For example, if your personal circumstances change, please update them using the profile pages or inform the Data Protection Officer.</p> Data security¶ <p>We keep personal data secure against loss or misuse. Where other organizations process personal data as a service on our behalf, the DPO will establish what, if any, additional specific data security arrangements need to be implemented in contracts with those third party organizations.</p> Storing data securely¶ <p>All data is stored electronically. All documents and code are held on a locked LUKS partition with a password adhering to security best practices.</p> Data retention¶ <p>We must retain personal data for no longer than is necessary. What is necessary will depend on the circumstances of each case, taking into account the reasons that the personal data was obtained, but should be determined in a manner consistent with our data retention guidelines. Anonymized user data (e.g. metadata requests) will be kept for a maximum of 5 years which allows us to project future service requirements and provide usage graphs to the vendor.</p>