ARIS - SHARE YOUR IDEAS
It is required by law (GDPR) that when a customer wants their data to be deleted from a system it should be possible to do so (deletion by design). Currently this is not possible in ARCM. We, as xxx, want this functionality to be implemented.
Within in our company: deletion by design is key. An IT system must have the capability to delete data after the retention period. For instance non relevant or old risk assessments may not live in the database for ever but must be deleted. We need a functionality were this done. Would be awesome when you can say delete this data after x year (retention period)
So far, we offer the possibility to anonymize user in ARCM (see help files chapter Anonymize ARIS Risk and Compliance users) instead of deleting them, as we see this is relevant for the purpose of audit logs etc.)
Dear customers, please vote on this idea if it is also relevant for your company, as we would like to know, if this is relevant for multiple companies. Thank you!