Situation
You are needing to set up, delete, or modify a retention policy to be able to keep specific data for a certain period of time at the user account level.
Prerequisites
This section lists the requirements to be able to set up a retention policy.
- One of the following Dropsuite dashboard accesses:
- Full Admin
- Group Supervisor (This will only work for users that are within the group they are an admin of)
- IT Admin
- Compliance and Review Officer
- Data Protection Officer
TABLE OF CONTENTS
Account level Retention Policy
This section will explain how to create a policy at the user account level, or for previously created departments of users. It will also explain the process to modify or delete a previously created policy.
Creating a retention policy
This section will explain how to create and set your retention policy for users. This will allow their data to only be permanently deleted after a specified set amount of time.
- Login to the backup dashboard using the proper access level.
- Hover over the compliance tab, and then select "Retention Policy".
- On the retention policy page select "Create New".
- On the next screen, you will have 3 sections to fill out:
- Policy Name: Create a name for the policy. This must be unique and can not be a duplicate name of another policy previously created.
- For: In this section you will choose Email Account (to specify users), Department (for all users within a specific department previously created), or All (for all users backed up). If selecting Email Account or Department you will then need to specify users, or the department in question.
- Retention Period: Here you will need to select the retention length of the data for the specified users, or departments. You can select between 1 month to 11 years or unlimited to never have the data permanently deleted.
- Lastly, read the disclaimer that will be tailored to the retention period you selected, agree to the terms by selecting the checkbox, and select "Save".
- Your policy will then be displayed on the retention policy page. To view the details more in depth, select the policy name and a box will appear with all notable details.
Modifying a retention policy
This section will explain how to modify an already existing retention policy at the account level.
- Hover over the compliance tab, and then select "Retention Policy".
- Find the policy you are needing to modify and select the 3 dots in the top right corner, and then select "Edit".
- In the next window, you will get a disclaimer which will explain that any modifications you make to the retention policy will only be applied to any emails that have not already been deleted by the retention policy. Select "Continue".
- Next, modify the policy as needed, agree to the terms and select "Update".
Deleting a retention policy
This section will explain how to delete a retention policy that is no longer needed.
- On the retention policy page, find the policy you need to delete and select the 3 dots in the top right corner, and then select "Delete".
- In the next window, be sure to read the warning, and then select "I Agree".
- The data that was included in this retention policy will now be using the default policy to never be deleted.
Important Mentions
Important things to note when creating retention policies.
- More than one policy can be applied to an email account, the system will automatically go with the policy with the longest retention period.
- Once a retention policy has deleted an email, there is no way to retrieve it. The only option would be if the email is still in the mailbox itself in which case it would be backed up again.
- The default retention policy is unlimited. This would mean that by default, all data is kept forever.
- Retention periods are calculated based off of when the email was received in the mailbox. This means that the start of the retention date does not start when the email was copied to the archive.
- The policy applies as soon as it is created.
- Data is deleted within 24 hours after the retention period has expired.