There are acts, laws, rules, policies and guidelines. Some are regulated at the federal or state government level or per agencies; others are SEC driven for example. To make matters worse, some rules dictate when you CAN dispose of data and others, when you MUST dispose of data (privacy).
The problem remains that there is no "one-stop shopping" for this type of information. The only way to narrow down your search is by focusing on the type of business your organization is in and the type of data you are enquiring about. There are books available on the subject but you must make sure you consult one that was written recently as things change fast. Many find it useful to seek legal counsel when they are concerned about the legal requirements and particular nature of the data that they want to store (or delete).
Related Q&A from Pierre Dorion
With some limitations, Federal Continuity Directives 1 and 2 can be used to help conduct a business impact assessment.continue reading
Find out what business impact assessment errors you can most easily identify in this Expert Response from Pierre Dorion.continue reading
Pierre Dorion highlights some of the business impact analysis tools available to help companies in this Expert Response.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.