(1)A telecommunications operator who retains relevant communications data by virtue of this Part must—
(a)secure that the data is of the same integrity, and subject to at least the same security and protection, as the data on any system from which it is derived,
(b)secure, by appropriate technical and organisational measures, that the data can be accessed only by specially authorised personnel, and
(c)protect, by appropriate technical and organisational measures, the data against accidental or unlawful destruction, accidental loss or alteration, or unauthorised or unlawful retention, processing, access or disclosure.
(2)A telecommunications operator who retains relevant communications data by virtue of this Part must destroy the data if the retention of the data ceases to be authorised by virtue of this Part and is not otherwise authorised by law.
(3)The destruction of the data may take place at such monthly or shorter intervals as appear to the operator to be practicable.
Commencement Information
I1S. 92 in force at 30.12.2016 by S.I. 2016/1233, reg. 2(f)