| ||||||||
| ||||||||
Current Filter: Green>>>>>> Getting A Good Grasp On Data Policies Editorial Type: Opinion Date: 05-2013 Views: 2293 Key Topics: Green Sustainability Data Centres Key Companies: Speechly Bircham LL Key Products: Key Industries: | |||
| Having sustainable data retention policies and procedures in place makes a lot of sense. But what are the challenges along the way? Mark Bailey explains
Implementing sustainable data retention policies and procedures across an organisation is a laudable goal - and sound business thinking as well. But there are technical and legislative issues that need to be considered: what is the best strategy for data retention and how long does data need to be retained? Other issues associated with a comprehensive data strategy are to consider: what are risks associated with the strategy; the sanctions for failure to comply; and/or the financial and reputational risks, which could outweigh the environmental considerations. In a 2012 survey, 'Information Retention and e-Discovery', Symantec looked at how organisations are managing increasing volumes of electronic data. The results of the survey show that organisations are starting to pay attention to the requirements of data retention. The number of organisations without a formal information retention plan in 2012 had halved from the 2011 survey. However, in spite of this, it seems that organisations are still struggling to implement a data retention plan that matches the requirements of the business and, at the same time, fulfils the legal and regulatory requirements to which the organisation is subject. Implementing a data retention plan is a matter of balance. Taking an all-inclusive approach and retaining too much data can be counterproductive. Retaining too much data presents additional risks, including:
??????? Spiralling costs of power and storage Excessive protection for less valuable data increases licensing and data storage costs, as well as potentially overprotecting non-sensitive data. The fifth data protection principle in the UK Data Protection Act requires that "personal data processed for any purpose... shall not be kept for longer than is necessary for that purpose..." There is a risk of fines from the Information Commissioner where the data protection principles are breached, quite apart from the reputational loss that a data breach entails. Measures proposed under the new EU data protection Regulation, which could come into force around 2016, propose increased fines of up to 2% of global annual turnover. However, as the Symantec survey revealed, there are perceived barriers to implementing and maintaining a data retention policy including:
??????? Costs associated with collection, analysis and review Furthermore, different data has different data requirements and it is a time-consuming exercise to understand these requirements. For example:
??????? Accounts records - a minimum of three years for a private company
Page 1 2 | ||
Like this article? Click here to get the Newsletter and Magazine Free! | |||
Email The Editor! OR Forward Article | Go Top | ||
PREVIOUS | NEXT |