If you are keeping for longer than a month be prepared to justify that.
> This is made even worse if you have multi region backups and cold back ups.
You should be automating this. I assume you're automating the dumps. Automate the deletion. Deleting three encrypted files off S3 every day really isn't particularly hard. I've written stuff to do this a bunch of times.
> Even a one-year-old start up could have literally thousands of database dumps in different places if they followed best practice of triple redundant daily dumps.
If you have backups sprinkled willy-nilly about the place that you may have lost track of then it shows you have a significant lack of care about my data, and so I don't want you to have it at all.
You have to do very little if you're keeping backups for less than month, simply delete from the DB and wait for backups to age out:
https://ico.org.uk/for-organisations/guide-to-the-general-da...
If you are keeping for longer than a month be prepared to justify that.
> This is made even worse if you have multi region backups and cold back ups.
You should be automating this. I assume you're automating the dumps. Automate the deletion. Deleting three encrypted files off S3 every day really isn't particularly hard. I've written stuff to do this a bunch of times.
> Even a one-year-old start up could have literally thousands of database dumps in different places if they followed best practice of triple redundant daily dumps.
If you have backups sprinkled willy-nilly about the place that you may have lost track of then it shows you have a significant lack of care about my data, and so I don't want you to have it at all.