Secure Destruction
Secure destruction is the controlled, irreversible elimination of records and their media at the end of an authorized retention period so that the information cannot be reconstructed, recovered, or read by any party.
Secure destruction is the final, authorized step in the records lifecycle, carried out only after a record reaches the end of its approved retention period and disposition has been sanctioned by an applicable retention schedule. It applies to both physical media (shredding, pulping, incineration) and electronic records (cryptographic erasure, overwriting, degaussing, or physical destruction of drives), and it must render the content genuinely unrecoverable rather than merely inaccessible. This matters because deleting a file or sending paper to recycling rarely destroys the underlying information; residual data, backups, and forensic recovery can expose sensitive content long after intended disposal. Secure destruction is especially critical for records containing CUI or PII, where uncontrolled disposal creates legal and privacy exposure. Organizations typically document each destruction event, capturing what was destroyed, the authority, the method, and the date, producing an auditable certificate of destruction. Crucially, destruction must be suspended for any record subject to a litigation hold or active investigation; destroying such material can constitute spoliation, regardless of the schedule. The distinction between simple deletion and verified, certified secure destruction is what protects an organization.