Encryption of data must be carried out using 7-zip AES encryption prior to transfer to Groupcall systems. A new GUID should be generated and used as an encryption key in each case and note must be kept of any further copies of the data that are made.
When unpacking data to work with it, this must occur on either
- Appropriately secured Azure SQL or Table Storage
- An encrypted workstation or laptop
When disposing of data, all copies of it:
- Must be deleted from Azure SQL or Table Storage
- Must be securely deleted from encrypted workstations or laptops