When to use this
Use this register to record deletion or destruction of information, systems, storage media, backups, and cloud data.
Related controls
- A.8.10 Information Deletion
- A.7.10 Storage Media
- A.7.14 Secure Disposal or Re-Use of Equipment
- A.5.33 Protection of Records
Register
| Information asset | Location/media | Retention rule | Deletion trigger | Method | Date completed | Evidence | Performed by | Verified by |
|---|---|---|---|---|---|---|---|---|
| TBD | TBD | TBD | TBD | Secure delete / crypto erase / destruction / cloud deletion | TBD | TBD | TBD | TBD |
Minimum checks
- Retention rule supports deletion.
- Method matches sensitivity and storage type.
- Evidence is retained.
- Items awaiting destruction were protected.
- Verification was completed where required.
- Template
- Iso27001
- Technological controls
- Information deletion
Note Metadata
Aliases: Secure Deletion Register
Source: 90 Templates/Information Deletion and Destruction Register.md
Related Notes
- ISO 27001 A.5.33 - Protection of Records
- ISO 27001 A.7.10 - Storage Media
- ISO 27001 A.7.14 - Secure Disposal or Re-Use of Equipment
- A.8.10 Audit Evidence Pack
- ISO 27001 A.8.10 - Information Deletion
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Audit Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- ISO 27002 Annex A Control Interpretation Map
- A.8.10 Audit Checklist
- Templates MOC