How should a dispatcher handle data integrity and privacy when logging incidents and handling digital evidence?

• A. Delete logs after 30 days for privacy.
• B. Allow unrestricted access to all logs.
• C. Change times to reflect desired outcomes.
• D. Record times and actions accurately, avoid altering logs, follow CJIS and privacy regulations, and secure access to sensitive information.

Answer: (D)

Accurate, auditable logging is essential because it preserves the integrity of digital evidence and protects privacy. Each log entry should record the exact time and the precise actions taken, in a way that cannot be retroactively altered without leaving a trace. This means avoiding any changes to timestamps or content, and never deleting records before their required retention periods. Following CJIS guidelines and privacy regulations ensures that only authorized personnel can access sensitive information and that logs are protected from improper disclosure or modification. Implementing protections such as authenticated access, encryption, secure storage, and integrity checks (like hash verification or append-only logging) helps maintain trust in the data. When these practices are in place, the logs reliably show what happened, when it happened, and who did it, supporting legal admissibility and accountability. Deleting logs, granting unrestricted access, or altering times would undermine integrity, violate policy, and risk privacy breaches.