Europe: E-mail Record Retention Policy

In the US, a process known as “e-discovery” is requiring litigants to search for and disclose large numbers of electronic mail records in lawsuits. Penalties related to e-discovery motivate organizations to retain an ever-growing quantity of e-mail records. Click here for further information.

My knowledge of law in civil law jurisdictions is limited. If you the reader know more information or cases on this topic, I invite you please to let me know. 

Met dank aan Benjamin Wright.

In civil law jurisdictions in Europe, however, e-discovery is not compelling businesses to retain email as it is in the US.

However, research suggests that European companies are wise or required to archive e-mail records.

Société Générale/ Jérôme Kerviel

See the discussion of the Société Générale/ Jérôme Kerviel case. (I read it by using Google to translate from French to English.)

Société Générale is a large French bank. Jérôme Kerviel was a rouge trader who exposed the bank to potentially many tens of billions of euros in liability.

The case may be a landmark in French thinking about record retention. The bank had, in the ordinary course of business, retained Kerviel's email and text message records. As the scandal broke, at first the bank was reluctant to read his message records out of concern for his right to privacy. But the bank quickly dismissed that concern. The bank read his messages so that it could understand what he had done and what commitments he had made on behalf of the bank and then to correct his dangerous misadventure.

The lesson seems to be that companies in continental Europe do need to keep the records of important employee email and text messages so that the companies can understand their rights and responsibilities and to correct mistakes.

Requirement to Keep Records of Rights and Obligations

My friends in Europe inform me that civil law jurisdictions often require companies to keep records of their rights and obligations for numerous years. For example, I generally understand from Polo G. van der Putt of the Vondst law firm in Amsterdam that Dutch Civil Code Article 3:15i states an obligation for companies to keep for seven years “books of financial condition and of everything relating to the company and to retain records in such a manner that its rights and obligations can be determined at all times.” Further, Article 2:10 paragraph 3 requires seven-year retention for “All books, records and other data carriers which relate to the financial condition of the legal person and everything relating to its activities.”

It seems to me that email would commonly constitute the records evidencing the rights and obligations of a company or business. See Article 9 of the EU Directive on Electronic Commerce 2000/31/EC, which supports the formation of contracts by electronic means such as email.

Punishment for Not Having Records

I am in search of European cases in which businesses have been punished for failing to keep electronic records.

Research in Switzerland, under the guidance of Dr. Jürg Schneider, Walder Wyss & Partners Ltd., identified a case in which a criminal defendant in a conspiracy and money-laundering prosecution had violated his obligation to retain records by destroying many electronic documents at his company. The court found that by destroying records the defendant had hindered a criminal investigation and was therefore required to pay the full costs of the proceedings against him. (In the US and Canada, we would call the defendant’s action the crime of “obstruction of justice.” ) The citation for the Swiss decision is SK.2008.18; it is a decision by the criminal division of the Federal Criminal Court of July 8, 2009. The decision is available (in German) here. This Swiss decision points up a issue for organizations as they set policy for email retention and destruction. If the law will punish you for destroying records when you have reason to believe they will be needed in an investigation or lawsuit, then your policy for destroying email must be ready to stop the destruction at the right time. In practice, knowing when to stop, and then actually implementing the stop, are not easy for complex enterprises. Click here for further information.

My knowledge of law in civil law jurisdictions is limited. If you the reader know more information or cases on this topic, I invite you please to let me know.

–Benjamin Wright
Dallas, Texas, USA
https://legal-beagle.typepad.com
ben_wright@compuserve.com

In partnership with Messaging Architects, Mr. Wright leads in-house workshops to help organizations establish policy on the retention and destruction of electronic records.