HomeKnowledge base › Trade unions and member administration
Sector

Trade unions: destroying member administration and subscription data

A trade union's member administration and files ready for confidential destruction

A trade union manages the data of all its members. Name and address, subscriptions and payment data, and sometimes a full legal-aid file about a conflict with the employer. Especially sensitive is the membership itself, because the fact that someone belongs to a union counts as special-category personal data with extra protection. This guide shows, by part, what you keep, when it may go after a cancellation and how to destroy it confidentially with a certificate as proof.

The quick answer. The financial administration and subscriptions you keep for seven years under the tax retention obligation. The remaining member data you keep as long as the membership runs and clear out purposefully afterwards. Legal-aid files have their own period after the case has closed. What may go disappears confidentially and with a certificate.

Union membership as special-category data

At most membership organisations a member list is an ordinary file with ordinary personal data. At a trade union it is different. The fact that someone is a member reveals union membership, and that is special-category personal data which the GDPR protects separately. You may process this data only on a valid legal basis, you secure it more strictly than ordinary data and you keep it no longer than necessary. The same extra caution applies to political parties and their member administration, where the political conviction is equally special.

That status carries through to the end of the data's life cycle. An old member list that ends up on the street is not only a data breach but also reveals who had joined which union. So treat member data as confidential material from start to finish, just as you would at a charity or association or at a sports club with member administration.

Retention periods by part

The period differs per type of data. The overview below gives the main line. Count the tax period from the end of the financial year and the other periods from the end of the membership or the closing of the case.

PartStarting pointPeriod
Financial administration and subscriptionsTax retention obligation7 years
Member administration and membershipAs long as the membership runsduration + purposeful clear-out
Legal-aid and case dataAfter the case has closedown period
Cancellations and former membersPurpose-bound, storage limitationas briefly as possible
Digital member files and backupsSame rule as paperclear out with the rest
Correspondence and draftsNo retention obligationclear out at once

Use this as a guideline, not as a fixed statutory period for every file. When in doubt, weigh the purpose against the risks and record your choice. A handy overview is in the GDPR retention periods cheatsheet. How you make the clear-out demonstrable afterwards is set out in demonstrable destruction for the GDPR.

Cancellation and clearing out after the membership

The moment of cancellation is the most important clear-out moment. As soon as a member leaves, the ground to keep most data lapses. The financial administration stays under the tax retention obligation, but the name, address, preferences and the membership fact itself should not remain in your file forever. Decide in advance how long you still need former-member data and clear out the rest purposefully.

Work with a fixed clean-up round rather than loose actions. That way you avoid old member lists, cancellation letters and printouts lingering for years. A clean-up round you repeat periodically keeps your file current and limits the volume of sensitive data you manage.

Legal aid and member files

Many unions offer legal aid in a dismissal, a wage claim or a conflict at work. Such a file often contains employment contracts, correspondence with the employer, medical documents and legal advice. That is sensitive information you need during the case and keep for a while afterwards due to limitation and liability. Once that period has passed, the file no longer has a purpose and you clear it out confidentially.

Keep legal-aid files recognisably separate from the ordinary member administration. That way you know exactly which documents have their own period and you avoid sensitive files disappearing too late or too early.

Digital member files and data carriers

Member data rarely sits on paper alone. A member administration system, export files, mailing lists and backups contain the same sensitive data. For that digital side the same rule applies as for paper. What you no longer need you delete demonstrably, and old data carriers you have physically destroyed rather than dispose of them unwiped. Think of a replaced server, old laptops of board members or an external drive with a member export.

How to handle it in 6 steps

  1. Split the data into administration, member administration, legal aid and former members.
  2. Flag the membership as special-category data and secure it more strictly.
  3. Clear out at cancellation and keep only what has a ground.
  4. Give legal-aid files their own period after the case has closed.
  5. Collect what may go in sealed containers, not in the paper bin.
  6. Have it destroyed confidentially with a certificate and record it in your register.

Destroy confidentially with a certificate

Member data is destroyed confidentially, because it contains special-category data and sometimes complete legal-aid files. The paper and any data carriers travel sealed and stay that way until destruction, so the chain is closed. An old member administration server or backup with member data belongs with it too.

Afterwards you receive a certificate of destruction with the date, quantity and level. That certificate is your proof towards the GDPR that you acted carefully. Record the destruction in your record of processing. We collect within 20 km of Amsterdam with no call-out charge, work nationwide through pooled collection rounds and charge a fixed price per box or roll container. Drop-off on site is not possible; it works by appointment through collection.

Member data to be destroyed?

Tell us what you have and you get a fixed price. We collect it sealed, destroy it at the right DIN level and you receive a certificate for your GDPR file. No call-out charge within 20 km of Amsterdam.

Request a quote

Common mistakes

  • Treating the membership as ordinary data. It is special-category and needs extra protection.
  • Keeping former members forever. After cancellation the ground for most data lapses.
  • Forgetting to clear out legal-aid files. Those too have their own end date.
  • Skipping digital files and backups. The same data often sits digitally as well.
  • Throwing away unshredded. A member list on the street is a reportable data breach.

Frequently asked questions

Is trade union membership special-category personal data?

Yes. The fact that someone is a member of a trade union is special-category personal data with extra protection under the GDPR. You process it only on a valid legal basis and secure it more strictly than ordinary member data.

How long does a trade union keep member administration after a cancellation?

The financial administration and subscriptions you keep for seven years under the tax retention obligation. The remaining member data you clear out purposefully once the membership has been cancelled and no ongoing case or claim is in play.

How long do I keep legal-aid and case files of a member?

A legal-aid file has its own retention period after the case has closed, often a few years due to limitation and liability. After that it no longer has a purpose and you clear it out confidentially.

How do I destroy member data in line with the GDPR?

Confidentially and with a certificate of destruction. Paper and data carriers travel sealed and the destruction is recorded in the record of processing.

Conclusion

A trade union works with an especially sensitive combination of data. The membership itself is special-category data, the subscriptions fall under the tax retention obligation and the legal-aid files contain entire employment disputes. Secure the membership more strictly, keep the administration seven years and clear out purposefully at every cancellation. Give legal-aid files their own end date and do not forget the digital files and backups. What may go you have destroyed confidentially with a certificate as proof. That way you protect your members and demonstrably meet the GDPR.

Read also: trade associations: destroying member data, jewellers: destroying customer data and the money laundering rules, drugstores: destroying customer data and the GDPR retention periods cheatsheet.


Have member data collected? Request a quote via desnipperaar.nl. Within a few minutes you have a fixed price, including a certificate as proof.