Client asking me to delete corporate PII from an Ex employees personal laptop and mobile device
So, I have a weird one that I have not ran into before.
Client caught employee taking PI through an internal audit Client performs after an employee resigns.
The kicker here is that this is a BYOD company, so the PI was/is presumably on the EX employee personal laptop and/or mobile device.
Client has agreement from Ex employee to provide the two devices for the investigation.
Client has asked that I(the investigator), along with Client and Ex Employee as a witness, delete the PII files from the Ex Employees personal equipment.
This is a new one on me, and I wanted to see if anyone else has run into anything like this.
I will leave this a bit open ended...but anyone else ever run into this?
What are your thoughts?
Obviously PII should be PI
Do it, I do not see a problem. Do you have a problem with that?
The data belong to the employer and the device to the (ex)employee.
Delete all data you can find in the normal file system folders and do not forget to check the pst file in case the ex-employee attached some PII to emails. If necessary, delete the pst file, too.
PS: Download – Eraser (heidi.ie) should do the job and overwriting ONCE is sufficient. Don't choose something like Gutmann (35x) unless you have a lot of time