Storage media

Removable media includes e.g. flash memories, SD memories, removable storage drives, USB sticks and DVDs.

The organization has defined which removable media is allowed to be used.

The organization has defined procedures for the safe disposal of laptops that are no longer required.

Removable media must be stored in a safe, other locker or other secure furniture. They must not be stored around the office without careful thought.

When removable media is an important part of an organisation's operations, more specific rules have been defined for securing removable media and the information they contain.

• when a removable media is transferred outside the organization, it is impossible to restore its contents if the content is no longer needed;
• the transfer of media from the organization required a permiossion and all transfers will be logged
• removable media are protected by encryption when the confidentiality and integrity of the information is important
• information on removable media is regularly passed on to unused media so that the media does not deteriorate and the data becomes unreadable before that time;
• multiple copies of valuable data are stored on different media to reduce the risk of simultaneous data damage or loss

When information is sent, for example, by postal, courier or transport services, paper documents or data media may be exposed to unauthorized use, misuse or distortion during transport.

To ensure safe transportation, the organization has defined procedures for:

• selection and documentation of reliable transport services
• verifying the identity of transport staff
• ensuring safe packaging
• documentation of made transports