Section 14 Retention and restriction of records

Subject to subsections (2) and (3), records of personal information must not be retained any longer than is necessary for achieving the purpose for which the information was collected or subsequently processed, unless—
1. retention of the record is required or authorised by law;
2. the responsible party reasonably requires the record for lawful purposes related to its functions or activities;
3. retention of the record is required by a contract between the parties thereto; or
4. the data subject or a competent person where the data subject is a child has consented to the retention of the record.
Records of personal information may be retained for periods in excess of those contemplated in subsection (1) for historical, statistical or research purposes if the responsible party has established appropriate safeguards against the records being used for any other purposes.
A responsible party that has used a record of personal information of a data subject to make a decision about the data subject, must—
1. retain the record for such period as may be required or prescribed by law or a code of conduct; or
2. if there is no law or code of conduct prescribing a retention period, retain the record for a period which will afford the data subject a reasonable opportunity, taking all considerations relating to the use of the personal information into account, to request access to the record.
A responsible party must destroy or delete a record of personal information or de-identify it as soon as reasonably practicable after the responsible party is no longer authorised to retain the record in terms of subsection (1) or (2).
The destruction or deletion of a record of personal information in terms of subsection (4) must be done in a manner that prevents its reconstruction in an intelligible form.
The responsible party must restrict processing of personal information if—
1. its accuracy is contested by the data subject, for a period enabling the responsible party to verify the accuracy of the information;
2. the responsible party no longer needs the personal information for achieving the purpose for which the information was collected or subsequently processed, but it has to be maintained for purposes of proof;
3. the processing is unlawful and the data subject opposes its destruction or deletion and requests the restriction of its use instead; or
4. the data subject requests to transmit the personal data into another automated processing system.
Personal information referred to in subsection (6) may, with the exception of storage, only be processed for purposes of proof, or with the data subject’s consent, or with the consent of a competent person in respect of a child, or for the protection of the rights of another natural or legal person or if such processing is in the public interest.
Where processing of personal information is restricted pursuant to subsection (6), the responsible party must inform the data subject before lifting the restriction on processing.

Please follow and like us:

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Section 14 Retention and restriction of records

Quick Access

POPIA

ACT Summary and Preamble

Chapter 1 Definitions and Purpose

Chapter 2 Application Provisions

Chapter 3 Conditions for Lawful Processing

Part A Processing of personal information in general

Condition 1 Accountability

Condition 2 Processing limitation

Condition 3 Purpose specification

Condition 4 Further processing limitation

Condition 5 Information quality

Condition 6 Openness

Condition 7 Security safeguards

Condition 8 Data subject participation

Part B Processing of special personal information

Part C Processing of personal information of children

Chapter 4 Exemption from Conditions for Processing of Personal Information

Chapter 5 Supervision

Part A Information Regulator

Part B Information Officer

Chapter 6 Prior Authorisation

Chapter 7 Codes of Conduct

Chapter 8 Rights of Data Subjects Regarding Direct Marketing by Means of Unsolicited Electronic Communications, Directories and Automated Decision Making

Chapter 9 Transborder Information Flows

Chapter 10 Enforcement

Chapter 11 Offences, Penalties and Administrative Fines

Chapter 12 General Provisions

PAIA

Part 1 | Introductory provisions

Chapter 1 | Definitions and interpretation

Section 1 Definitions

Section 2 Interpretation of Act

Chapter 2 | General application provisions

Section 3 Act applies to record whenever it came into existence

Section 4 Records held by official or independent contractor of public or private body

Section 5 Application of other legislation prohibiting or restricting disclosure

Section 6 Application of other legislation providing for access

Section 7 Act not applying to records requested for criminal or civil proceedings after commencement of proceedings

Section 8 Part applicable when performing functions as public or private body

Chapter 3 | General introductory provisions

Part 2 | Access to records of public bodies

Chapter 1 | Right of access, and specific application provisions

Section 11 Right of access to records of public bodies

Section 12 Act not applying to certain public bodies or officials thereof

Section 13 Body determined to be part of another public body

Chapter 2 | Publication and availability of certain [public] records

Section 14 Manual on functions of, and index of records held by, public body

Section 15 Voluntary disclosure and automatic availability of certain records

Section 16 Information in telephone directory

Chapter 3 | Manner of access [to public body records]

Part 3 | Access to records of private bodies

Chapter 1 | Right of access

Section 50 Right of access to records of private bodies

Chapter 2 | Publication and availability of certain [private] records

Section 51 Manual

Section 52 Voluntary disclosure and automatic availability of certain records

Section 52A Recording, preservation and disclosure of records on private funding of political parties

Chapter 3 | Manner of access [to private body records]

Part 4 | Appeals against decisions

Chapter 1 | Internal appeals against decisions of information officers of certain public bodies

Section 74 Right of internal appeal to relevant authority

Section 75 Manner of internal appeal, and appeal fees

Section 76 Notice to and representations by other interested parties

Section 77 Decision on internal appeal and notice thereof

Chapter 1A | Complaints to regulator

Section 77A Complaints

Section 77B Modes of complaints to Regulator

Section 77C Action on receipt of complaint

Section 77D Regulator may decide to take no action on complaint

Section 77E Pre-investigation proceedings of Regulator

Section 77F Settlement of complaints

Section 77G Investigation proceedings of Regulator

Section 77H Assessment

Section 77I Information Notice

Section 77J Enforcement Notice

Section 77K Non-compliance with Enforcement Notice

Chapter 2 | Applications to court

Part 5 | Information regulator