YALE-MSS-7.4: Recycle IT Systems using Yale's Environmental Health and Safety (EHS) Process

Standards Group:
YALE-MSS-7: Data Protection

YALE-MSS-7.4: Recycle IT Systems using Yale's Environmental Health and Safety (EHS) Process

Low Risk Endpoint Required Moderate Risk Endpoint Required High Risk Endpoint Required Low Risk Server Required Moderate Risk Server Required High Risk Server Required Low Risk Mobile Device Required Moderate Risk Mobile Device Required High Risk Mobile Device Required Low Risk Network Printer Required Moderate Risk Network Printer Required High Risk Network Printer Required

Details

To recycle your IT System, follow Yale's Environmental Health and Safety (EHS) process. Before recycling the device, make sure you can delete the data on the device. If the data you have on your device is not available anywhere else, the University may require you to keep it. Review the Yale Records Retention Schedule maintained by the Office of General Counsel. This outlines how long we must keep certain data records preserved.

When use or retention period of any media containing confidential information is completed, the confidential information must be destroyed, rendered unrecoverable, or returned to the owner. See Yale-MSS-7.5 for details on how to properly sanitize a device.

Electronic devices with electronic protected health information (“ePHI”) or other sensitive data must remain in a secured location while awaiting pickup.

This process is required for any IT System used at Yale, despite its classification. The EHS process destroys the computer's hard drive to minimize the risk of data loss and recycle the device safely.

Controls