Can we just keep everything forever to be safe instead of bothering with a retention schedule?
It feels intuitive: if you never delete anything, you’ll never be caught without a record. In practice, “keep everything forever” is usually riskier and more expensive than a defensible retention schedule. Hoarding is not a strategy; it’s deferred risk.
Why “keep everything” backfires
- It increases legal exposure, not safety. Every record you retain is potentially discoverable in litigation, an audit, or a public-records request. Keeping material past the point it serves a purpose simply enlarges the volume that must be searched, reviewed, and possibly produced, often at significant cost.
- It conflicts with privacy obligations. Many privacy principles and laws expect you to keep personal information only as long as needed for the purpose it was collected. Indefinite retention of personal or sensitive data can itself be a violation.
- It raises security risk. Data you don’t need is still data you have to protect. A larger trove means a larger attack surface and a bigger breach if something goes wrong.
- It buries the records that matter. When everything is kept, finding the right document becomes harder. Storage, migration, and management costs grow indefinitely, while the signal-to-noise ratio falls.
What a retention schedule actually does
A retention schedule is a documented, consistently applied set of rules for how long each type of record is kept and what happens at the end of its life (transfer, archival preservation, or disposition). Its value is in being systematic and defensible:
- It ties retention to legal, regulatory, fiscal, and business requirements.
- It lets you keep what you’re required to keep and dispose of the rest in the normal course of business.
- It supports legal holds: when litigation or an investigation is reasonably anticipated, you suspend disposition for affected records. Routine, good-faith deletion under a documented schedule is defensible; ad hoc deletion is not.
The bottom line
Defensible disposition, not indefinite hoarding, is the goal. Keeping everything forever maximizes cost and risk while undercutting the very protection you’re seeking. A retention schedule lets you demonstrate that what you kept, and what you disposed of, followed a reasoned, repeatable process.
Learn more at the information governance topic hub.
Sources & further reading
Authoritative government and non-profit references.
- Records management (NARA) — National Archives (NARA)
- ISO 15489-1 Records management — ISO
How to cite this page
APA
RM University Editorial. (2026). Can we just keep everything forever to be safe instead of bothering with a retention schedule?. Records Management University. https://www.recordsmgmt.org/questions/can-we-just-keep-everything-forever-instead-of-a-retention-schedule/
MLA
RM University Editorial. "Can we just keep everything forever to be safe instead of bothering with a retention schedule?." Records Management University, 16 June 2026, www.recordsmgmt.org/questions/can-we-just-keep-everything-forever-instead-of-a-retention-schedule/.
Related questions
- Big-bucket vs item-level retention schedules: how do I choose between them?
- Can a company be penalized for keeping data too long under privacy laws even if nothing was breached?
- Can a US company store records in the EU, or do data localization and cross-border transfer rules block it?
- Can executives or board members be held personally liable for information governance failures?
- Can information governance help reduce cloud storage costs, and how?