AuditRubric
data-destruction

data-destruction Controls

4 controls across 3 frameworks.

CMMC L1

cmmc-mp-1

Sanitize or destroy media containing FCI before disposal or reuse

Media Protection / Media Sanitization

HIPAA

hipaa-ps-4

Implement policies and procedures governing the receipt, removal, and disposal of hardware and electronic media containing ePHI

Physical Safeguards / Device and Media Controls

NIST CSF

pr-ds-3

Data are destroyed according to policy when no longer needed

Protect / Data Security
pr-ps-3

Data are destroyed according to policy when platforms or storage media are decommissioned

Protect / Platform Security