Your browser is out of date, and unable to use many of the features of this website

Please upgrade your browser.



One of the important tasks for a trustee of a defined benefit pension scheme is to ensure good record-keeping and to have internal controls. This will help to ensure that data is up to date, complete and accurate.

You should also help employers to understand their duty to provide accurate and timely information to scheme advisers and service providers.

Key points

  • Identify what types of member data you need to keep for your defined benefit (DB) scheme.
  • Set up adequate internal controls that enable you to maintain accurate and up-to-date member data.
  • If you’ve outsourced management of member data, check your scheme administrator’s internal controls and that you’ve covered data issues in the service level agreement.
  • Carry out a data review exercise regularly and create a data improvement plan.
  • Work with employers to ensure that they understand when they need to pass information to the scheme administrator.

Types of data to keep

You are legally required to keep certain types of information. You must keep records relating to:

  • your meetings and decisions
  • the date each member joined the scheme
  • details of all contributions received
  • all other payments to and from the scheme including, for example, benefit payments and payments to advisers or the employer
  • details of transfers of members’ benefits and related assets to and from the scheme

You should also hold certain types of member data that is common to all schemes. Common data consists of:

  • National Insurance number
  • surname and either forename or initials
  • sex
  • date of birth
  • date pensionable service started, policy start date or first contribution date
  • expected retirement/maturity date (target retirement age)
  • membership status
  • last status event
  • address including postcode

You’ll need to hold other types of detailed member data, but this is conditional on a number of factors. In a DB scheme, this may be conditional on scheme design, a member’s status in the scheme and events that have occurred during an individual’s membership of the scheme. You should pay particular attention to areas such as salary records, member options exercised and payments of benefits.

If you’ve outsourced the management of scheme data, you should discuss what conditional data you may need to hold with your administrators.

You must keep records for a minimum of six years. However, you’ll need to keep some records, including both common and conditional data, for a much longer period.

Measuring data quick guide
PDF 50KB , 4 pages
For further details about what types of data to keep, read data guidance from PASA.

Effective system of governance

You must establish and operate an effective system of governance including internal controls, which is proportionate to the size, nature, scale and complexity of the activities of the occupational pension scheme. The internal controls are arrangements and procedures to be followed in the administration and management of the scheme, and systems and arrangements for monitoring that administration and management. This includes arrangements that enable you to maintain accurate and up-to-date member data.

If you have outsourced the management of scheme data, you should understand what systems and controls your administrator is using. Check that you have covered data issues in the service level agreement. For more information, go to working with advisers.

Business continuity planning

One arrangement you should have in place is a business continuity plan (BCP). This sets out what actions would be taken if certain events occur that affect the running of the scheme.

If your scheme is very small and the administration operation is not complex, for example it is run by a small in-house team in the HR department, the BCP can be very simple. However, the risks are likely to be the same as those faced by larger schemes.

If there are key functions performed within the HR department or closely linked to the operations of the employer, read the Pension Protection Fund guidance on issues you should consider as part of risk management. Without adequate continuity planning, an employer insolvency can interrupt the ability to carry out essential functions.

If you use a third-party administrator, you should understand your provider’s business continuity arrangements. You should be confident that they ease any risks to member data and benefits. Their plans should cover the winding-up of their business. You may also want to understand where the liability lies if processes are interrupted by a BCP event, or where a BCP fails in practice.

For more information, read our statement on managing service providers:

Managing service providers statement
PDF 411KB , 2 pages
Published: February 2018
Summarises our expectations of good practice by trustees and scheme managers on the management of service providers.

General Data Protection Regulation (GDPR)

You should ensure that your scheme’s processes for holding personal data meet GDPR requirements.

For further information, read the GDPR made simple guide from the Pensions and Lifetime Savings Association.

Maintaining data

You should ensure a data review exercise is carried out at appropriate intervals, eg annually. You should also carry out a review when significant events occur, such as changing administrator or merging or winding up the scheme.

You should have a data improvement plan to address poor quality data. Download our guide to producing a data improvement plan.

Improving data quick guide
PDF 53KB , 6 pages

Cyber security

Pension schemes hold large amounts of personal data and assets which can make them a target for fraudsters and criminals. As trustees and scheme managers, you need to take steps to protect your members and assets accordingly, which includes protecting them against the ‘cyber risk’.

You should take steps to build your cyber resilience – your ability to assess and minimise the risk of a cyber incident occurring, but also to recover when an incident takes place.

Cyber security guidance
PDF 88KB , 12 pages
Our cyber security guidance for trustees tells you what steps you should take to make sure your scheme and its data are secure.

Working with employers

You should take reasonable steps to ensure that member records are reconciled with information held by employers.

You should work with employers to ensure that they understand when they need to pass information to the scheme administrator. This includes key events such as when an employee:

  • joins or leaves the scheme
  • changes their rate of contribution
  • changes their name, address or salary
  • retires from work or dies.

If an employer fails to provide the required information, you should consider whether you need to report the breach to us. See code of practice 1: reporting breaches of the law.

Trustee toolkit online learning

The ‘Running a scheme’ module contains a tutorial on ‘Scheme administration and member data’. You must log in or sign up to use the Trustee toolkit.

Go to the Trustee toolkit

Record-keeping guide

Record-keeping quick guide
PDF 124KB , 4 pages