
Morgan O’Neill and Loretta Maxfield explore the requirements and benefits associated with record keeping, retention and secure disposal methods and a practical outlook of how organisations may wish to implement these.
If you have questions about this topic, please contact the team on 03330 430350.
Broadcast: 23 October 2025. The content in this webinar, guidance and advice provided by the host, is correct at the time of broadcast. If you are watching a recording after the broadcast date please contact us for the most up to date guidance and advice on this topic.