Who has changed their retention policies, and what is your standard 30 days of full backups? Is it 90, 1 year?

IT Strategy & Roadmap
1.5k viewscircle icon1 Upvotecircle icon2 Comments
Sort by:
Lead Infrastructure Engineer in Finance (non-banking)a year ago

As I have researched best practices for "backup copy" retention, one of the things that became a question is: Do "backup copies" need to follow the same retention cycle as active and/or archived data?  
If your backup "copy" is specifically and only retained for worst case disaster recovery scenario, then is it necessary to maintain that copy in an immutable data vault beyond a 30-to-90-day retention window?  
Is there a need to retain full system backup "copies" for up to a year for potential forensic analysis if your business partners say that it would be difficult at best to return to business as usual if you had to restore from 30+ day old backups?

Ultimately, you need to follow the business and regulatory requirements for data retention for active and archived data, your organization must then decide if backup "copies" must also follow that same retention cycle.  Make whatever retention cycle for backup copies you choose into policy and standards and govern it.

VP of ITa year ago

It would be helpful if you could provide some clarity. Retention policies generally depend on your business, data, and regulatory or compliance requirements. For example, finance and healthcare sectors may need to retain data for a specific number of years based on their domicile and local regulatory needs. In contrast, the EU has different requirements, such as not allowing organizations to store data for more than a certain number of months if the user is inactive. In summary, business needs, regulatory requirements, compliance, and laws should govern retention policies. If there are no specific requirements, and the data is not critical, consider reducing the retention period to less than 30 days if applicable.

Lightbulb on2

Content you might like

How likely are you to integrate AI-enabled PCs into your organization's buying cycle within the next 12 months?

High likelihood - We're planning significant adoption across departments9%

Moderate likelihood - We're considering adoption for specific purposes69%

Undecided or no specific plans9%

Low likelihood - We're acknowledging benefits but not prioritizing purchasing them4%

Very low likelihood - We have no immediate plans for integration6%

View Results

On a scale of 1 - 5, How have economic trends impacted your IT spending?

1. No impact. We are not adjusting our spending12%

2. We are more careful about our purchases going forward53%

3. We are reviewing our budgets and anticipating cuts moving forward25%

4. We have stopped most new purchases and are cutting some existing resources7%

5. We have established a freeze on new purchases and are seeing significant cuts to existing resources2%

View Results

I'm looking to create several strategic roadmap documents for senior management for a variety of platforms including ServiceNow and Salesforce.  I need to consider the following points also:  • Higher level "Why we are doing it" • Wider business benefits • Business Objective based • Need to include things being Secure & Resilient • Consider Tech Debt Does anyone have any examples of something similar they would be willing to share to give my ideas on the format and approach?

Does your IT team or your HR team absorb to costs of HR technology?

Read More Comments

Do you think most businesses are diving into AI faster than previous major technological developments, like smart phones and e-commerce? Do you think the relative ease of adoption is ultimately driving this?

Read More Comments