How retention works
Use retention rules to control how long data is preserved. You can:
- Keep data for as long as you need it. If your organization is required to preserve data for a period of time, you can configure Vault to retain it even if users delete messages and files, and then empty their trash.
- Remove data when you no longer need it. If your organization is required to delete sensitive data after a period of time, you can configure Vault to remove it from user accounts.
When retention coverage ends, Vault immediately begins to remove affected data. The time it takes to purge expired data varies depending on the type of data:
- It can take up to 48 hours for expired messages to be removed from Gmail, classic Hangouts, and Groups.
- It can take up to 15 days for expired files to be removed from Drive.
Two types of retention rules
Custom retention rule—Controls how long specific types of data are retained. You can create as many custom rules as your organization needs:
- Mail, classic Hangouts, and Groups—you can base custom rules on organizational units, date ranges, or specific search terms.
- Drive—you can base custom rules on organizational units and define expiration based on last modified dates (to address staleness) or created dates (to address compliance requirements).
- Hangouts Chat–you can set custom retention rules for organizational units or for all rooms in the domain. You can define expiration based on when messages were sent or last modified.
Default retention rule—Sets a global rule for your entire organization. The default rule applies to data only when a custom rule or a hold doesn't apply.
Important information about retentionWhat's the difference between a hold and a retention rule?
Both preserve data in Vault, however, there are important differences:
Holds are typically created in response to an investigation or legal issue.
Retention rules are used to proactively control how long data is preserved.
Holds preserve data indefinitely.
Retention rules preserve data for a specified period.
A hold takes precedence over a retention rule. When a hold is deleted, data is then subject to applicable retention rules
|After retention coverage expires, data is removed from all Google systems (unless it is being preserved by a hold)|
Only those who have access to a matter can see who and what is on hold.
Only those who have retention rule privileges can manage retention rules.
Vault is fully integrated with the products it supports. As a result, there's no separate archive. If you create a retention rule that applies to all messages or files, it could potentially delete data that your users expect to keep. For example, if you set a default retention rule to retain all messages for 365 days, and you have no custom rules or holds, Vault deletes every message in your domain that is older than 1 year.
The retention coverage period begins:
- Mail and Groups—on the day the message is received by Gmail or posted to a Group.
- Drive—either on the day the file was created or the day it was last modified, depending on how you configured the retention rule.
- Hangouts Chat–on the day the message was sent or was last edited by a user. When a user deletes a message, it has no effect on retention coverage.
A message or file is not expunged when:
- It is being retained by a custom retention rule. Data is always kept as required by the custom rule with the longest retention period. Custom retention rules always take precedence over the default retention rule, even if the custom retention rule is shorter than the default retention rule.
- It is subject to a hold. When the hold is removed, retention rules take effect as expected.
Messages in a user’s Gmail or posted in Groups when all retention rules expire are immediately removed from the user’s view. However, they remain available to Vault administrators for approximately 30 additional days, during which you can search for, export, or place holds on them. After 30 days, you can no longer retrieve these messages.
Messages deleted by users or Group Managers less than 30 days before retention coverage expires are kept as long as necessary to meet the maximum of 30 days. For example, if a user deletes messages and empties them from trash 20 days before the retention coverage expires, you can search for them in Vault for another 10 days. After that time you can no longer retrieve them.
Messages that were deleted more than 30 days before the retention coverage expires are immediately expunged at the end of the retention period, and you can’t retrieve them.
Files in Drive are expunged up to 15 days after retention coverage expires, and you can’t retrieve them.
See removal and expunging scenarios for additional examples of how this works.