Welcome!

News Feed Item

Survey: Nearly Half of Organizations Lack Formal Program for Disposing of Retired Servers, Hard Drives and Other Storage Devices

A new report from Iron Mountain® Incorporated (NYSE: IRM), the storage and information management company, and TechTarget, Inc. (NASDAQ: TTGT), the technology media company, suggests organizations have room to improve when it comes to getting rid of old computers, cell phones, hard drives, servers and other data storage devices.

Titled Enterprises have Room for Improvement in Secure IT Asset Disposition, the newly released report indicates that while IT and business professionals have made advances in their efforts to securely dispose of data center, storage and office equipment, additional work is required to protect the information stored on these devices, comply with data privacy laws, and recoup some of the device’s original value through recycling. Some of the report’s key insights include:

  • Organizations dispose of IT storage devices to avoid risk: More often than not, an organization’s goals in enacting a Secure IT Asset Disposition (SITAD) policy focus on mitigating risks like losing proprietary data (89 percent of respondents) or avoiding legal and compliance headaches associated with protecting privacy (74 percent). However, other positive benefits of a SITAD program like reducing space issues or recouping financial investments are largely overlooked, with the exception of sustainability, which 63 percent of respondents cite as a program goal.
  • Enterprises struggle with SITAD program implementation and compliance: Almost half of respondents – 46 percent – acknowledged that they either don’t have a formal SITAD plan or that their formal plan isn’t widely adopted across their organization. Findings indicate that the lack of widespread compliance among employees stems from insufficient education about SITAD policies or inadequate oversight in how employees implement those policies.
  • IT and business executives agree that SITAD is a significant concern: Three quarters of both business leaders and their IT counterparts state they are either concerned or very concerned about potential shortcomings in their SITAD programs. That concern doesn’t seem to translate into program improvements, however, due to the misperceptions that comprehensive programs cost more and that flaws in their current systems aren’t posing urgent risks for the organization.
  • Third-party specialists are primarily utilized for hardware disposal: Sixty-four percent of respondents currently leverage outside SITAD experts to some degree – notably to dispose of hardware, including data center equipment like servers and computers and mobile phones. However, organizations can further leverage third-party specialists for guidance on strategy and success metrics. While cost is cited as the biggest obstacle in pursuing help from outside resources (45 percent of respondent), third-party experts can often save organizations money by assessing the value of decommissioned equipment and then recycling it to recoup a portion of the original investment.

“The secure disposition of IT assets will continue to be a top priority for organizations as we face increasingly complex technological, legal and compliance environments,” said Jay Livens, director of product and solutions marketing, data management, Iron Mountain. “When looking to properly dispose of computers, cell phones, servers and other storage devices, organizations should do so in a compliant, environmentally correct manner to ensure they’re meeting all internal and external data privacy requirements and recouping the maximum economic value from their used equipment.”

In light of the survey’s findings, Iron Mountain offers the following SITAD tips and best practices:

  • Ensure all computer media and associated data is permanently destroyed and non-recoverable before disposing of the storage device.
  • Establish a defensible, documented, and repeatable process to prepare, handle or transport, and destroy the data that resides on electronic media.
  • Improve audit readiness using workflows that include security personnel assigned to monitor the destruction process.
  • Ensure media scheduled for offsite destruction is securely transported with dedicated routes, 24x7 GPS tracking, thoroughly vetted drivers and a well-documented chain-of-custody.
  • Avoid inadvertent disclosures by destroying sensitive or unencrypted data in the right manner at the right time.
  • Establish methodologies that ensure reliability and consistency from collection through final destruction of end-of-life IT assets.
  • Pursuing third-party vendors that are e-Stewards Certified Recyclers, meaning they adhere to the highest standard of environmental responsibility and worker safety, while protecting human health and the global environment.

TechTarget’s study was based on 125 responses from registered visitors to SearchDataCenter.com. The full report with complete survey data is available at www.ironmountain.com/itassets

