Re: postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data.

From: Karsten Hilbert <Karsten(dot)Hilbert(at)gmx(dot)net>
To: pgsql-general(at)postgresql(dot)org
Subject: Re: postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data.
Date: 2015-11-19 19:16:30
Message-ID: 20151119191630.GA3625@hermes.hilbert.loc
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

On Thu, Nov 19, 2015 at 09:01:47AM -0600, Merlin Moncure wrote:

> It's quite a stretch to assume that HIPAA applies to internal garbage
> collection minutia.

It, of course, does.

Which is why applying your suggestion ...

> A much better way to look at compliance is to encrypt all sensitive
> details and, when the customer relationship is gone, delete the key.

... is necessary.

Karsten
--
GPG key ID E4071346 @ eu.pool.sks-keyservers.net
E167 67FD A291 2BEA 73BD 4537 78B9 A9F9 E407 1346

In response to

Browse pgsql-general by date

  From Date Subject
Next Message Pavel Stehule 2015-11-19 19:22:56 Re: Fetching from psql procedures
Previous Message Adrian Klaver 2015-11-19 19:12:18 Re: postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data.