Remove unnecessary sensitive information
Summary
The system must remove sensitive and personal information when it is no longer required.
Description
Systems usually request sensitive or personal information from their users or collect it based on their interactions with the application. Regulations demand that none of these collections occur without the users consent, and that it not be stored for more time than strictly necessary. Therefore, the system should delete this information after it is no longer required.
Supported In
This requirement is verified in following services
| Plan | Supported |
|---|---|
| Machine | 🔴 |
| Squad | 🟢 |
References
- GDPR-5_1e. Principles relating to processing of personal data
- SOC2®-P3_1. Additional criteria for privacy (related to collection)
- SOC2®-P4_3. Additional criteria for privacy (related to use, retention, and disposal)
- PA-DSS-1_1. Do not store sensitive authentication data after authorization
- PA-DSS-1_1_1. Do not store full contents of any track from the magnetic stripe
- PA-DSS-1_1_2. Do not store the card verification value or code used to verify transactions
- PA-DSS-1_1_3. Do not store personal identification number (PIN) or the encrypted PIN block
- PA-DSS-1_1_4. Securely delete any track data, card verification values or codes, and PINs or PIN block data stored by application in accordance with industry-accepted standards
- PA-DSS-2_1. Provide guidance to customers regarding secure deletion of cardholder data
- PDPA-6_24. Protection of personal data
- PDPA-6_25. Retention of personal data
- POPIA-3A_14. Purpose specification - Retention and restriction of records
- PDPO-5_26. Erasure of personal data no longer required
- PDPO-S1_2. Accuracy and duration of retention of personal data
- CMMC-MA_L2-3_7_3. Equipment sanitization
- CMMC-MP_L1-3_8_3. Media disposal
- HITRUST CSF-09_p. Disposal of media
- HITRUST CSF-13_j. Data minimization
- HITRUST CSF-13_l. Retention and disposal
- HITRUST CSF-13_m. Accuracy and quality
- ISO/IEC 27002-7_14. Secure disposal or re-use of equipment
- ISO/IEC 27002-8_10. Information deletion
- LGPD-15_I. Termination of Data Processing
- LGPD-16. Termination of Data Processing
- LGPD-18_IV. Data Subjects Rights
- LGPD-60. Final and Transitional Provisions
- FERPA-D_35_b_2. Conditions of prior consent required to disclose information
- OWASP Top 10 Privacy Risks-P6. Insufficient deletion of personal data
- OWASP SCP-8. Data protection
- OWASP MASVS-V2_10. Security verification requirements
- NIST 800-115-7_4_4. Data destruction
- OWASP ASVS-14_2_2. Dependency
- C2M2-1_2_h. Manage IT and OT asset inventory
- PCI DSS-3_2_1. Retain account data only where necessary and deleted when no longer needed
- PCI DSS-3_3_3. Sensitive authentication data (SAD) is not stored after authorization
- PCI DSS-6_5_6. Changes to all system components are managed securely
- SIG Core-P_5_1. Privacy
- CWE™-212. Improper removal of sensitive information before storage or transfer
- CWE™-226. Sensitive information in resource not removed before reuse
- CWE™-1272. Sensitive information uncleared before debug/power state transition
- ISO/IEC 27001-7_14. Secure disposal or re-use of equipment
- ISO/IEC 27001-8_10. Information deletion
- CASA-8_3_8. Sensitive Private Data
- Resolution SB 2021 2126-Art_28_1. Security in Electronic Channels - ATMs
Vulnerabilities
Search for vulnerabilities in your apps for free with our automated security testing! Start your 21-day free trial and discover the benefits of our Continuous Hacking Machine Plan. If you prefer a full service that includes the expertise of our ethical hackers, don't hesitate to contact us for our Continuous Hacking Squad Plan.