As security is such a major theme on the Act, many organizations are using the international ISO standards. The ISO 27001 Portal outlines these. A copy of the standards, and security policies, can be obtained via the ISO 17799 Toolkit.
Our server logs indicate some interesting mis-spellings: Sarbannes Oxley, Sorbane Oxley, Sarbanne Oxley, Sarbaines Oxley, Sarbanesoxley, Sorbanes Oxley, Sabanes Oxley, Sarbane Oxley, and Sarbanes Oaxley, to name but a few!
Sarbanes-Oxley Act Forum: Forums
The Sarbanes Oxley Act :: View topic - Email Retention
Posted: Thu Aug 05, 2010 12:36 pm Post subject: Email Retention
I have found some good guidance regarding email retention for both regulated and unregulated businesses. However, it is not a simple issue. What is your company doing in practice? Have you set one policy across the board or do you segment business units and users?
Joined: Jan 12, 2006 Posts: 849 Location: Roanoke, Virginia
Posted: Mon Nov 01, 2010 9:40 am Post subject:
Hi Matt - Using the forum SEARCH facilities here, you'll see many references pointing to a 7 year history retention period for documentation pertinent to SOX. This related correspondence is usually backed up with archival capabilities in email or server related backups
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
Trademarks referenced on the SOX Act Forum are property of their respective owners. Comments are property of their respective posters. Sarbanes-Oxley Act Implementation Portal: Sarbanes Oxley compliance, information, software, & internal audit committee resources. Sarbox. Site source is copyright nuke (c)2003, and is Free Software under the GNU / GPL licence agreement. All Rights Are Reserved.