Elevate the power of your work
Get a FREE consultation today!
Iron Mountain's CAB Guide details data destruction and disposition best practices. We outline some of them here.
Data destruction involves much more than hitting the "delete" key on a computer or moving data to a trash folder and emptying it. Doing either leaves an electronic trail that can still allow an unauthorized computer specialist to retrieve sensitive information. Organizations need to follow best practices in their data destruction and disposition to protect themselves and their customers.
Created in collaboration with its Customer Advisory Board (CAB), Iron Mountain's CAB Guide for destruction and disposition recommends the following seven best practices.
Such a standard makes it easier to determine whether to retain or destroy certain records. Destroying records you need and keeping those you don't need can increase expenses for the organization, from both fees for destroying needed records and inefficiencies from maintaining unnecessary records.
Organizations need to store some records for a short while, other records for months or years, and still others indefinitely. A records retention schedule defines the operational and legal requirements for the length of records retention, using metadata to determine when a record may be destroyed.
Establish a destruction process covering physical and electronic records that complies with your records and information management (RIM) policy.
Use a pilot program to test the destruction process to ensure it performs as expected.
Make sure that any third party fulfills your service-level agreement (SLA) requirements, including the certification of any destruction.
Your destruction needs will change as your organization evolves. Ensure that the destruction process meets your current needs and is flexible enough to meet your future needs.
Outline steps to follow when destruction is temporarily suspended because of legal or other reasons.
Get a FREE consultation today!