Process for safe destruction of temporary files and data from data systems


Each data system can create temporary files during its normal operations. These can include e.g. roll-back journals or temporary files associated with updates.

Organisation should have documented a certain time period and process, how temporary files and documents must be destroyed. Organisation should also define procedures for recognizing relevant files that are temporary and not used for any operation by the data system anymore.

Data systems used for processing personal data should have a periodic reviewing process to identify unused temporary data for destruction.

Connected other frameworks and requirements:
A.5: Data minimization
ISO 27018
A.5.1: Secure erasure of temporary files
ISO 27018
A.8.4.1: Temprorary files
ISO 27701
No items found.