Don’t forget information security when dealing with IT equipment waste

The recycling and reuse of IT equipment is often neglected in the context of organisations’ data management. However, careless data management at the end of a device’s life cycle may jeopardise earlier measures to ensure an adequate level of information security and data protection. Under the Waste Act, IT equipment waste must be reused to the greatest extent possible, and the responsibility for managing the waste lies with its producer. When done carelessly, reusing IT equipment may increase the risk of a data leak. The requirements regarding information security, data protection and recycling can all be fulfilled, however, as the case of the Kanta-Häme health care district illustrates.