1.   A CSD shall maintain full and accurate records of all its activities as specified in this Regulation at all times, including during disruption events when the business continuity policy and disaster recovery plans are activated. Those records shall be readily accessible.

2.   The records kept by a CSD shall cover separately each individual service provided by the CSD in accordance with Regulation (EU) No 909/2014.

3.   A CSD shall keep records in a durable medium that allows information to be provided to the authorities referred to in Article 29(2) of Regulation (EU) No 909/2014. The record-keeping system shall ensure that all of the following conditions are met:

(a)	each key stage of the processing of records by the CSD may be reconstituted;

(b)	the original content of a record before any corrections or other amendments may be recorded, traced and retrieved;

(c)	measures are put in place to prevent unauthorised alteration of records;

(d)	measures are put in place to ensure the security and confidentiality of the data recorded;

(e)	a mechanism for identifying and correcting errors is incorporated in the record-keeping system;

(f)	the timely recovery of the records in the case of a system failure is ensured within the record-keeping system.