Data Retention Policy

How We Manage and Retain Your Information

This Data Retention Policy explains how We Print Lanyards retains, manages and securely deletes personal information in accordance with UK GDPR and the Data Protection Act 2018.

It explains how long different types of information are retained, how retention periods are determined and how information is securely deleted or anonymised when it is no longer required.

This policy should be read alongside our Privacy Policy, Website Security Commitment and Data Processing Agreement.

Purpose

We retain personal information only for as long as necessary to:

  • Provide our products and services
  • Process and fulfil customer orders
  • Provide customer support
  • Fulfil the purposes described within our Privacy Policy
  • Comply with legal, accounting and regulatory obligations
  • Resolve disputes and enforce contractual agreements

Retention Principles

We Print Lanyards applies the following principles when retaining personal information:

  • Personal information is not kept longer than necessary
  • Retention periods are based on business needs and legal requirements
  • Information is securely deleted, anonymised or archived when it is no longer required
  • Appropriate security measures protect retained information throughout its lifecycle

How Retention Is Determined

Retention periods are determined by considering:

  • The purpose for which the information was collected
  • Legal and regulatory requirements
  • Accounting and taxation obligations
  • Customer support requirements
  • Business continuity requirements
  • Security and fraud prevention
  • Legitimate business interests

Data Retention Schedule

Information Type Retention Period Reason
Customer Orders Indefinitely Supports repeat orders, customer service and legitimate business requirements.
Customer Artwork Up to 2 years Supports repeat orders. Artwork may require recreation after this period due to ongoing improvements to our print processes.
Customer Account Information Indefinitely Supports customer account management and ongoing business relationships.
Marketing Preferences Until you opt out Retained until consent is withdrawn or marketing communications are no longer required.
Website Analytics Data In accordance with our Cookie Policy Website performance and analytics.
Website Security Logs As required for security monitoring Website monitoring and security.
Backup Data 37-day rolling retention Disaster recovery and business continuity.
Financial & Accounting Records As required by applicable legislation Legal, taxation and accounting obligations.

Secure Deletion and Anonymisation

When personal information is no longer required, it is:

  • Securely deleted from active systems; or
  • Securely anonymised so individuals can no longer be identified

Where technically feasible, deletion also applies to backup and archived systems in accordance with their retention schedules.

Protecting Retained Information

Personal information retained by We Print Lanyards is protected using appropriate technical and organisational security measures.

These include:

  • Microsoft Azure UK cloud infrastructure
  • Secure access controls
  • Continuous security monitoring
  • Vulnerability management
  • Immutable daily backups
  • Cyber Essentials Plus certified security practices

Further information about how we protect retained information can be found within our Website Security Commitment.

Legal and Regulatory Retention

Certain information may be retained for longer where necessary to:

  • Comply with legal or regulatory obligations
  • Respond to lawful requests from regulatory authorities
  • Meet accounting and taxation requirements
  • Establish, exercise or defend legal claims

Where legal obligations apply, information will only be retained for as long as required.

Your Rights

Under UK GDPR you have the right to:

  • Request access to your personal information
  • Request correction of inaccurate information
  • Request deletion where applicable
  • Restrict certain processing
  • Object to certain processing
  • Request data portability where applicable

Some requests may be limited where we are legally required to retain certain information. To exercise any of these rights, please contact us at data@weprintlanyards.com.

Further information can be found within our:

Contact Us

If you have any questions about this Data Retention Policy, please contact us via our Contact Us page. To exercise your rights under UK GDPR, please contact us at data@weprintlanyards.com.

Last Updated: 01 July 2026

Frequently Asked Questions

A Data Retention Policy explains how long personal information is retained and when it is securely deleted or anonymised.

We retain personal information to fulfil customer orders, provide customer support, comply with legal obligations and maintain accurate business records.

Retention periods are based on the purpose of processing, legal obligations, accounting requirements, customer support requirements and legitimate business interests.

Customer artwork is typically retained for up to 2 years to support repeat orders. After this period artwork may require recreation due to ongoing improvements in our print processes.

Marketing preferences are retained until consent is withdrawn or you choose to opt out of marketing communications.

Yes. You can request deletion of your personal information by emailing us at data@weprintlanyards.com. Requests are assessed in accordance with UK GDPR and any applicable legal obligations..

Where technically feasible, information is removed from backup systems in accordance with our 37-day rolling retention process.

Further information can be found within our: