IDC OPINION
After the global economic and geopolitical turmoil of the past two and a half years, increased regulatory oversight is expected to become the norm. Organizations therefore need to be cognizant of their obligations and execute plans to manage information consistent with the records management, data retention, and data protection requirements across the countries in which they operate. Corporate written policies should address local requirements, keeping in mind that data protection implies obligations to (1) enforce the smart deletion of data and convenience copies as well as (2) prevent the destruction of critical business records due to legal and regulatory mandates. Written policies should also anticipate and plan for potential cross-border data transfer issues that may arise from these data protection and data retention (legal and regulatory) obligations.
Organizations should also have technical protocols in place to enforce these written policies. Operational service-level and cost objectives also demand that organizations seek ways to realize leverage and to have the ability to enforce policies consistently across multiple media and application types.
Adopting a global records management, data retention, and data protection framework and employing technology to enforce these policies into technical protocols will provide cost efficiencies and risk mitigation benefits.
IN THIS WHITE PAPER
This IDC White Paper discusses the impact of the critical records management, data retention, and data protection regulations across key geographies (namely, the United States, the United Kingdom, France, Germany, and Australia). It concludes with recommendations for developing global information governance best practices. Readers should note that providing legal and regulatory information is not legal advice. IDC does not provide legal advice. Readers should consult with their legal counsel experts accordingly.
read more
More...
After the global economic and geopolitical turmoil of the past two and a half years, increased regulatory oversight is expected to become the norm. Organizations therefore need to be cognizant of their obligations and execute plans to manage information consistent with the records management, data retention, and data protection requirements across the countries in which they operate. Corporate written policies should address local requirements, keeping in mind that data protection implies obligations to (1) enforce the smart deletion of data and convenience copies as well as (2) prevent the destruction of critical business records due to legal and regulatory mandates. Written policies should also anticipate and plan for potential cross-border data transfer issues that may arise from these data protection and data retention (legal and regulatory) obligations.
Organizations should also have technical protocols in place to enforce these written policies. Operational service-level and cost objectives also demand that organizations seek ways to realize leverage and to have the ability to enforce policies consistently across multiple media and application types.
Adopting a global records management, data retention, and data protection framework and employing technology to enforce these policies into technical protocols will provide cost efficiencies and risk mitigation benefits.
IN THIS WHITE PAPER
This IDC White Paper discusses the impact of the critical records management, data retention, and data protection regulations across key geographies (namely, the United States, the United Kingdom, France, Germany, and Australia). It concludes with recommendations for developing global information governance best practices. Readers should note that providing legal and regulatory information is not legal advice. IDC does not provide legal advice. Readers should consult with their legal counsel experts accordingly.
read more
More...