Monday, October 15, 2012

Information Security Best Practices: Data Classification and Retention


Lessen your liability by classifying exactly what type of data you need and how long you need it. A breach is bad enough, what’s worse is if data is stolen that you didn’t need to keep or shouldn’t have had to begin with. In the case of TJX (“PCI DSS auditors see lessons in TJX data breach” TechTarget), many of the credit card numbers affected had no business purpose in being kept.
Posted by at No comments:

Tuesday, October 2, 2012

Information Security Best Practices: Data Classification and Retention

Lessen your liability by classifying exactly what type of data you need and how long you need it. A breach is bad enough, what’s worse is if data is stolen that you didn’t need to keep or shouldn’t have had to begin with. In the case of TJX  many of the credit card numbers affected had no business purpose in being kept.
Posted by at No comments:
Subscribe to: Comments (Atom)