7.14 Secure Disposal or Re-Use of Equipment

Control

Items of equipment containing storage media should be verified to ensure that any sensitive data and licensed software has been removed or securely overwritten prior to disposal or re-use.

Purpose

Secure disposal or re-use of equipment in information security refers to the process of safely disposing of or reusing computer hardware and other equipment in a manner that protects the confidentiality, integrity, and availability of the data stored on the equipment. This can include tasks such as securely wiping the data from the equipment, physically destroying the hardware to prevent it from being reused, and properly disposing of the equipment to prevent environmental harm. The goal of secure disposal or re-use of equipment is to prevent the unauthorised access or misuse of data that could compromise the security of the network.

Implementation Guidance

There are several standard guidelines for the secure disposal or re-use of equipment in information security. Some of these guidelines include:

  • Documentation: It is important to keep records of the disposal or re-use of equipment, including details such as the date and method of disposal, the person responsible for the disposal, and any other relevant information. This documentation can be used to demonstrate compliance with security policies and regulations and can help ensure that the disposal or re-use of equipment is done in a secure and responsible manner.
  • Data erasure: Before disposing of or reusing equipment, it is important to securely erase the data stored on the equipment. This can be done using specialized software tools that overwrite the data on the equipment multiple times, making it impossible to recover the data.
  • Physical destruction: In some cases, it may be necessary to physically destroy the equipment to prevent it from being reused. This can include tasks such as shredding hard drives, crushing disks, and smashing other hardware components.
  • Proper disposal: It is important to properly dispose of the equipment to prevent environmental harm. This can include recycling or donating the equipment, if possible, or disposing of it in accordance with local laws and regulations.

ISO 27001

Find out more about our ISO 27001 Consultancy Services
ISO 27001 Consultancy
< Back to Controls
ISO 27001:2022

Physical Controls

AvISO will be updating and reviewing all the information regularly, so keep us bookmarked and keep checking!

Got a question or need help? Don't hesitate to reach out to our team.

Need help with an ISO?

By filling out this form, you agree to the terms laid out in our privacy policy
Thanks, We'll reply asap
Request Failed to send, please check fields

27002:2022 Related Controls

CLick to view control
7.1 Physical Security Perimeters
7.2 Physical Entry
7.3 Securing Offices, Rooms, and Facilities
7.4 Physical Security Monitoring
7.5 Protecting Against Physical and Environmental Threats
7.6 Working in Secure Areas
7.7 Clear Desk and Clear Screen
7.8 Equipment Siting and Protection
7.9 Security of Assets Off-Premises
7.10 Storage Media
7.11 Supporting Utilities
7.12 Cabling Security
7.13 Equipment Maintenance
7.14 Secure Disposal or Re-Use of Equipment
ask a question

If you would like to know more about ISO Standards, Certification and the value of a good management system you can add to your business we would love to hear from you: Kent: 01892 800476 | London: 02037 458 476 | info@avisoconsultancy.co.uk

By filling out this form, you agree to the terms laid out in our privacy policy
Thank you!
Your submission has been received, one of our team members will be in touch soon.
Oops! Something went wrong while submitting the form.
ISO consultants kent
By clicking “Continue To Site”, you agree to the storing of cookies on your device to enhance site navigation, analyse site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
Continue To Site