Hi I'd appreciate any thoughts that anyone can offer on an issue that's just been raised with me. Our Head of IT has told me that currently, we archive all emails and don't have a policy for destroying them. Clearly, we need to change this, but I'm struggling slightly to balance the need to comply with the DPA retention principle with our organisational capacity. The research I've done seems to state that we need to only archive emails selectively on the basis of their business value. But our Head of IT says that we don't have the capacity to select which emails to archive (we're a charity and don't have many IT staff). Any thoughts or descriptions of how others handle this would be really helpful. Thanks very much Carolyn ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html If you wish to leave this list please send the command leave data-protection to [log in to unmask] All user commands can be found at : - http://www.jiscmail.ac.uk/help/commandref.htm Any queries about sending or receiving message please send to the list owner [log in to unmask] (all commands go to [log in to unmask] not the list please) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^