This article can also be found in the Premium Editorial Download "Storage magazine: Benefits of third-party data protection and recovery management tools."
Download it now to read this article plus other related content.
What you can do now
For users, it's time to get your house in order. This means understanding requirements, completing a cost/risk analysis, establishing policies, and developing procedures to classify and manage data at a high level.
Here are a few items to consider:
- Understand current policies and practices regarding paper records. Inevitably, there will be differences between paper and electronic data retention, but this is often a useful place to start.
- Develop a retrieval/recovery policy before or in conjunction with retention; e.g., who needs to search, extract and delete, as well as policies for use and response times.
- Determine associated data-preservation policy requirements, such as immutability, authentication and security.
- Before investing in technology, develop a policy-driven reference architecture that addresses requirements for ingestion, access, retention, retrieval, security, etc. The more specific you are with vendors, the better your solution will be.
- Don't always assume that you need WORM. Understanding the regulatory requirements in this area can save money and future headaches.
- Look for data pruning opportunities. The "archive everything" approach will be unsustainable and costly. Effort invested here will ultimately play an enormous role in
- the future usefulness of archived data and the cost to maintain it.
- Push your vendors to support and adopt archiving standards. In product RFPs, have them describe how the data will be retrieved and presented in five years, 10 years and 25 years. This will be fun, if not educational.
This was first published in July 2007