undefined | Better HN

0 pointsSymbiote7y ago0 comments

+1 insightful.

While looking at GDPR compliance, I came across a guide that said "backups are kept for as long as it will take you to notice the missing data and restore it. Exported data kept for longer than this is an archive".

That helped me realise I really shouldn't be keeping 5-year-old database backups for some systems; a few months is plenty sufficient time for us to notice any corruption. As part of that clear-out, I searched for and deleted many old mysql-backup-2012-just-in-case.tar.gz from /root and similar places.

0 comments

3 comments · 2 top-level

dserodio7y ago· 1 in thread

Do you have the link to that guide by any chance? I haven't found a guide that's practical enough for my needs yet.

SymbioteOP7y ago

I think it was this, and the source it links to.

https://community.jisc.ac.uk/blogs/regulatory-developments/a...

dane-pgp7y ago

Speaking of GDPR compliance, and as some in the Reddit thread have pointed out, the GDPR requires disclosure of serious data breaches to the affected users without "undue delay", and to the relevant supervisory authority within 72 hours:

https://ico.org.uk/for-organisations/guide-to-the-general-da...

It will be interesting to see what consequences, if any, Reddit end up facing over this.

j / k navigate · click thread line to collapse