Problem solve Get help with specific problems with your technologies, process and projects.

E-mail retention policy for financial institution

We are reviewing our e-mail retention policy and would like to know if there is a standard or policy already in...

place for financial institutions. If not, what are best practices regarding how long to keep e-mails on both the server and the client?

I am not an expert in financial instituion regulations, but I believe government standards define a specific amount of time that e-mails must be retained. You should check with your compliance department to see what requirements you must follow. You can also take a look at PoliVec's Builder product, which help you build security policies. They have a template that follows the standards necessary to adhere to the requirements of the Gramm-Leach-Bliley Act for financial institutions.

For more information on this topic, visit these other SearchSecurity.com resources:
Best Web Links: Securing Financial Services/Banking
Best Web Links: Secure Messaging

This was last published in October 2002

Dig Deeper on Email and Messaging Threats-Information Security Threats

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.