cloud-retention-config
Cloud Storage Retention Configuration
Overview
Cloud storage platforms provide native retention and lifecycle management features that can enforce data retention schedules at the infrastructure level. Proper configuration ensures that personal data stored in cloud environments is automatically transitioned, archived, or deleted according to retention policies, while legal hold and object lock features prevent premature deletion of data subject to regulatory or litigation requirements. This skill covers configuration for the three major cloud platforms: AWS S3, Microsoft Azure Blob Storage, and Google Cloud Storage.
Legal Context
GDPR Article 5(1)(e) — Storage Limitation
Cloud storage retention policies are a technical implementation of the storage limitation principle, ensuring data is not retained beyond the period necessary for processing purposes.
GDPR Article 32 — Security of Processing
Retention configuration must include appropriate security measures, including encryption at rest, access controls, and audit logging for all retention-related operations.
GDPR Article 25 — Data Protection by Design and by Default
Cloud retention policies should be configured as default settings on all storage resources, rather than applied retroactively.