Three sustainability tasks to put on your GDPR to do list:
1. Review the design of physical data and data storage systems.
Sustainable and efficient design across the lifecycle can help companies comply with data protection regulations. If storage architectures are poorly designed inefficiently managed, then not only is space and energy wasted – there is a greater risk of data being duplicated, being difficult to find, being retained without purpose, becoming out of date, not being promptly erased and not being securely disposed of.
2.Check policies for handling hardware disposals
If end-of-life equipment is handled by an accredited hardware recycling agent, data carriers will be securely destroyed before the hardware is recycled – and evidence notes provided. A commitment to recycling can help businesses maintain an audit trail throughout the hardware lifecycle and demonstrate compliance with data protection regulations.
3.Check your suppliers
If services are trusted to suppliers or third party contractors, make sure that they demonstrate an active commitment to secure data destruction and responsible hard ware disposal at end-of-life. This might be evident in a sustainability or enviromental policy; or accreditation against a standard such as ISO 14010 Enviromental Management.