But going through the process where you work out what customer data you need, reviewing how it's stored, letting your customers all this, is good.
It's very much more healthy (and lawful) than just mucking on, stuffing data into limitless digital vaults and then not having a clue when all that data gets leaked.
In the good old days, paper records had the good manners to take up physical space. It was clear when you had too many records because it was a serious inconvenience to your business.
Doing that exercise using your own best judgement is better than not doing it, but nowhere near enough to avoid destruction in case someone with an attitude like the parent commenter's is working on your case at one of the data protection agencies.
It's very much more healthy (and lawful) than just mucking on, stuffing data into limitless digital vaults and then not having a clue when all that data gets leaked.
In the good old days, paper records had the good manners to take up physical space. It was clear when you had too many records because it was a serious inconvenience to your business.