Information security


Retire information securely

When your information and supporting ICT systems are no longer required, they need to be archived, destroyed, repurposed, or disposed of securely.

The New Zealand Information Security Manual (NZISM) offers advice and controls for managing information and systems that have reached the end of their lifecycle.

Consider these questions:

  • How will you declassify your information and equipment when it no longer needs to be protectively marked?
  • How will you dispose of sensitive information and related equipment?
  • Do you need to check with the original author?
  • Do you have information stored in the cloud that needs to be archived or disposed of?

Make sure you take into account relevant legislation, the requirements in the New Zealand Information Security Manual, and best practice standards. 

Supporting documents and information

Page last modified: 23/03/2023