Hello All, As an example, ABC is an IT technological product delivery and support organization. As such all transaction with department and client facing almost generated and saved online in intranet portal. Due to its availability in digital - it meets legible, readily identifiable and retrievable (not exactly if the same is available in the form of email) Other requirements to be established to define controls needed for 1. Identification - as it is stored in intranet - with name of the file (Metadata) 2. storage - please explain 3. protection - server redundancy, controlled environment, proper backup of the data 4. retrieval - though it is saved logically under respective depart / folder but can be easily retrieved by name. 5. retention time - as per the internal and external party requirement 6. disposition - delete and complete wipe after the retention time. please suggest any other points be taken care for records available in digital as such above. What care should be taken for records in the email to meet above requirements? Share your experiences.