Browse Definitions :
Definition

ROT (redundant, outdated, trivial information)

ROT (redundant, obsolete or trivial) is digital documentation that an organization continues to retain even though the information that is documented has no business or legal value. Employees create ROT by saving multiple copies of the same information, outdated information and extraneous information that does not help the organization meet its goals. ROT can be found on individual desktops, on networks servers, on SharePoint servers, on tablets, mobile devices, mainframe computers and in the cloud.

ROT is detrimental in five important ways. First, it creates excessive storage, infrastructure and maintenance costs. Second, it impairs employees’ ability to demonstrate compliance with regulatory guidelines or respond to discovery requests. Third, it impairs employees’ ability to quickly access the right information and make data-driven decisions in an agile manner. Fourth, ROT is often unmanaged and consequently, is vulnerable to data breaches. And fifth, information that is retained beyond its legal retention period poses a liability risk because it can be used against the organization in legal actions or financial audits.

The Association of Information and Image Management (AIIM) reports that on average, half of an organization’s retained information has no business value and the Compliance, Governance, and Oversight Council (CGOC) estimates that a large company with 10 petabytes of data could be spending as much as $34.5 million on data that could be deleted. To prevent ROT, it’s important for the organization’s key stakeholders – which includes C-level executives, line-of-business (LOB) managers, records management, legal, compliance and information technology (IT) professionals -- to come together and develop a rules-based unified information governance (IG) program that meets the needs of the organization in a holistic manner.

The initial first step when creating an information governance plan is to inventory existing information and determine what has business value and/or is needed for legal reasons; all other content can be considered ROT. Although a manual review of digital documentation can be a laborious process, today there are autoclassification and predictive coding software programs that can be used to discover ROT and classify it accordingly. An effective information governance plan includes provisions for how to deal with ROT in a continuous manner and forms the foundation for a company culture that actively manages information assets and discourages data hoarding.  

ROT may also be referred to as data debris.

This was last updated in September 2016

Continue Reading About ROT (redundant, outdated, trivial information)

SearchCompliance

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

  • information governance

    Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and ...

  • enterprise document management (EDM)

    Enterprise document management (EDM) is a strategy for overseeing an organization's paper and electronic documents so they can be...

SearchSecurity

  • information security (infosec)

    Information security, often shortened to infosec, is the practice, policies and principles to protect data and other kinds of ...

  • denial-of-service attack

    A denial-of-service (DoS) attack is a security event that occurs when an attacker makes it impossible for legitimate users to ...

  • user authentication

    User authentication verifies the identity of a user attempting to gain access to a network or computing resource by authorizing a...

SearchHealthIT

SearchDisasterRecovery

  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

SearchStorage

  • cloud storage

    Cloud storage is a service model in which data is transmitted and stored on remote storage systems, where it is maintained, ...

  • cloud testing

    Cloud testing is the process of using the cloud computing resources of a third-party service provider to test software ...

  • storage virtualization

    Storage virtualization is the pooling of physical storage from multiple storage devices into what appears to be a single storage ...

Close