If you want to implement data minimisation in your business, you can pursue the following guidelines that will help you in the right direction.
Begin with diminishing your data collection, your organisation must define which data is necessary to conduct your business, and which is not. You must also create clear and defined protocols on which employee can access specific data. For example, it is relevant for the person that is responsible for the payment of salary to have credit card information on the staff, but that is not relevant data for an employee working within customer service.
Secondly, manage data regularly. The data collected will sooner or later become out-of-date, which must be considered. With data minimisation, you will make sure that the databases are regularly updated to only keeping the relevant information.
Thirdly, delete data systematically. This is a core aspect of data minimisation. When user data becomes old, it will be useless for your organisations need and will only take up unnecessary space. You need to be sure that all the data in the organisations is valuable.
You can read more about our awareness training course for data minimisation here.