JEITA HOME
Consumer Guidelines on Memory Card Erasure
Data Security in Card Disposal and Transfer

2 Basic Issues for the Memory Card Vendor Industry

It is important first of all to understand the problems that can arise from the way memory card data erasure is generally handled. These can be summarized as follows.
  • When data recorded on a memory card is no longer needed, performing an "erase" operation, reformatting or the like appears to delete the data from the card. In reality, however, erasure merely makes the data inaccessible by normal means in a Windows® environment. The data itself still exists in the media internal memory in many cases.

  • Access to this data is often technically possible using special software.

  • This issue is not limited to Windows but can occur with any platform.

  • It is therefore possible for unscrupulous users to read sensitive data left on a memory card, and to use it in unforeseen ways.
This is, in the broad sense of the term, a security issue. JEITA adopts the following basic stance regarding this issue.

(a) Deletion of data from a memory card is ultimately the user's responsibility.

Memory cards have a variety of purposes, and differ considerably depending on the kind of data stored and the way it is used. Adopting a single approach to that data is not feasible, and the data itself is not something that a third party should be allowed to delete. The data on a memory card needs to be protected by the users themselves, and its management is ultimately the user's responsibility.

(b) It is also important for memory card vendors to help make consumers aware of data erasure issues and their significance.
 

Ordinary users may have a hard time understanding that even though they have "erased" data from a memory card, the data in fact remains in the card internal memory and may be recoverable using special software.
It is therefore extremely important that these users be made aware of the technical aspects to the extent possible, and that they be encouraged to take the necessary precautions to prevent unintentional data leaks after a memory card is disposed of or transferred to another user. Memory card vendors need to cooperate in this educational effort.

(c) It is difficult for memory card vendors alone to educate the public adequately about these issues. The multi-faceted cooperation of related companies is necessary.
 

Many different companies have a stake in memory cards, including those who make devices that use the cards, dealers who sell or lease such devices, and recyclers. Without the cooperation of such companies, proper awareness on the part of users cannot be expected to spread more widely. These issues and their importance must therefore be made known also to related industry organizations, and their cooperation must be obtained in educating users.
It should be noted here that these guidelines define a certain scope of products for so-called memory cards. Lately there has been a sharp increase in the number of digital products that use memory cards. While they may have issues that are similar to those addressed here, these guidelines are focused on memory cards for general use by individual consumers, households and companies.


<< Back   Top page   Next >>
©JEITA,2003
Personal Infomatization TOP / JEITA HOME