About Iron Mountain

Iron Mountain Incorporated (NYSE: IRM) is a leading provider of storage and information management services. The company’s real estate network of over 67 million square feet across more than 1,000 facilities in 36 countries allows it to serve customers with speed and accuracy. And its solutions for records management, data management, document management, and secure shredding help organizations to lower storage costs, comply with regulations, recover from disaster, and better use their information for business advantage. Founded in 1951, Iron Mountain stores and protects billions of information assets, including business documents, backup tapes, electronic files and medical data. Visit www.ironmountain.com for more information.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
The cloud competition for database hosts is fierce. How do you evaluate a cloud provider for your database platform? In his session at 18th Cloud Expo, Chris Presley, a Solutions Architect at Pythian, gave users a checklist of considerations when choosing a provider. Chris Presley is a Solutions Architect at Pythian. He loves order – making him a premier Microsoft SQL Server expert. Not only has he programmed and administered SQL Server, but he has also shared his expertise and passion with b...
In his session at 19th Cloud Expo, Claude Remillard, Principal Program Manager in Developer Division at Microsoft, contrasted how his team used config as code and immutable patterns for continuous delivery of microservices and apps to the cloud. He showed how the immutable patterns helps developers do away with most of the complexity of config as code-enabling scenarios such as rollback, zero downtime upgrades with far greater simplicity. He also demoed building immutable pipelines in the cloud ...
As data explodes in quantity, importance and from new sources, the need for managing and protecting data residing across physical, virtual, and cloud environments grow with it. Managing data includes protecting it, indexing and classifying it for true, long-term management, compliance and E-Discovery. Commvault can ensure this with a single pane of glass solution – whether in a private cloud, a Service Provider delivered public cloud or a hybrid cloud environment – across the heterogeneous enter...
"IoT is going to be a huge industry with a lot of value for end users, for industries, for consumers, for manufacturers. How can we use cloud to effectively manage IoT applications," stated Ian Khan, Innovation & Marketing Manager at Solgeniakhela, in this SYS-CON.tv interview at @ThingsExpo, held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA.
Today we can collect lots and lots of performance data. We build beautiful dashboards and even have fancy query languages to access and transform the data. Still performance data is a secret language only a couple of people understand. The more business becomes digital the more stakeholders are interested in this data including how it relates to business. Some of these people have never used a monitoring tool before. They have a question on their mind like “How is my application doing” but no id...
@GonzalezCarmen has been ranked the Number One Influencer and @ThingsExpo has been named the Number One Brand in the “M2M 2016: Top 100 Influencers and Brands” by Onalytica. Onalytica analyzed tweets over the last 6 months mentioning the keywords M2M OR “Machine to Machine.” They then identified the top 100 most influential brands and individuals leading the discussion on Twitter.
In IT, we sometimes coin terms for things before we know exactly what they are and how they’ll be used. The resulting terms may capture a common set of aspirations and goals – as “cloud” did broadly for on-demand, self-service, and flexible computing. But such a term can also lump together diverse and even competing practices, technologies, and priorities to the point where important distinctions are glossed over and lost.
Predictive analytics tools monitor, report, and troubleshoot in order to make proactive decisions about the health, performance, and utilization of storage. Most enterprises combine cloud and on-premise storage, resulting in blended environments of physical, virtual, cloud, and other platforms, which justifies more sophisticated storage analytics. In his session at 18th Cloud Expo, Peter McCallum, Vice President of Datacenter Solutions at FalconStor, discussed using predictive analytics to mon...
All clouds are not equal. To succeed in a DevOps context, organizations should plan to develop/deploy apps across a choice of on-premise and public clouds simultaneously depending on the business needs. This is where the concept of the Lean Cloud comes in - resting on the idea that you often need to relocate your app modules over their life cycles for both innovation and operational efficiency in the cloud. In his session at @DevOpsSummit at19th Cloud Expo, Valentin (Val) Bercovici, CTO of Soli...
Information technology is an industry that has always experienced change, and the dramatic change sweeping across the industry today could not be truthfully described as the first time we've seen such widespread change impacting customer investments. However, the rate of the change, and the potential outcomes from today's digital transformation has the distinct potential to separate the industry into two camps: Organizations that see the change coming, embrace it, and successful leverage it; and...
Without a clear strategy for cost control and an architecture designed with cloud services in mind, costs and operational performance can quickly get out of control. To avoid multiple architectural redesigns requires extensive thought and planning. Boundary (now part of BMC) launched a new public-facing multi-tenant high resolution monitoring service on Amazon AWS two years ago, facing challenges and learning best practices in the early days of the new service. In his session at 19th Cloud Exp...
Fact: storage performance problems have only gotten more complicated, as applications not only have become largely virtualized, but also have moved to cloud-based infrastructures. Storage performance in virtualized environments isn’t just about IOPS anymore. Instead, you need to guarantee performance for individual VMs, helping applications maintain performance as the number of VMs continues to go up in real time. In his session at Cloud Expo, Dhiraj Sehgal, Product and Marketing at Tintri, sha...
The Internet of Things (IoT) promises to simplify and streamline our lives by automating routine tasks that distract us from our goals. This promise is based on the ubiquitous deployment of smart, connected devices that link everything from industrial control systems to automobiles to refrigerators. Unfortunately, comparatively few of the devices currently deployed have been developed with an eye toward security, and as the DDoS attacks of late October 2016 have demonstrated, this oversight can ...
Extracting business value from Internet of Things (IoT) data doesn’t happen overnight. There are several requirements that must be satisfied, including IoT device enablement, data analysis, real-time detection of complex events and automated orchestration of actions. Unfortunately, too many companies fall short in achieving their business goals by implementing incomplete solutions or not focusing on tangible use cases. In his general session at @ThingsExpo, Dave McCarthy, Director of Products...
Regulatory requirements exist to promote the controlled sharing of information, while protecting the privacy and/or security of the information. Regulations for each type of information have their own set of rules, policies, and guidelines. Cloud Service Providers (CSP) are faced with increasing demand for services at decreasing prices. Demonstrating and maintaining compliance with regulations is a nontrivial task and doing so against numerous sets of regulatory requirements can be daunting task...