Corporate Retention Policy Template for Canada
Generate a bespoke document
What is a Corporate Retention Policy?
The Corporate Retention Policy serves as a crucial governance document that enables organizations to effectively manage their records while maintaining compliance with Canadian legal requirements. This document is essential for establishing standardized practices for retaining, protecting, and disposing of various types of corporate records, from financial documents and employee records to electronic communications and contractual agreements. The policy must align with multiple Canadian legislative requirements, including the Canada Business Corporations Act, Income Tax Act, and PIPEDA, while also accommodating industry-specific regulations and organizational needs. It should be implemented when an organization needs to establish or update its records management practices, particularly in response to regulatory changes, organizational growth, or risk management initiatives.
About the Corporate Retention Policy
A Corporate Retention Policy is a comprehensive governance document that establishes your organization's systematic approach to managing records throughout their lifecycle. This policy ensures you comply with Canadian federal and provincial laws while protecting your business from legal risks associated with improper record management. The policy covers all types of organizational records, from financial statements and tax documents to employee files and electronic communications, providing clear guidelines on how long to retain each category and when disposal is appropriate.
When do you need this document?
You need a Corporate Retention Policy when establishing a new business entity, expanding operations into Canada, or updating existing governance frameworks to meet current legal standards. This document becomes essential during regulatory audits, litigation discovery processes, or when responding to government inquiries from agencies like the Canada Revenue Agency or Privacy Commissioner. Organizations also require this policy when implementing new technology systems, as digital records often have different retention requirements than physical documents. If you're preparing for potential mergers, acquisitions, or significant organizational changes, having a robust retention policy demonstrates good governance and due diligence to stakeholders.
Key legal considerations
Your Corporate Retention Policy must address several critical legal elements to ensure comprehensive compliance. Legal hold procedures are essential, requiring you to suspend normal disposal schedules when litigation or regulatory investigations are reasonably anticipated. The policy must define clear roles and responsibilities, designating who has authority to make retention decisions and ensuring accountability across departments. Record classification systems need to categorize documents based on legal requirements, business needs, and risk levels. Privacy protection measures are crucial, particularly for personal information governed by PIPEDA, requiring secure storage and controlled access protocols. The policy should also establish procedures for handling records during employee departures, system migrations, and organizational restructuring.
Legal requirements in Canada
Canadian law imposes specific retention obligations that your policy must address comprehensively. The Canada Business Corporations Act requires maintaining corporate records including articles of incorporation, bylaws, shareholder registers, and board minutes at your registered office for prescribed periods. Under the Income Tax Act, you must retain all tax-related records and supporting documentation for minimum six years after the relevant tax year ends. The Canada Labour Code mandates keeping employment records for at least 36 months, covering wages, hours, vacation entitlements, and workplace safety documentation. PIPEDA requires implementing appropriate safeguards for personal information and establishing retention periods that align with the purposes for which information was collected. Provincial legislation may impose additional requirements depending on your business location and industry sector, making jurisdiction-specific compliance essential for multi-provincial operations.
GOVERNING LAW
Applicable law
This Corporate Retention Policy is drafted to comply with Canada law. Key legislation includes:
Income Tax Act: Requires businesses to retain tax records and supporting documents for a minimum of six years from the end of the last tax year they relate to.
Canada Labour Code: Mandates retention of employment records for at least 36 months after work is performed or when information was recorded. This includes records of wages, hours of work, vacation, and other employment information.
Personal Information Protection and Electronic Documents Act (PIPEDA): Governs the collection, use, and disclosure of personal information, requiring organizations to retain personal information only as long as necessary to fulfill the purposes for which it was collected.
Employment Insurance Act: Requires employers to maintain records related to employment insurance for 6 years after the year they relate to.
Canada Pension Plan Act: Mandates retention of records related to pension plan contributions and payments for 6 years after the year they relate to.
Electronic Commerce Act: Provides framework for electronic records and their admissibility, requiring proper retention methods for electronic documents to ensure their integrity and accessibility.
Goods and Services Tax (GST)/Harmonized Sales Tax (HST) Legislation: Requires businesses to maintain GST/HST records and supporting documents for 6 years from the end of the year they relate to.
Explore 208,390+ legal templates
Explore 208,390+ legal templates
Genie's Security Promise
Genie is the safest place to draft. Here's how we prioritise your privacy and security.
Your data is private:
We do not train on your data; Genie's AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it