Stop worrying about check-boxes and start thinking about how you delete data
Not enough companies understand how to properly delete the data they hold – and need to address this if they are to comply with new data protection rules, privacy and security experts have said.
Under incoming UK and European regulations, firms will be required to completely remove all the data they hold on an individual if that person requests it.
This goes further than existing "right to be forgotten" rules, and there are concerns that organisations are unaware of – and unprepared for – the complexities of the new laws.
"I'm astounded by how little is known and understood about data sanitisation," said Richard Stiennon, chief strategy officer of the Blancco Technology Group.
Data sanitisation is defined as the deliberate, permanent and irreversible destruction or removal of data.