Skip to main content

Data Handling

PII handling best practices for justice system data:

  • Minimize data collection — only send/store what's necessary
  • Use references (client_reference, event_reference) instead of PII in logs
  • Encrypt data at rest in your systems (eCourtDate encrypts with AES 256-bit)
  • Use HTTPS for all API communication (enforced by eCourtDate)
  • Implement data retention policies — delete records when no longer needed
  • Audit access to sensitive data regularly
  • Train staff on PII handling procedures
  • Data classification — identify which fields contain PII (names, phone numbers, emails, case numbers)