Are there specific regulations that regard data destruction?
It’s not so much that they require data destruction as they require you to do what you can to make sure that no one reads the data. One of the data destruction methods that I forgot to mention is that you can encrypt it in the first place when you initially store the data on the system. Then data destruction can simply take the form of deleting the keys to the data. Now the data is encrypted and inaccessible, and is considered destroyed by a number of regulations. If you look at regulations like HIPAA that say if you store patient data electronically, you need to make sure that the wrong people don’t see that data. That goes to the end of the line where if you happen to store patient data on a computer, then you’re going to throw that computer away or destroy it. The data on that drive needs to be erased and needs to be erased more than by simply deleting the data, it needs to be destroyed. So it’s not so much that the regulation requires destruction, it’s that the only way to fully fo
Related Questions
- How does Nova Scotia compare with other provinces with regard to regulations/policy for disclosure of wrongdoing?
- In regard to data reporting would BatteryBack request full 2009 figures or just from the 5th of May?
- What other regulations and legislation should be considered when designing a Data Centre?
