• LinkedIn
  • YouTube
  • Twitter
  • Facebook
  • Google+

Complying with email retention policies

Get PDF file

by on
in Microsoft Email Outlook,Office Technology

Many people have a simple email retention policy: Keep everything forever. A few people just delete everything once they handle it. Both of these approaches have risks that may be unacceptable to your business, but how would you know that? Well, you have to ask.

Whom should you ask? What is the best way to design email retention policies that both minimize risk and optimize productivity? An article posted to InfoSec Institute’s (an information security training company) CISM do­­main for Management, Compliance & Audit summarizes the “Top 5 Email Retention Policy Best Practices,” giving good “starting place” guidance.

1.  Regulatory minimums: HIPAA, IRS, PCI DSS (Payment Card Industry Data Security Standard), state and local departments of revenue, em­­ployee safety and security may dictate how long your organization should keep email. Your legal department should be aware of the requirements.

2.  Segment email: Examples in­­...(register to read more)

To read the rest of this article you must first register with your email address.

Email Address:

Leave a Comment