More
Compliance Standard
Compliance Version
Control ID
PCI DSS
(v3.2.1)
9.8
Requirement 9: Restrict physical access to cardholder data
Destroy media when it is no longer needed for business or legal reasons as follows: