And yet, despite this, I see organizations holding on to information for decades, “just in case” they might need it.
“From a cybersecurity perspective, the more personal information a company maintains, the more information it has to lose. Consequently, the more information a company loses, the higher the financial and reputational costs.”
Oh, and the best part about those organizations I mentioned earlier? Often the folks keeping all of this “just in case”, couldn’t even tell you what personal information might be in it or what the risk really is.
That’s not gonna end well.