Retention of Electronic Records
- Jan
- 18
- 2013
- Posted by CoSec
- Posted in CoSec Blog
Many business owners overlook their systems for the maintenance and retention of electronic records, much to their detriment. Various legislations regulate the retention of electronic records; as such it is critical that you review your internal processes to ensure you are not exposed to the risk of litigation and criminal fines.
Failure to implement a proper electronic storage solution will result in unnecessary risks and liability exposure for businesses. It is therefore imperative that systems are reviewed and strengthened.
Below are certain requirements that must be kept in mind when reviewing these systems:
Retention of Email Messages:
Currently no law regulates the retention and archiving of email messages in South Africa and many businesses delete emails after 2 to 3 months. However it is international practice that email messages are archived for a period of at least 3 years.
The risks that businesses are exposed to without an adequate retention system include unauthorised deletion, disclosure and tampering of email messages.
The Promotion of Access to Information Act gives effect to the Constitutional right to access to information. Businesses that fail to retain outgoing email for a period of at least three years may not be able to comply with these public disclosure requests and may face litigation and criminal fines.
Tax Administration Act:
Records are kept in the original form, in an orderly fashion, and in a safe place, or, where retained in electronic form, in an “acceptable electronic form”, or in a form specifically authorised by a senior SARS official.
This “acceptable electronic form” must ensure that the information has remained complete and unaltered and is capable of being displayed or produced to the person who is inspecting the record.
It is required that the person required to keep records is able to, within a reasonable period when called on by SARS, to provide SARS with an electronic copy of the records, in a format that SARS is able to readily access, read and analyse, or to send the records to SARS in an electronic form that is readily accessible by SARS, or to provide SARS with a paper copy of those records.
Taxpayers who keep records in an electronic format must ensure that measures are taken for the adequate storage of the electronic records. It is necessary to store all electronic signatures, login codes, keys, passwords or certificates required to access the electronic records, and the procedures to obtain full access to any electronic records that are encrypted.
Taxpayers who retain electronic records must have the records available for inspection by SARS at all reasonable times, and at premises physically located within the country, or accessible from such premises (if authority has been granted by SARS). The electronic records must be able to be made available for purposes of an audit or investigation conducted by SARS.
Electronic Communications and Transactions Act:
Where a law requires information to be retained, that requirement is met by retaining such information in in the format in which it was generated, sent or received, or in a format which can be demonstrated to represent accurately the information generated, sent or received.
The origin and destination of that data message and the date and time it was sent or received can he determined.
There are certain principles stated for the electronic collection of personal information and also the timeframe that this information must be kept:
Document | Document Retention period |
Personal information and the purpose for which the data was collected must be kept by the person who electronically requests, collects, collates, processes or stores the information | As long as information is used, and at least 1 year thereafter |
A record of any third party to whom the information was disclosed must be kept for as long as the information is used | As long as information is used and at least 1 year thereafter |
All personal data which has become obsolete | Destroy |
All material subject to our Legal Disclaimers.
Recent Posts
- Businesses reminded of City support to offer relief 26/01/2021
- 2nd 2021 Provisional Tax Information Request 18/01/2021
- Changes to the South African Exchange Control Rules 13/01/2021
- MD are now on Instagram too!!! 07/01/2021
- Congratulations to Amanda Kungwayo – 15 years with MD today! 03/01/2021
- PAIA manual | MD ACCOUNTANTS AND AUDITORS INCORPORATED | Date of revision: 15/12/2020 23/12/2020
- Season’s Greetings 21/12/2020
- COIDA: EXCLUSION OF DOMESTIC WORKERS INVALID: Employers’ contributions cannot be backdated 09/12/2020
- Congratulations to Juanita Roman – 20 years with MD today! 01/12/2020
- BEE pioneers fight for their legitimacy 27/11/2020
- Department of Employment and Labour welcomes Constitutional court judgement on domestic workers 24/11/2020
- TERS – FINAL opportunity to claim – Do not Miss out! 23/11/2020
- Legal Sector Code 20/11/2020
- CIPC Regulatory Compliance Obligations to re-commence 01 DECEMBER 2020 18/11/2020
- B-BBEE Commission: Media Brief 12/11/2020
- MD’s Current News | September/October 2020 11/11/2020
- MD’s Business Rescue contact details 28/10/2020
- MD’s client, Daphne Olivier, celebrated her 100th Birthday this month! 23/10/2020
- President Cyril Ramaphosa yesterday announced a post-Covid economic reconstruction and recovery plan 16/10/2020
- Celebrating Alexis and Dave’s 23 Year Anniversary, as well as Boss’s Day 2020 15/10/2020
- Important Information: PAIA Manual 12/10/2020
- Repayment of SARS Covid-19 Employees’ tax deferral – reminder of repayment obligation 07/10/2020