GCP-Storage-bucket-object-retention-policy-is-unset

Owned by naveen

Last updated: Nov 16, 2021

1 min read

Severity: Low

Description: This control ensures that object retention period is set greater than 90 days. Object retention policy should be set to a bucket to ensure data availability for a set period. This setting is recommended to set for business-critical buckets only as it may increase cost.

Remediation Steps:

Perform following to set retention policy for bucket:

Sign in to GCP Console https://console.cloud.google.com.
Goto the Cloud Storage browser
In the list of buckets, click on the name of the desired bucket.
Under Retention Policy, click edit button and set duration to greater than 90 days.
Click Save.

Important:

As a general best practice retention period should be set to at least 90 days.

Reference:

GCP Best Practice control
Buckets: get | Cloud Storage | Google Cloud
Use and lock retention policies | Cloud Storage | Google Cloud
Bucket Lock | Cloud Storage | Google Cloud

Blue Hexagon Proprietary