§ 62-41.5a-4. Policies and procedures for destruction or disposal of electronic storage media - Notification of policies and procedures - Removal of storage media - Funding.  

A.  The Information Services Division of the Office of Management and Enterprise Services is authorized to:

1.  Develop and publish a state policy and procedures for the destruction or disposal of all electronic storage media to ensure that all confidential information stored on such electronic media devices is destroyed or disposed of in a secure and safe manner;

2.  Define the requirements for the secure destruction or disposal of electronic storage media; and

3.  Assist in implementing the policy and procedures for the destruction or disposal of state electronic storage media.

B.  The Information Services Division of the Office of Management and Enterprise Services shall notify all agencies, boards, commissions and authorities of the policy and procedures for the secure and safe destruction or disposal of electronic storage media.

C.  The Office of Management and Enterprise Services shall remove all data from electronic storage media from all surplus information technology and telecommunication equipment before it is sold, donated, stored or destroyed.  A state agency may remove electronic storage media from their surplus information technology and telecommunication equipment prior to sending the surplus to the Office of Management and Enterprise Services, so long as the agency has the technical expertise for removal and that the electronic storage media is sent for destruction or disposal pursuant to this subsection.

D.  The Office of Management and Enterprise Services shall use existing and future funds from the sale of state surplus equipment and appropriations, as necessary, to pay for the destruction of electronic storage media of equipment processed through the Office of Management and Enterprise Services.