4-Eye Data Deletion

Summary

The 4-Eye Data Deletion Policy (also known as the Four-Eyes Principle) requires that any deletion of data from server or storage systems — whether virtual or physical — must be verified and supervised by a second person (the second pair of eyes). This second individual confirms that the data is indeed intended for deletion and oversees the process to ensure that only the specified data is deleted, preventing accidental removal of unrelated information.

Scope of the 4 Eyes Principle

The scope includes but is not limited to:

  • Server deletion on any cloud or physical infrastructure

  • Virtual and physical disks

  • Backups

  • Any other form of storage where there is the possibility of having customer data

  • Any other deletion activity where an error could result in critical data loss or other severe consequences

Documentation

The second person must be explicitly mentioned in the corresponding ticket or documentation. This ensures traceability and accountability for the deletion process.