Disk Sanitizing Regulation for Workstations & Hard Drive Equipped Printers
RUL08.05.02 Current Version
Authority: Vice Chancellor for Administration and Finance
History: Policy Number 7.303
Supersedes Policy Dated: October 3, 2003
Effective Date: October 3, 2003
Review Date: November 9, 2011
Placed in University Policy Manual after EXPEDITED REVIEW, transitioned without substantive change from prior version, March 25, 2013.
Related Policies: N/A
Additional Resources: North Carolina Records Retention Policy
US Department of Defense (DoD) 5220.22-M National Industrial Security Program Operating Manual (NISPOM)
Contact Information: Ray Drake
Assistant Director, IT Services
1.1 Purpose of Regulation
To maintain data confidentiality by preventing access to information previously stored on workstations, transferred to new users or destined for surplus.
1.2 Person(s) with Primary Responsibility
Managers of Desktop Support Staff
When a state-owned workstation or hard-drive equipped printer is sent from ECU to surplus, the hard drive(s) shall be removed before the computer/printer leaves the ECU campus. Removed hard drives will be destroyed.
If a workstation is transferred from one primary user to another, its hard drive(s) shall be sanitized (i.e. reimaged) at the time of transfer.
Users should ensure that data covered by the North Carolina Records Retention Policy is copied from computers and appropriately stored before their disks are sanitized.