Reposted from the Open-E Site.
What to do with old hard disks? What to do if your company is going to upgrade its equipment? How to get rid of any useless hardware? However we approach these problems, everything will always concern one important issue – the protection of confidential data.
Briefly and generally – data security policy is a set of precise rules and procedures created to organize the resources of a company including the issues of protection, management or sharing data. Such policies also include scenarios for i.e. data loss, unauthorized access etc. We can ask “what’s it for?” but don’t you think such a question is misplaced? In the modern information society, data management has became a matter of “to be or not to be” on the market. It is not only about the law and the security of personal data. Information is a pillar of modern enterprise.
So, if we talk about data security, what should be taken into account? We can point out three main areas. The first area is software, the second is hardware and the last is models of security, like: events tracking, permission management of levels, control over access, mechanisms and methods of identification and authentication control etc. In the cases of the first and third one, we can talk about avoiding any kind of leakage of data currently stored and used. Supervision over the issue of hardware is however more complex. It concerns the prevention and protection not only on the physical plane but also such problems as utilization.
What to do with useless hardware? How to do it in relation to company’s policy on data security? Let’s think about the problem in two way. First we should take into consideration the situation in which we have to deal with data that does not require protection. In the second case we should take into account critical data – important for the functioning of the company on the market.
Read more here.